Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: mro1IN+oFBjF7bJ+Gf0ZuKUwY03yiQ+19xTKJIAcIVI=
Subject key identifier: 74:CB:0F:18:89:02:3F:67:AD:5F:FA:33:50:08:F2:8A:5C:9E:FA:08
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1ACF97D7C3B4583264342F67D65B7E92BB0594DE
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 27 Dec 2024 09:28:21 +0000
ROA not before: Fri 27 Dec 2024 09:23:21 +0000
ROA not after: Fri 26 Dec 2025 09:28:21 +0000
asID: 29802
IP address blocks: 2a13:9500:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:cf:97:d7:c3:b4:58:32:64:34:2f:67:d6:5b:7e:92:bb:05:94:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:21 2024 GMT
Not After : Dec 26 09:28:21 2025 GMT
Subject: CN=74CB0F1889023F67AD5FFA335008F28A5C9EFA08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:a3:5c:7a:b7:b7:5a:03:6e:c2:6b:c2:8d:
d7:b5:fd:9d:48:1e:d3:5b:e7:d8:f8:29:4c:28:62:
e8:51:90:8f:13:99:91:a3:3d:3e:76:6b:4c:e4:76:
a7:ba:42:8a:1e:0a:16:c3:14:07:bb:4a:2f:66:0f:
6a:64:ab:0f:6f:bd:c0:03:bd:2a:26:31:ae:de:7c:
53:29:30:68:b5:d4:8a:88:91:10:22:4c:49:08:fc:
1e:2e:60:bd:ad:b2:60:54:19:28:d0:70:06:97:73:
da:8f:0e:ee:2f:cd:83:3a:e4:2b:94:51:00:fc:c1:
8c:2a:76:76:ae:80:76:c5:46:cd:d2:23:93:a1:64:
be:90:91:73:0d:82:d6:9c:10:e9:e2:a5:b4:ba:20:
b0:91:ee:31:85:1d:c3:b8:20:45:31:2e:1b:d9:42:
96:1b:36:71:31:e3:15:0f:4f:74:d9:16:8b:f0:89:
6c:81:ac:3a:2b:82:b4:bb:61:47:0f:66:7a:dd:04:
b6:41:6b:94:92:2d:dd:e6:e3:ba:dd:e6:c6:1d:6f:
f9:d8:1f:3d:43:88:ac:f6:48:6a:2f:97:2c:ed:73:
34:15:08:e6:45:45:bc:ba:17:df:26:e1:27:41:3e:
94:8b:98:98:59:ba:e4:c3:d7:50:b1:05:3b:f9:af:
fe:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CB:0F:18:89:02:3F:67:AD:5F:FA:33:50:08:F2:8A:5C:9E:FA:08
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a613a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:a::/48
Signature Algorithm: sha256WithRSAEncryption
75:ab:c0:0f:d5:1b:be:83:84:c7:5c:76:ff:00:04:fc:f7:aa:
e1:ac:28:81:9b:cf:a8:01:5c:8d:37:ff:fb:a0:36:57:bf:79:
2f:3b:4b:26:30:9b:31:d7:1f:30:75:9c:49:f2:81:db:51:68:
96:1f:eb:53:2d:42:03:4a:4d:a4:66:af:2c:2b:80:ba:39:50:
af:4f:2d:4e:ea:96:ca:59:16:fa:c2:d4:fe:d1:62:1b:2a:3c:
d0:1b:90:a5:33:be:8b:18:a1:0c:b1:c7:e5:bb:15:b1:68:9d:
fe:2d:7c:2b:b9:0c:b2:8b:b2:63:5c:2b:fd:73:af:95:38:6e:
ed:ef:a0:2f:1c:ba:af:f6:69:92:e7:07:38:e2:e4:ea:9f:bb:
80:f8:3d:2d:49:7b:96:8a:a6:38:c2:4c:c6:c3:d4:c6:d8:06:
ce:3b:2e:61:4a:9d:d3:7b:f7:42:c3:2f:38:24:91:05:71:9a:
9f:b4:eb:0e:48:85:aa:ef:54:85:99:30:db:51:54:95:ae:e9:
ca:36:d1:ab:28:50:59:49:45:e0:99:4b:6a:92:48:73:37:41:
d4:ec:8d:d5:07:de:28:6c:2a:32:b9:35:e6:dc:a9:5c:5d:06:
3b:fa:d3:19:77:3b:97:31:3a:d9:af:d7:59:25:9c:56:fb:ca:
70:86:80:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:55:26 2025 by rpki-client