Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31373a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31373a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: iiPGPMsrdNnRROsdKyoqLT1MXpg36eCT+5oCOXxAehI=
Subject key identifier: 3C:2B:53:C8:32:8F:61:EB:F3:71:C4:9C:12:43:0D:25:FD:E8:57:01
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 49F0607B72CD51ECE43821880BF3BAC1EEEDE357
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31373a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:20 +0000
ROA not before: Fri 27 Dec 2024 09:23:20 +0000
ROA not after: Fri 26 Dec 2025 09:28:20 +0000
asID: 9009
IP address blocks: 2a13:9500:17::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:f0:60:7b:72:cd:51:ec:e4:38:21:88:0b:f3:ba:c1:ee:ed:e3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:20 2024 GMT
Not After : Dec 26 09:28:20 2025 GMT
Subject: CN=3C2B53C8328F61EBF371C49C12430D25FDE85701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:8a:95:c6:ee:04:20:40:72:4a:da:fd:8c:
c1:6f:a1:44:7b:50:17:2d:d3:45:5e:78:d6:6f:ff:
6f:7a:78:2a:7b:99:7b:3e:04:32:3d:2f:91:f1:a2:
b5:e3:fd:0e:ea:f4:db:20:10:5a:4f:b3:fb:69:ae:
a7:2a:c9:f9:bc:94:30:45:00:0f:07:f5:86:a1:fb:
84:6c:11:ce:59:3b:ab:e1:35:44:4c:fc:e6:ca:ae:
0c:47:98:d6:fb:5b:c4:47:31:ba:95:fe:18:7c:cd:
74:45:93:a0:e7:2a:cb:11:97:99:15:3c:12:b0:5a:
d3:b4:16:41:9b:4c:80:fa:71:69:3a:2b:a0:ea:fc:
89:6c:ea:8f:1e:a4:90:5a:1d:2a:fb:a7:57:89:97:
a7:ce:0b:6a:7a:ad:29:f3:ba:10:02:35:92:ea:58:
19:7d:de:bd:b7:a3:50:7e:e2:1f:f1:67:65:dc:90:
5c:cb:c4:8e:09:18:10:98:f6:90:f0:e3:2c:27:4b:
c2:77:be:f6:a1:25:66:f4:c5:92:d9:29:84:01:f2:
cb:ae:fc:e8:78:de:be:17:c0:ff:d1:f4:80:27:f7:
67:59:13:d6:8d:83:62:c7:20:ba:74:f1:bf:af:0e:
55:b7:ad:36:90:55:91:66:cc:1e:f6:c5:20:fb:2f:
62:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:2B:53:C8:32:8F:61:EB:F3:71:C4:9C:12:43:0D:25:FD:E8:57:01
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31373a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:17::/48
Signature Algorithm: sha256WithRSAEncryption
80:75:d6:ab:fd:c5:7c:e4:6f:11:2d:f5:3e:49:8b:5b:dd:69:
b6:dc:75:2f:87:6f:ea:16:63:c3:51:e5:1c:83:dd:4c:b7:b5:
4d:4a:68:8a:ad:97:8e:98:50:5c:2c:87:cc:94:05:60:3b:eb:
f2:2f:b7:e9:f5:fe:24:1b:68:34:cc:56:10:fd:f6:00:93:4f:
6c:0e:75:61:3e:42:03:81:24:12:e3:64:e8:84:13:a2:4d:53:
16:cd:bf:47:94:6a:33:5d:c8:1e:90:37:5f:09:23:3a:1c:6d:
e4:a3:df:74:16:dc:1d:d2:ed:32:79:3a:b1:dc:5a:2b:5f:f4:
e0:f5:15:14:78:e8:6a:e5:4a:6e:8d:80:de:03:67:97:43:eb:
ab:ef:79:03:60:64:56:25:22:b5:41:79:8b:66:8c:ea:79:4a:
3b:77:99:4f:ea:db:69:c4:8a:7a:13:83:17:f1:0d:1d:72:a9:
ca:4b:77:b7:a2:b2:ee:c9:d9:88:45:58:c1:ca:87:41:f8:a7:
e6:54:6d:d8:0f:6e:4f:51:a5:60:65:1d:5f:77:21:e2:40:c1:
48:27:24:49:70:6c:26:66:78:9a:ec:60:40:63:e0:e0:b1:0a:
e2:8a:a5:74:e1:72:c0:81:7f:75:83:91:cc:af:af:91:a7:8a:
57:76:3e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:15:34 2025 by rpki-client