Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: yWGL3hKTJ6au3lXy57+XMnoXlQS+vPj4HGIBEMW9BSE=
Subject key identifier: 73:4E:E4:C5:09:FE:78:36:07:1F:B2:52:A6:B0:5D:EE:D4:92:0D:83
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 2501CF8053ABD271B6D710BA52D0726DA883F677
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:19 +0000
ROA not before: Fri 27 Dec 2024 09:23:19 +0000
ROA not after: Fri 26 Dec 2025 09:28:19 +0000
asID: 9009
IP address blocks: 2a13:9500:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:01:cf:80:53:ab:d2:71:b6:d7:10:ba:52:d0:72:6d:a8:83:f6:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:19 2024 GMT
Not After : Dec 26 09:28:19 2025 GMT
Subject: CN=734EE4C509FE7836071FB252A6B05DEED4920D83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6e:c4:f9:04:9c:15:6c:45:bd:75:71:08:37:
ac:80:5c:14:73:c4:f6:89:cc:29:88:e1:97:5d:77:
ad:ec:8f:f1:05:56:56:5b:17:2b:48:24:9f:77:73:
35:99:96:38:27:00:57:4d:39:0d:99:da:72:17:d4:
6d:2e:5e:17:a7:37:d8:cc:ee:0e:c3:f5:ab:94:cb:
9b:b8:70:64:ab:5b:a2:e6:93:5d:56:f4:c6:62:26:
ee:19:bf:c4:7d:e0:b4:b8:0f:aa:6a:ad:19:2d:d3:
03:14:cc:8c:7d:c4:23:e8:08:df:1b:5e:11:24:b1:
36:36:1e:2c:35:01:0e:80:aa:37:00:c9:f1:2c:0f:
46:ad:c8:44:3b:6c:35:46:6a:73:e6:cd:e9:30:1a:
ea:22:2d:c6:4b:31:ad:55:66:70:78:35:26:3b:67:
75:42:b3:5d:72:b7:eb:bc:29:fa:df:ab:d6:ad:67:
14:ea:1a:cc:45:a0:0c:54:8a:db:28:ba:a7:fa:74:
bb:4b:45:77:a3:33:a3:1e:d0:47:ea:9d:0d:82:ec:
df:67:d6:af:3d:56:a7:bb:33:9e:e3:ff:43:c0:d0:
c3:d5:b2:df:cd:29:82:af:a3:90:0f:0c:77:7d:d8:
e3:03:b0:f7:39:aa:b0:80:f3:fe:7c:34:57:06:35:
83:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4E:E4:C5:09:FE:78:36:07:1F:B2:52:A6:B0:5D:EE:D4:92:0D:83
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a393a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:9::/48
Signature Algorithm: sha256WithRSAEncryption
28:69:ef:9e:99:0d:5f:34:64:7c:5c:d8:56:04:c1:06:9b:77:
bc:2a:a8:83:d6:bb:e3:6b:85:8e:f0:d3:eb:bd:09:8c:fd:c3:
5f:07:85:98:c0:55:54:fd:92:73:32:8a:94:86:eb:15:17:99:
03:bb:07:49:2b:9e:50:d1:a2:26:d7:40:2c:8e:52:99:e4:29:
81:d7:60:04:8e:40:2d:b5:29:4f:8d:c8:2d:c7:e7:ed:2f:a1:
ed:8d:e6:a9:1c:23:0e:c4:c3:2e:10:98:93:7a:c0:a0:0e:8b:
48:fc:c5:e6:ab:f7:57:81:fe:40:92:08:d7:26:f2:07:ef:fc:
9b:8e:37:ad:f3:7e:17:49:00:cc:c2:35:40:48:c0:44:d7:c0:
3b:67:ed:3e:59:74:57:06:87:d1:55:1f:66:1a:17:5c:f7:86:
9b:73:06:8c:57:68:06:94:6d:bc:5f:ae:ec:cd:25:a0:23:43:
d9:50:75:45:41:62:46:0f:0e:88:14:19:e5:bb:b5:fb:bc:4c:
ad:93:71:07:31:c4:7f:32:fe:b8:3f:c3:04:46:96:ec:0c:d4:
65:df:60:68:d2:be:70:64:a3:69:21:26:b4:43:d1:d1:7a:bf:
91:4c:a2:75:66:93:c2:ae:bf:ce:9c:7d:34:6b:62:56:65:d0:
e7:5c:d1:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:20:31 2025 by rpki-client