Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32362e36342e302f31382d3234203d3e20383334.roa
File: 38322e32362e36342e302f31382d3234203d3e20383334.roa (raw, json)
Hash identifier: bRztsUUFkLozLC4y3RFjDrcP/soj1VzsSOgAU4cKElw=
Subject key identifier: 4C:61:0C:88:95:1E:A1:25:A6:F1:5C:36:E9:99:D9:28:DA:74:CD:28
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0F1BDE52B8512CF3727A679F515E1746CDDE5CB5
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32362e36342e302f31382d3234203d3e20383334.roa
Signing time: Fri 27 Dec 2024 10:06:32 +0000
ROA not before: Fri 27 Dec 2024 10:01:32 +0000
ROA not after: Fri 26 Dec 2025 10:06:32 +0000
asID: 834
IP address blocks: 82.26.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 11:21:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:1b:de:52:b8:51:2c:f3:72:7a:67:9f:51:5e:17:46:cd:de:5c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 10:01:32 2024 GMT
Not After : Dec 26 10:06:32 2025 GMT
Subject: CN=4C610C88951EA125A6F15C36E999D928DA74CD28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b3:0c:95:73:84:bc:9b:c8:a3:0c:d1:1d:54:
ae:ed:e9:fd:03:b1:ee:0c:53:83:b6:b8:0c:23:d2:
0d:80:9e:33:74:47:8f:06:b1:f0:04:88:1a:86:5d:
aa:e0:ed:58:b4:77:cc:ed:94:75:d9:60:ba:51:e8:
8b:d4:18:4f:48:0e:70:23:df:8d:6a:2a:ec:76:96:
18:dc:15:ce:2d:69:04:98:35:9a:ac:9e:f5:ef:b2:
d8:49:d3:98:24:33:ad:05:2b:9e:8f:00:76:a2:01:
50:f4:98:fc:63:e6:ec:07:20:8d:ea:76:4d:f5:b4:
5c:b8:81:20:73:78:37:04:92:d4:b0:f2:61:2b:db:
61:16:21:40:c5:81:5b:23:d6:56:dd:23:73:a8:a8:
d8:e4:d4:ca:a8:65:9b:e4:b4:06:a1:d7:00:9f:08:
6f:8d:05:a2:81:95:8a:8c:65:32:d3:9f:9c:65:33:
6f:88:60:c8:78:03:7b:46:44:c4:b3:03:d9:78:83:
14:84:e3:7d:f1:6b:b0:4f:0c:df:34:5e:0d:83:0c:
7b:52:4d:59:08:e1:12:f9:c1:8c:5b:4b:c3:27:09:
41:61:9b:3d:1a:90:51:62:3b:c4:bd:b1:da:0e:56:
20:a9:8b:63:df:3a:0b:25:1a:9b:ef:82:40:61:8a:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:61:0C:88:95:1E:A1:25:A6:F1:5C:36:E9:99:D9:28:DA:74:CD:28
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32362e36342e302f31382d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.64.0/18
Signature Algorithm: sha256WithRSAEncryption
11:d5:3d:43:06:6b:9d:d2:2f:90:48:7a:74:fc:93:60:0d:c2:
87:7b:a0:1b:2b:b6:b0:82:eb:6f:a1:08:b3:e7:1f:c8:40:92:
02:5c:94:1d:94:6e:e2:e1:94:95:fd:f9:37:3e:0a:d8:97:db:
7e:42:55:bd:d2:71:a7:67:03:85:4b:73:3f:58:89:dc:a0:47:
40:8f:12:65:ff:3d:b1:6f:28:d0:44:00:0b:3e:09:95:12:da:
b8:8a:9f:eb:59:c2:ca:af:94:8e:f1:65:f5:b0:d2:dd:00:af:
70:c7:d2:ae:59:39:3e:8a:a8:57:3e:90:37:7e:61:05:66:0c:
53:03:63:38:94:a2:57:71:a4:21:09:cf:d9:2f:86:05:84:20:
0f:89:e2:f6:92:62:ae:cc:75:10:ca:51:4c:a8:a3:85:f2:97:
10:83:3d:74:fc:f0:eb:36:e2:14:94:36:71:6f:d0:a1:14:a6:
2a:8c:0a:64:30:28:b6:7e:2a:3e:d4:86:75:b8:9d:b7:49:9a:
a1:ab:ee:50:6f:fa:ed:0c:e7:b9:30:b8:50:b9:2a:f6:f8:b1:
62:5b:a0:ec:dd:80:07:4c:6d:00:b2:c1:e9:23:d1:e5:e9:21:
ea:3d:2a:e8:35:b8:b3:63:08:a2:e0:a2:d8:36:90:10:06:1a:
2b:a6:5c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 16:47:17 2025 by rpki-client