Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a383a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: L1ZOPulv1HTd4hynP3a1Zampb4bLedXBzret8sEWRjc=
Subject key identifier: 80:1D:B1:4A:18:A8:B7:97:8F:D4:BD:28:A6:22:47:2D:06:61:BD:95
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 654B3E377F1B9A4DE2B6A499A3CB2AB0CF5DDA94
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:19 +0000
ROA not before: Fri 27 Dec 2024 09:23:19 +0000
ROA not after: Fri 26 Dec 2025 09:28:19 +0000
asID: 9009
IP address blocks: 2a13:9500:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:4b:3e:37:7f:1b:9a:4d:e2:b6:a4:99:a3:cb:2a:b0:cf:5d:da:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:19 2024 GMT
Not After : Dec 26 09:28:19 2025 GMT
Subject: CN=801DB14A18A8B7978FD4BD28A622472D0661BD95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b7:77:6a:97:4b:33:68:ba:0a:64:e0:b0:c0:
d3:ff:f4:2c:2b:d5:e1:fa:c1:46:14:1c:9b:e7:36:
3f:6a:3e:5e:a0:bd:53:52:42:c4:e8:14:8b:a6:14:
c6:18:d3:94:1a:f2:3c:c3:c6:83:b2:ca:fa:a7:3c:
eb:8e:a9:f2:19:d6:40:fa:b8:a6:fd:99:f6:b4:0b:
42:ec:55:bb:b7:0f:73:03:2a:ce:9c:30:e3:0e:c0:
40:31:e2:a8:d7:43:24:18:72:d6:9f:8e:4f:16:fe:
26:6a:b7:f0:31:0b:14:0b:31:e3:22:10:b8:de:07:
d3:0a:82:89:08:93:b4:2f:68:86:a8:5a:8e:a9:4d:
67:9d:a1:b7:e9:d1:e6:ac:ca:23:86:2c:d5:28:3b:
ab:de:e6:87:d2:b2:7f:c2:af:c1:a1:28:19:38:28:
85:31:ae:af:d7:d6:1b:d9:fc:1d:f3:84:06:db:d1:
c7:8c:87:0e:19:db:14:d6:e9:07:f7:9c:bf:af:b8:
82:3f:60:3c:ab:79:30:a2:d1:41:76:d8:75:3e:a6:
e8:88:e5:01:35:1e:db:06:33:9a:a9:51:e7:54:2c:
f2:46:3f:22:b3:45:cc:58:7e:bb:23:4f:0c:67:90:
55:26:64:86:07:f7:f6:c5:c1:6d:56:2e:62:a4:45:
c4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1D:B1:4A:18:A8:B7:97:8F:D4:BD:28:A6:22:47:2D:06:61:BD:95
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a383a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:8::/48
Signature Algorithm: sha256WithRSAEncryption
80:cd:b6:66:d1:f3:c0:f3:62:67:b5:1b:5c:a3:53:c6:9e:08:
12:5c:5d:11:ab:f9:bc:5f:63:37:56:84:51:2c:94:72:49:a9:
63:83:86:b0:0f:2d:15:e6:99:c5:6f:1b:e3:e6:ee:e5:63:cf:
87:5a:35:75:9d:8c:15:20:43:f4:70:fb:19:86:79:e4:95:30:
39:61:98:17:47:c5:d9:2d:df:eb:aa:89:44:fe:77:e9:e2:c3:
23:ac:b7:06:2c:2e:c4:6b:3a:6e:8e:0b:c9:63:66:3a:5a:f0:
48:14:8d:c4:a0:33:dd:e8:65:88:a9:e6:50:f6:ec:c2:03:83:
6b:f1:cc:50:c9:bb:be:61:c7:1c:57:86:00:a8:cc:6d:70:7c:
5d:ab:bd:e7:7e:10:ec:d6:d4:0b:41:99:fc:20:52:ed:25:31:
29:74:17:f3:87:22:34:1b:b7:da:d3:17:6c:3a:89:54:30:59:
0f:76:4a:14:c1:29:24:7d:1d:7a:a4:2f:2d:0a:6d:72:52:63:
7b:a8:17:c1:e2:7b:f3:4d:97:14:82:21:fa:76:f2:e1:cb:20:
fc:41:e5:17:06:08:01:38:cc:44:95:08:04:de:96:c2:5c:ee:
71:c5:c9:69:b5:aa:ec:99:e5:59:41:ad:29:4f:75:59:b9:7b:
3b:81:1b:39
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUZUs+N38bmk3itqSZo8sqsM9d2pQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNDEyMjcwOTIzMTlaFw0yNTEyMjYwOTI4MTlaMDMxMTAvBgNV
BAMTKDgwMURCMTRBMThBOEI3OTc4RkQ0QkQyOEE2MjI0NzJEMDY2MUJEOTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXt3dql0szaLoKZOCwwNP/9Cwr
1eH6wUYUHJvnNj9qPl6gvVNSQsToFIumFMYY05Qa8jzDxoOyyvqnPOuOqfIZ1kD6
uKb9mfa0C0LsVbu3D3MDKs6cMOMOwEAx4qjXQyQYctafjk8W/iZqt/AxCxQLMeMi
ELjeB9MKgokIk7QvaIaoWo6pTWedobfp0easyiOGLNUoO6ve5ofSsn/Cr8GhKBk4
KIUxrq/X1hvZ/B3zhAbb0ceMhw4Z2xTW6Qf3nL+vuII/YDyreTCi0UF22HU+puiI
5QE1HtsGM5qpUedULPJGPyKzRcxYfrsjTwxnkFUmZIYH9/bFwW1WLmKkRcTpAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUgB2xShiot5eP1L0opiJHLQZhvZUwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYt
YjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWExYWY2LzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2EzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM5MzAzMDM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA
KhOVAAAIMA0GCSqGSIb3DQEBCwUAA4IBAQCAzbZm0fPA82JntRtco1PGnggSXF0R
q/m8X2M3VoRRLJRySaljg4awDy0V5pnFbxvj5u7lY8+HWjV1nYwVIEP0cPsZhnnk
lTA5YZgXR8XZLd/rqolE/nfp4sMjrLcGLC7EazpujgvJY2Y6WvBIFI3EoDPd6GWI
qeZQ9uzCA4Nr8cxQybu+YcccV4YAqMxtcHxdq73nfhDs1tQLQZn8IFLtJTEpdBfz
hyI0G7fa0xdsOolUMFkPdkoUwSkkfR16pC8tCm1yUmN7qBfB4nvzTZcUgiH6dvLh
yyD8QeUXBggBOMxElQgE3pbCXO5xxclptarsmeVZQa0pT3VZuXs7gRs5
-----END CERTIFICATE-----
Generated at Tue May 6 16:53:13 2025 by rpki-client