Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: cDlHsSP4ynh44MFhCVutYOzGrCnqGNQ7cSjTgD4W0zo=
Subject key identifier: 7D:A9:D6:99:CA:C4:68:E6:7E:C0:E9:3E:8D:94:47:5E:8F:83:8E:92
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 63269C57EC291189BBF6410B97F54D476775BD8C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 27 Dec 2024 09:28:20 +0000
ROA not before: Fri 27 Dec 2024 09:23:20 +0000
ROA not after: Fri 26 Dec 2025 09:28:20 +0000
asID: 29802
IP address blocks: 2a13:9500:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:26:9c:57:ec:29:11:89:bb:f6:41:0b:97:f5:4d:47:67:75:bd:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:20 2024 GMT
Not After : Dec 26 09:28:20 2025 GMT
Subject: CN=7DA9D699CAC468E67EC0E93E8D94475E8F838E92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f2:22:a8:43:b4:42:56:24:88:60:e9:c2:e2:
91:3d:10:d3:f0:fe:74:7a:20:cf:c8:47:52:73:a5:
89:47:86:86:6b:96:e5:44:ce:ce:64:aa:41:45:de:
fb:7c:a3:6d:21:88:9a:2f:a4:f6:dc:f9:f2:d7:06:
ef:b0:02:24:99:41:8a:b2:26:2f:e7:b0:33:c2:4b:
67:26:2e:42:cc:ee:5e:35:3d:e5:4e:18:d1:d6:5e:
9e:10:f7:a3:2a:4a:2d:65:f1:3b:04:a0:54:79:f1:
64:13:5e:75:c1:a7:95:92:a8:54:82:26:a3:30:78:
04:2d:bf:1c:b5:33:7f:ad:7b:34:ea:2f:cc:0d:c5:
87:fc:fd:48:b3:4a:7c:83:8d:0b:b7:ef:53:71:59:
d4:8b:60:e5:cd:2a:ef:38:94:fc:59:5f:c9:ff:eb:
0e:46:50:f9:ca:d8:95:2b:62:e2:d1:e3:d5:24:dc:
c2:85:47:59:96:df:29:22:2a:5a:1a:a6:df:15:32:
a6:19:a9:ba:b4:48:4c:2f:6d:43:b9:b2:78:09:c7:
2b:30:c1:29:a8:a1:f9:49:e4:ec:0e:76:dc:ac:42:
3e:21:57:42:30:d2:d1:0c:9f:9a:b0:dc:83:3a:2c:
31:d9:e4:43:a8:89:cd:fb:51:f6:2b:2f:84:7d:94:
7a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A9:D6:99:CA:C4:68:E6:7E:C0:E9:3E:8D:94:47:5E:8F:83:8E:92
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:8::/48
Signature Algorithm: sha256WithRSAEncryption
07:96:1d:bc:35:cf:4a:b5:65:68:3a:a0:d6:b1:7d:e8:b5:10:
83:7e:e5:07:ac:f7:e1:78:f5:74:53:50:8b:fe:92:6b:df:88:
63:e3:1b:dc:30:50:be:59:52:a1:8f:ab:dd:22:5a:6d:f3:25:
4a:9d:83:e8:90:af:f5:cc:02:c2:85:55:e9:b5:fd:94:13:39:
dc:97:13:2a:e4:63:ae:8d:3a:1f:fd:3d:c6:d8:76:ab:82:d7:
5c:4e:5e:5d:35:18:97:6e:b0:44:db:50:3f:ce:6e:3e:0f:e9:
db:00:58:b0:b3:34:6f:7a:09:72:05:c2:9a:e8:2d:3b:8a:01:
e0:01:0f:74:b3:0f:f9:6d:ea:17:bf:7a:67:f0:1c:e1:b7:da:
a9:71:61:63:c6:93:11:f5:a4:92:88:48:ba:ef:52:f3:69:1e:
29:e7:da:0d:95:74:f2:07:2f:ba:8f:7d:36:41:e2:12:37:04:
57:10:15:62:82:25:8e:bb:1d:6a:04:c6:a6:11:4f:cb:85:ff:
f8:e0:ad:ca:54:72:50:c8:e7:5e:79:3d:13:40:96:8d:1a:cd:
da:eb:ee:a5:0f:a1:e8:bc:92:77:76:e7:cf:94:f0:c4:72:dc:
10:73:ee:42:03:45:8f:d3:0d:fe:1c:82:0e:39:3a:ab:fb:2f:
9b:53:09:ad
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgIUYyacV+wpEYm79kELl/VNR2d1vYwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNDEyMjcwOTIzMjBaFw0yNTEyMjYwOTI4MjBaMDMxMTAvBgNV
BAMTKDdEQTlENjk5Q0FDNDY4RTY3RUMwRTkzRThEOTQ0NzVFOEY4MzhFOTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8iKoQ7RCViSIYOnC4pE9ENPw
/nR6IM/IR1JzpYlHhoZrluVEzs5kqkFF3vt8o20hiJovpPbc+fLXBu+wAiSZQYqy
Ji/nsDPCS2cmLkLM7l41PeVOGNHWXp4Q96MqSi1l8TsEoFR58WQTXnXBp5WSqFSC
JqMweAQtvxy1M3+tezTqL8wNxYf8/UizSnyDjQu371NxWdSLYOXNKu84lPxZX8n/
6w5GUPnK2JUrYuLR49Uk3MKFR1mW3ykiKloapt8VMqYZqbq0SEwvbUO5sngJxysw
wSmooflJ5OwOdtysQj4hV0Iw0tEMn5qw3IM6LDHZ5EOoic37UfYrL4R9lHp9AgMB
AAGjggJCMIICPjAdBgNVHQ4EFgQUfanWmcrEaOZ+wOk+jZRHXo+DjpIwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYt
YjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWExYWY2LzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2EzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzkzODMwMzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD
BwAqE5UAAAgwDQYJKoZIhvcNAQELBQADggEBAAeWHbw1z0q1ZWg6oNaxfei1EIN+
5Qes9+F49XRTUIv+kmvfiGPjG9wwUL5ZUqGPq90iWm3zJUqdg+iQr/XMAsKFVem1
/ZQTOdyXEyrkY66NOh/9PcbYdquC11xOXl01GJdusETbUD/Obj4P6dsAWLCzNG96
CXIFwproLTuKAeABD3SzD/lt6he/emfwHOG32qlxYWPGkxH1pJKISLrvUvNpHinn
2g2VdPIHL7qPfTZB4hI3BFcQFWKCJY67HWoExqYRT8uF//jgrcpUclDI5155PRNA
lo0azdrr7qUPoei8knd258+U8MRy3BBz7kIDRY/TDf4cgg45Oqv7L5tTCa0=
-----END CERTIFICATE-----
Generated at Tue May 6 19:31:19 2025 by rpki-client