Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: SthLPKMtnJEkRzBcuBNqRm3nzieNayxfRSQycPnK3pk=
Subject key identifier: 6E:08:28:BE:50:FD:91:64:AD:F3:B9:8E:BD:E6:1C:CD:28:56:FF:D2
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0E620E4996A3430DCE9B889F1F4518443AA185F2
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:13 +0000
ROA not before: Fri 27 Dec 2024 09:23:13 +0000
ROA not after: Fri 26 Dec 2025 09:28:13 +0000
asID: 9009
IP address blocks: 2a13:9500:19::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:62:0e:49:96:a3:43:0d:ce:9b:88:9f:1f:45:18:44:3a:a1:85:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:13 2024 GMT
Not After : Dec 26 09:28:13 2025 GMT
Subject: CN=6E0828BE50FD9164ADF3B98EBDE61CCD2856FFD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4e:3d:d7:ab:f1:6a:ca:7d:ac:fa:da:66:5d:
3d:2d:c3:01:ab:aa:f9:eb:69:41:c8:b8:ae:c0:69:
17:8f:3d:45:54:a5:64:95:98:69:ae:8b:0d:56:30:
5d:00:66:29:b7:a9:42:69:93:f9:70:aa:83:dc:37:
4a:0e:75:59:fa:7a:93:80:33:91:1d:85:52:46:d8:
0c:ad:d9:45:f7:4a:d1:e3:6e:cf:3f:27:98:e2:4b:
da:4e:f7:ed:66:9b:2c:f6:b3:f5:97:16:27:de:2d:
a3:37:71:2f:7d:80:86:b9:03:ae:59:da:38:ca:3b:
d1:c8:33:46:2b:f5:19:87:23:b1:38:69:d0:e3:26:
bd:18:62:a1:9a:41:57:6c:c0:38:12:6e:16:0a:a6:
19:7d:c6:ae:15:18:c8:fb:4b:77:a7:77:ff:0d:28:
5c:a3:dc:97:2b:d9:3f:f7:91:34:4a:5b:bf:d6:f9:
27:2a:ef:3d:b8:60:57:0e:d3:b6:73:ca:ac:4b:b2:
86:98:b5:81:be:ed:8f:ec:66:d5:2c:4f:73:de:c1:
ff:74:07:c2:a2:ba:dd:1e:d3:47:91:e6:9e:51:84:
8e:6e:41:66:f1:8f:63:09:07:4c:bd:24:d1:1f:65:
ae:d6:a3:33:28:74:52:f2:e0:13:29:07:90:71:cc:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:08:28:BE:50:FD:91:64:AD:F3:B9:8E:BD:E6:1C:CD:28:56:FF:D2
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31393a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:19::/48
Signature Algorithm: sha256WithRSAEncryption
7e:c0:4a:ae:59:f4:28:82:7d:fa:e2:aa:13:6b:44:bb:32:fc:
25:ed:61:d2:ee:f9:2a:02:56:52:f2:ae:61:27:3e:db:e9:7d:
d8:c2:a0:f4:5a:1f:bf:04:0b:01:b1:8a:eb:49:8f:87:10:a1:
be:9b:21:93:11:26:1f:f9:60:d4:34:d5:50:d0:7e:9f:10:dc:
f6:9c:57:cf:e1:25:f4:12:4a:65:8a:59:74:79:8e:67:b6:5d:
99:2d:b1:5f:85:2d:ef:de:e1:4c:79:f7:23:c5:e9:e9:62:24:
e0:4b:78:d3:bd:95:a8:94:09:c1:0a:99:ac:84:98:10:59:01:
34:5f:03:5d:74:01:94:b3:b8:a2:c6:77:ee:b4:37:24:0a:07:
a6:a8:5e:ba:e4:99:9e:8f:2a:dd:c6:73:54:9b:d9:bc:36:d0:
de:1f:02:10:18:af:f4:1c:d1:b0:f2:77:1e:27:3e:b0:fb:8d:
5b:91:8d:e0:d6:50:a2:65:52:47:15:ed:a8:97:bb:5c:dd:5c:
2f:a4:55:5d:9b:b9:a8:17:15:66:07:7b:fb:9e:df:c9:97:7e:
80:01:b8:aa:53:e9:0d:8b:78:65:8f:ad:9d:0e:87:e1:d5:d0:
a8:1e:1c:c3:24:34:5e:e6:9d:81:39:0e:fa:c7:be:7a:54:47:
90:20:eb:c3
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgIUDmIOSZajQw3Om4ifH0UYRDqhhfIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNDEyMjcwOTIzMTNaFw0yNTEyMjYwOTI4MTNaMDMxMTAvBgNV
BAMTKDZFMDgyOEJFNTBGRDkxNjRBREYzQjk4RUJERTYxQ0NEMjg1NkZGRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcTj3Xq/Fqyn2s+tpmXT0twwGr
qvnraUHIuK7AaRePPUVUpWSVmGmuiw1WMF0AZim3qUJpk/lwqoPcN0oOdVn6epOA
M5EdhVJG2Ayt2UX3StHjbs8/J5jiS9pO9+1mmyz2s/WXFifeLaM3cS99gIa5A65Z
2jjKO9HIM0Yr9RmHI7E4adDjJr0YYqGaQVdswDgSbhYKphl9xq4VGMj7S3end/8N
KFyj3Jcr2T/3kTRKW7/W+Scq7z24YFcO07ZzyqxLsoaYtYG+7Y/sZtUsT3Pewf90
B8Kiut0e00eR5p5RhI5uQWbxj2MJB0y9JNEfZa7WozModFLy4BMpB5BxzKjNAgMB
AAGjggJCMIICPjAdBgNVHQ4EFgQUbggovlD9kWSt87mOveYczShW/9IwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYt
YjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWExYWY2LzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2EzMTM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzkzMDMwMzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD
BwAqE5UAABkwDQYJKoZIhvcNAQELBQADggEBAH7ASq5Z9CiCffriqhNrRLsy/CXt
YdLu+SoCVlLyrmEnPtvpfdjCoPRaH78ECwGxiutJj4cQob6bIZMRJh/5YNQ01VDQ
fp8Q3PacV8/hJfQSSmWKWXR5jme2XZktsV+FLe/e4Ux59yPF6eliJOBLeNO9laiU
CcEKmayEmBBZATRfA110AZSzuKLGd+60NyQKB6aoXrrkmZ6PKt3Gc1Sb2bw20N4f
AhAYr/Qc0bDydx4nPrD7jVuRjeDWUKJlUkcV7aiXu1zdXC+kVV2buagXFWYHe/ue
38mXfoABuKpT6Q2LeGWPrZ0Oh+HV0KgeHMMkNF7mnYE5DvrHvnpUR5Ag68M=
-----END CERTIFICATE-----
Generated at Fri May 9 08:15:05 2025 by rpki-client