Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a643a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a643a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: M/dKmNWnwH6lR+GvcBSmzzlTjV12C7+cWutdZFs8yVU=
Subject key identifier: 25:5C:85:51:57:02:0D:0D:46:18:6A:4C:E9:13:D4:DF:03:62:DC:B9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 11E447ADA433648B8F02C451AD16AF9832377B73
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a643a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:17 +0000
ROA not before: Fri 27 Dec 2024 09:23:17 +0000
ROA not after: Fri 26 Dec 2025 09:28:17 +0000
asID: 9009
IP address blocks: 2a13:9500:d::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:e4:47:ad:a4:33:64:8b:8f:02:c4:51:ad:16:af:98:32:37:7b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:17 2024 GMT
Not After : Dec 26 09:28:17 2025 GMT
Subject: CN=255C855157020D0D46186A4CE913D4DF0362DCB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c1:38:9c:ea:12:f8:5d:60:57:37:4a:19:c2:
c1:f0:d9:ac:84:cf:34:9d:8d:f4:09:28:f8:64:31:
27:f3:37:e0:55:05:89:c8:ba:78:58:06:c7:4f:90:
ae:e2:ea:07:5b:3b:28:20:eb:b1:f9:05:26:c4:83:
af:b8:39:ca:8b:f7:0c:73:71:cd:9a:f5:13:ea:a7:
26:42:10:36:13:c8:9d:8c:73:bc:0b:25:8e:8d:52:
fa:07:c6:03:50:37:b0:d8:72:16:54:3d:42:56:f4:
fe:70:f9:b0:bd:bd:bb:b5:18:08:56:e7:1a:0b:0b:
07:e3:a7:a0:8c:4b:f1:45:6e:7f:00:cf:ae:d9:d4:
d6:e9:d1:7a:2b:dc:bf:1c:8a:53:2f:d6:c7:4e:2a:
f4:0f:54:28:72:89:20:20:b7:5d:16:5a:c4:4f:c8:
21:3f:3a:f5:f2:ec:50:86:b3:df:a5:04:8b:46:5f:
ae:49:41:a9:10:ee:f3:b1:a8:43:61:9b:01:34:b9:
38:2f:5d:66:cf:ea:03:c5:bd:89:fe:ae:30:42:ab:
5a:f2:5e:0e:86:4b:f6:c6:6b:e7:1b:29:ae:40:45:
66:ff:81:82:f7:b6:20:fe:7a:1f:cc:b8:93:73:86:
17:12:89:40:8a:da:19:27:dd:1f:0f:b0:c4:2e:55:
cd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5C:85:51:57:02:0D:0D:46:18:6A:4C:E9:13:D4:DF:03:62:DC:B9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a643a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:d::/48
Signature Algorithm: sha256WithRSAEncryption
44:5d:5f:07:20:4e:f7:c9:a1:7f:2e:f8:1f:72:77:a8:b9:d4:
4f:d7:1c:cd:4f:1c:bc:4e:0a:c6:16:b5:4b:81:8d:29:7c:7d:
51:69:f0:92:4a:23:d7:e9:b1:cf:b9:df:19:a2:69:39:69:98:
8e:5d:87:cc:1e:05:24:55:84:ac:2c:09:7b:a4:05:a2:b5:54:
d8:07:14:1a:3a:91:92:fb:df:a0:a8:a1:64:7f:bd:dd:a0:f4:
a3:da:c5:04:c1:c5:a5:01:2d:e7:ba:1f:ea:a8:44:7c:c6:2c:
ca:e8:56:61:86:66:e9:5b:d0:b8:28:f1:de:79:80:78:a5:45:
62:88:b1:19:c5:51:b2:b5:81:7b:d7:9a:a7:05:64:2d:95:cc:
63:61:b7:f4:17:92:ef:06:4d:fb:93:ec:19:9a:ef:33:97:4e:
90:7d:7f:74:c6:b5:fa:4c:ca:d5:33:8e:8f:bf:17:bb:b1:f7:
6e:7d:8d:16:06:f9:dc:ab:63:d5:ec:23:82:00:ff:be:71:7f:
38:62:6b:ae:2d:3e:c9:18:26:d0:36:8a:8a:26:6d:79:92:ab:
fc:9b:04:6f:f9:40:65:fd:63:45:89:91:d8:62:f0:10:79:eb:
76:f8:fc:3f:d5:3e:a8:a7:55:50:c9:cb:72:e7:17:77:16:57:
89:38:19:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 16:49:58 2025 by rpki-client