Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a623a3a2f34382d3438203d3e203239383032.roa
File: 326131333a393530303a623a3a2f34382d3438203d3e203239383032.roa (raw, json)
Hash identifier: bZfOAPVpKBSjpbd6iTEck+hxMk7NVZU5FYke03gfNfY=
Subject key identifier: F3:20:4B:A9:B0:43:96:BA:87:99:16:F6:C1:BA:2D:0A:F3:7D:EB:94
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3488711740CF38447298A3033E2518C5810632C7
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a623a3a2f34382d3438203d3e203239383032.roa
Signing time: Fri 27 Dec 2024 09:28:16 +0000
ROA not before: Fri 27 Dec 2024 09:23:16 +0000
ROA not after: Fri 26 Dec 2025 09:28:16 +0000
asID: 29802
IP address blocks: 2a13:9500:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:88:71:17:40:cf:38:44:72:98:a3:03:3e:25:18:c5:81:06:32:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:16 2024 GMT
Not After : Dec 26 09:28:16 2025 GMT
Subject: CN=F3204BA9B04396BA879916F6C1BA2D0AF37DEB94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:69:63:71:83:bc:45:09:cc:69:35:99:30:44:
a5:eb:8f:9f:db:0f:6a:89:6b:60:b1:ad:2c:3d:e6:
25:52:9a:3a:3b:27:62:32:54:38:f9:ad:06:81:72:
aa:a9:26:43:02:fa:73:57:f1:67:bb:4d:ba:c9:62:
12:75:66:92:ed:26:1b:01:b3:62:51:61:fe:51:9f:
bc:b3:fb:99:b3:1e:5d:f6:28:8e:d0:39:db:49:cf:
a6:4c:77:36:e9:09:2f:9f:56:0a:77:ee:d6:af:be:
e5:79:8a:0d:f6:60:86:77:47:62:dd:ce:76:e3:fc:
5a:0b:7d:3d:5d:ad:08:65:a0:09:dc:28:08:b2:37:
47:1c:32:f3:f4:95:8d:6b:66:82:5c:c6:3e:81:88:
7e:cc:c5:a7:ca:e3:47:3d:34:14:22:13:84:b8:51:
3a:d7:bb:1d:ac:19:1a:7c:98:0a:53:b1:2f:4b:17:
42:0a:f6:91:76:47:82:75:0a:0d:6f:12:7c:2a:76:
d9:55:99:8f:9b:84:8a:4b:a8:28:21:16:ba:67:57:
2c:fa:b2:2a:e1:70:49:5a:50:4c:4c:e6:cf:a4:7b:
a8:0e:6a:cf:68:47:7c:99:17:32:7a:a7:d4:ea:6c:
a2:cc:47:1b:86:99:9f:21:cc:fc:04:5e:7e:57:5e:
42:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:20:4B:A9:B0:43:96:BA:87:99:16:F6:C1:BA:2D:0A:F3:7D:EB:94
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a623a3a2f34382d3438203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:b::/48
Signature Algorithm: sha256WithRSAEncryption
60:a4:ce:75:4e:37:f0:09:b9:d2:a6:50:a9:15:7d:bd:3c:05:
82:cc:fe:60:bc:94:5f:9a:5b:88:fa:45:b2:ec:3d:83:db:99:
aa:d3:16:f7:0f:59:03:bf:6f:e5:a3:a6:2a:2e:0d:e0:65:5a:
3f:92:5e:4f:54:d8:e5:59:b3:a9:25:bd:ba:cd:4e:d5:5b:8a:
71:e6:7f:29:eb:bc:0d:58:95:6e:c6:68:49:81:5e:0f:f5:f5:
85:ce:b9:07:35:5c:2d:51:65:4e:96:b7:31:69:c7:b6:04:7f:
50:f7:d0:f3:c7:bb:f0:30:e9:9f:ff:55:d3:68:14:ca:0b:69:
94:13:d6:69:be:4c:ee:17:d2:85:ec:9d:df:78:1e:b2:4d:20:
0e:e0:f1:e6:42:1d:3f:47:21:b0:9c:3a:00:2a:7b:2f:da:8f:
3a:38:5c:f3:31:5a:bb:91:b8:99:66:dc:35:8e:62:5b:88:f6:
be:6d:cb:57:98:50:0e:d3:36:bf:84:1a:70:30:b2:18:14:67:
e1:49:d3:89:e4:7d:e9:da:33:af:f0:fe:e2:8c:95:53:75:34:
b0:47:1b:de:e1:45:be:f0:a7:3c:7c:5c:db:b9:23:f3:e8:dd:
8a:58:a2:4c:28:98:24:95:d3:90:81:be:61:82:e6:e4:5f:dc:
a9:a7:7b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 17:05:18 2025 by rpki-client