Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31643a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a31643a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: WqWkquzEZa3Ty5GnvcZB0Tk3tzWZw03bYb0oSOe7AvU=
Subject key identifier: 9A:D7:60:FA:B1:EC:AF:A2:FF:D7:F1:73:07:FC:BD:71:A6:66:6E:2A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 17CF19B0A9280822D542CC73A25301682272196E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31643a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 27 Dec 2024 09:28:17 +0000
ROA not before: Fri 27 Dec 2024 09:23:17 +0000
ROA not after: Fri 26 Dec 2025 09:28:17 +0000
asID: 29802
IP address blocks: 2a13:9500:1d::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:cf:19:b0:a9:28:08:22:d5:42:cc:73:a2:53:01:68:22:72:19:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:17 2024 GMT
Not After : Dec 26 09:28:17 2025 GMT
Subject: CN=9AD760FAB1ECAFA2FFD7F17307FCBD71A6666E2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a4:f7:51:e2:5b:65:fe:ce:31:07:b4:5c:8c:
bf:bc:8e:49:ef:55:a9:6b:57:b2:37:27:c4:61:45:
26:84:f6:89:7d:38:e8:46:be:08:d3:25:ad:db:32:
13:72:54:b4:fe:ab:bb:2f:52:11:cd:18:52:67:bf:
fc:7f:2a:20:f4:e8:9e:e3:16:94:89:66:30:52:73:
02:e8:e6:4f:8b:29:cc:0d:0c:1c:2c:e0:e0:d3:43:
d3:1c:ff:24:c9:83:75:b0:0d:00:1c:11:06:af:e2:
ed:26:16:a3:3d:b1:b8:58:67:eb:8b:8f:f0:fd:36:
0f:03:ac:34:08:53:35:5e:ca:24:cc:25:91:ed:5b:
38:6c:e9:06:0c:5b:ab:4e:86:1a:d5:fb:1f:d3:16:
ff:68:f6:b5:20:6c:8b:8e:5c:a1:fd:65:6d:e6:03:
cd:e8:48:9e:04:61:b7:94:26:65:4b:64:37:d7:e5:
32:b9:29:b3:44:fd:d0:f2:d0:fa:5e:e6:9b:d8:d0:
9c:00:5a:76:27:06:98:13:cf:9e:ec:b4:1a:80:30:
25:dc:f3:9d:ca:07:13:64:9a:70:4c:d4:e6:4f:77:
81:e3:59:92:ab:43:db:24:56:5b:3b:6e:87:8e:dd:
3d:62:96:3c:cb:3f:f4:56:fc:d8:82:0a:e2:3a:76:
de:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D7:60:FA:B1:EC:AF:A2:FF:D7:F1:73:07:FC:BD:71:A6:66:6E:2A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a31643a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:1d::/48
Signature Algorithm: sha256WithRSAEncryption
37:29:89:9a:79:7f:42:d3:18:15:88:d3:36:26:49:16:41:14:
83:ab:33:e2:c6:f4:94:eb:d7:f1:de:a1:24:04:44:e9:21:2b:
3b:e9:6d:7c:00:59:22:9e:ce:6d:e5:00:57:47:1c:f4:75:3e:
db:c8:6e:04:c8:b1:e6:7c:25:34:a8:b1:d9:d8:26:2d:d9:7f:
24:9a:a0:82:20:a8:76:08:8a:c0:7a:3c:f4:73:b3:7f:49:49:
ad:19:ce:a6:33:57:8a:f2:7a:f8:5b:1b:02:6f:45:75:76:6e:
78:19:03:e0:39:84:e2:c7:6e:e6:e0:0b:c4:9f:5e:29:63:a1:
41:59:7e:7e:2c:8f:ca:e3:55:2a:5b:39:cf:48:67:8a:81:ce:
30:7e:d8:aa:83:41:51:96:60:41:92:f0:ba:04:66:09:90:98:
97:dc:5b:52:6c:68:8a:c1:bc:57:be:be:50:ef:37:0c:23:66:
d1:f9:23:62:f2:1f:37:80:1a:07:9c:25:5c:37:5e:8d:1a:07:
34:27:2c:01:2b:8f:ae:5c:3b:15:21:fb:9a:70:ad:1e:03:10:
59:76:2e:43:ec:ed:1a:f8:40:33:9e:0a:0b:67:5b:4d:d9:d1:
fd:65:73:10:f9:75:7d:ba:a9:eb:c3:bc:bb:25:5f:96:73:2d:
50:7f:30:d6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 8 03:46:01 2025 by rpki-client