Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a363a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a363a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: zat9tEmd+WAUqR7kxbuhyT55wIoP/duI6pgpEZ4JYvY=
Subject key identifier: 5B:64:27:13:16:A1:B6:8E:D2:E2:6C:B1:8F:EA:40:6A:52:A9:D9:A1
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 2CD6CFD8C1086F4A20DEAD358197C41DF93191DF
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a363a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 27 Dec 2024 09:28:14 +0000
ROA not before: Fri 27 Dec 2024 09:23:14 +0000
ROA not after: Fri 26 Dec 2025 09:28:14 +0000
asID: 29802
IP address blocks: 2a13:9500:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:d6:cf:d8:c1:08:6f:4a:20:de:ad:35:81:97:c4:1d:f9:31:91:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:14 2024 GMT
Not After : Dec 26 09:28:14 2025 GMT
Subject: CN=5B64271316A1B68ED2E26CB18FEA406A52A9D9A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ea:da:4a:65:7f:2a:f7:45:6e:33:5d:28:74:
a9:a4:ca:b0:c0:17:5a:e3:57:cb:66:a3:90:51:79:
98:80:21:bd:52:18:35:83:47:1e:84:3a:40:1d:8c:
27:4d:6b:5c:71:9b:61:57:dd:70:1b:c0:dd:bd:9c:
ff:de:42:08:54:ed:f4:dc:e4:2a:8d:d2:44:bf:55:
31:47:c9:ec:5d:4a:be:ef:f8:e6:a3:05:a8:5e:3e:
9a:dc:98:79:fd:49:32:d8:6d:d3:c6:e4:72:8e:d8:
e7:d8:47:a9:f5:81:ac:7d:0f:c6:c3:cf:c8:67:4c:
4f:90:70:d7:00:6d:6e:4c:d5:ab:15:d3:d6:f2:73:
b6:c2:e5:ff:09:51:d9:ab:26:bb:39:41:1b:db:4a:
28:43:eb:fe:d1:09:c1:f7:3a:0b:bd:4f:2e:24:e2:
de:81:35:a3:96:c2:99:b0:48:e8:cc:27:f6:fb:06:
3b:06:98:cf:f1:84:05:c7:f9:19:b3:f1:4d:b4:e4:
c3:a5:df:9c:a7:f3:3a:dd:0b:34:89:e5:eb:4d:1c:
6d:89:6b:77:7e:e6:e3:68:fc:6b:e5:ad:84:67:85:
c5:5f:9b:53:c3:f1:93:68:ba:b8:43:83:fa:91:5a:
13:15:7e:48:90:cf:0e:1a:31:e6:0a:48:c6:69:b7:
0a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:64:27:13:16:A1:B6:8E:D2:E2:6C:B1:8F:EA:40:6A:52:A9:D9:A1
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a363a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:6::/48
Signature Algorithm: sha256WithRSAEncryption
a1:df:50:24:b3:85:c7:b1:98:91:49:a2:f3:65:fd:e6:57:02:
86:a0:1e:68:78:e5:6f:8f:42:7f:ca:a4:77:3b:69:b0:54:af:
97:38:99:eb:38:da:d7:f1:53:da:94:76:7e:6b:cf:74:19:52:
ac:95:50:88:53:aa:19:c2:19:09:85:b6:f6:4a:aa:99:07:70:
4b:f0:cf:d2:87:8c:cd:22:57:24:5c:9a:b7:d7:00:3e:b4:6b:
c8:74:ea:a9:f1:ef:b8:d5:f7:34:f2:e4:8a:a9:22:88:f2:ef:
27:74:86:c4:d2:91:bd:3d:1d:09:ad:83:17:e3:dc:e7:53:f7:
1c:f2:4f:fc:0b:d6:66:ba:5a:7a:c3:82:ff:54:d4:5b:69:d4:
9e:11:7c:9f:e9:3c:40:16:c7:68:55:88:5f:14:c7:97:94:36:
4e:dd:45:9e:57:ca:9e:1a:8e:c7:5e:78:51:e4:89:81:bb:0e:
ee:4a:ae:ae:93:51:99:9c:33:95:48:09:58:12:4e:92:8d:5c:
59:27:96:66:b1:25:f9:45:32:5b:52:e2:33:47:bd:b6:d4:cf:
33:53:df:24:5e:3b:97:1e:f4:e4:36:f3:af:a5:c4:b2:b9:ec:
a0:69:b2:64:fa:d4:76:69:44:29:cb:fe:cf:9b:24:99:fd:6c:
aa:25:3e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 17:15:02 2025 by rpki-client