Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e312e302f32342d3234203d3e20323133373130.roa
File: 38322e32392e312e302f32342d3234203d3e20323133373130.roa (raw, json)
Hash identifier: fsECU4fUmz5VIySPE202rh5ItzSu3HNmannvX6MbZZM=
Subject key identifier: FB:E4:5C:6B:BF:53:FB:10:46:34:78:09:81:19:82:F7:93:72:28:1E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 087DCDE26418DA39D2A298CBD52C2EB083114EFE
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e312e302f32342d3234203d3e20323133373130.roa
Signing time: Tue 31 Dec 2024 11:47:55 +0000
ROA not before: Tue 31 Dec 2024 11:42:55 +0000
ROA not after: Tue 30 Dec 2025 11:47:55 +0000
asID: 213710
IP address blocks: 82.29.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:7d:cd:e2:64:18:da:39:d2:a2:98:cb:d5:2c:2e:b0:83:11:4e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 31 11:42:55 2024 GMT
Not After : Dec 30 11:47:55 2025 GMT
Subject: CN=FBE45C6BBF53FB1046347809811982F79372281E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:ab:5b:3d:a5:d2:2b:0a:55:2a:2e:0d:19:
e0:94:e6:31:3b:c2:00:41:0b:b3:66:9d:e5:75:97:
96:2b:69:5a:18:d2:09:54:30:f9:bc:c8:5b:49:56:
26:1e:76:84:bf:d8:ee:32:9d:39:99:af:8c:70:58:
50:7f:2c:86:39:2a:58:bc:e0:70:eb:71:b2:21:07:
de:cb:ce:4f:4d:28:ba:10:43:9e:6f:83:c2:87:5d:
b4:ec:1a:d5:52:c7:41:0b:46:bd:c9:59:0a:25:1e:
5f:28:68:40:7f:8b:54:3c:56:e1:34:b6:f4:a9:35:
6b:98:de:e0:7d:31:ad:e6:74:08:7e:28:ed:e3:a6:
04:6a:8d:73:62:1f:ad:a7:09:30:9d:d6:73:b5:73:
76:29:c4:af:be:ef:7c:e6:4e:fb:fc:42:e8:3f:fa:
28:4c:29:c7:82:7e:37:c5:69:16:df:26:8b:cf:a0:
a8:66:83:18:e1:61:68:15:ee:09:d4:c0:57:05:b4:
bf:87:6e:b4:ea:f0:a2:27:78:0d:b5:9b:76:3d:98:
85:2a:86:f3:98:1f:d2:8f:ab:be:09:01:d7:a4:17:
8c:d5:83:d6:78:ff:ac:76:74:8d:8c:25:81:62:c1:
12:16:46:b8:b8:3d:1e:bd:07:bc:51:b9:b1:68:5f:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E4:5C:6B:BF:53:FB:10:46:34:78:09:81:19:82:F7:93:72:28:1E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e312e302f32342d3234203d3e20323133373130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:83:d9:f6:d1:f1:bf:f8:4f:00:d0:80:ab:b9:c2:54:2e:a7:
ae:28:b2:28:84:b3:40:d9:94:e6:0d:24:2a:ba:91:c7:ac:af:
bd:13:60:19:33:80:b8:63:39:35:08:ed:10:a3:ca:66:74:ec:
63:93:0d:ce:bb:3e:a1:e8:45:1b:ff:d6:58:29:3f:fd:80:3b:
c2:ba:38:fd:46:2c:63:de:e2:ac:08:8c:f2:4e:65:69:ed:a8:
b5:f5:be:5a:04:22:86:4f:a6:23:70:28:1c:32:f8:f9:b4:e7:
3c:03:87:6c:6f:49:0a:af:18:7d:d6:25:08:b5:3e:ed:3d:4d:
99:45:2b:8a:f2:80:25:95:cc:13:eb:3f:51:4a:7e:25:57:ce:
92:bd:1b:46:2f:d5:1f:8f:f5:96:d1:f3:01:9e:2b:21:e3:1f:
ff:34:01:73:7f:6c:87:e6:b0:cb:9e:96:70:84:9a:01:1d:7a:
02:b4:4b:82:43:e9:32:85:93:ce:2d:30:f9:a5:50:87:7b:aa:
04:64:0f:4a:dd:7e:88:1d:2a:5d:5d:65:a2:14:26:a5:9f:47:
c5:a2:28:dc:f8:37:24:5c:c7:b3:69:2b:ef:0a:39:c5:3c:35:
b1:05:76:67:a9:b0:05:2c:fe:51:d7:2c:ae:09:a5:81:7f:48:
41:95:b6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 14:54:42 2025 by rpki-client