Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e3132342e302f32342d3234203d3e203231383539.roa
File: 38322e32392e3132342e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: 9hV+GDYvE13Hej4IMIz6C2tWG68HxW4aW4VsbPyWMUI=
Subject key identifier: 49:FD:E5:A8:EA:91:0F:32:E4:A9:07:F6:83:77:5F:A2:4A:90:5F:63
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 779049A784A068409893950BCC3F272259941CC9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e3132342e302f32342d3234203d3e203231383539.roa
Signing time: Tue 31 Dec 2024 04:12:55 +0000
ROA not before: Tue 31 Dec 2024 04:07:55 +0000
ROA not after: Tue 30 Dec 2025 04:12:55 +0000
asID: 21859
IP address blocks: 82.29.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:90:49:a7:84:a0:68:40:98:93:95:0b:cc:3f:27:22:59:94:1c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 31 04:07:55 2024 GMT
Not After : Dec 30 04:12:55 2025 GMT
Subject: CN=49FDE5A8EA910F32E4A907F683775FA24A905F63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:19:83:61:89:95:46:d4:07:40:9d:57:16:19:
9d:82:76:95:52:d2:a7:e1:66:15:76:c5:d8:70:77:
00:8a:fd:53:db:d5:53:3b:ca:54:77:1b:70:b1:4e:
e0:72:c4:51:03:b9:99:0e:14:00:51:fd:92:64:e0:
b6:4f:68:e0:88:e9:26:40:69:d9:e0:dd:56:70:81:
7b:f5:71:4a:06:d9:3b:21:3c:92:22:20:78:ba:91:
fd:93:14:4e:f1:5b:e9:bf:3b:7f:53:b1:eb:64:dd:
63:42:07:06:64:01:f1:45:68:cc:c1:3a:3c:a7:70:
0a:84:c4:8e:63:ab:a3:d1:50:f6:5f:e0:bc:2d:ba:
3c:87:4f:42:3c:5e:81:fc:b0:c0:79:1c:3b:21:a8:
07:1f:a3:7f:c5:9d:e7:bf:29:0a:b4:05:4b:1a:2a:
43:0e:1a:d3:39:2d:bd:dc:37:e3:be:db:a4:49:06:
90:f4:f2:57:45:57:4c:0b:ca:65:3e:1c:08:78:d0:
98:5a:9a:b5:1b:45:b7:39:35:63:1c:3b:bc:fd:2a:
a2:ed:06:1d:b0:83:53:00:61:38:ae:f4:21:ec:aa:
d6:e5:85:17:ab:18:e6:74:d5:80:58:f9:4b:c5:28:
ff:37:64:56:ac:dd:82:13:63:d6:13:fd:76:79:f9:
95:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FD:E5:A8:EA:91:0F:32:E4:A9:07:F6:83:77:5F:A2:4A:90:5F:63
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32392e3132342e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.124.0/24
Signature Algorithm: sha256WithRSAEncryption
72:1d:f9:59:35:06:0e:ad:33:48:7f:0a:ab:9c:93:58:60:0c:
a8:74:80:88:fe:91:79:f3:e4:64:b6:2b:15:cd:07:0f:ed:ce:
b7:4a:9b:f7:ff:56:2a:e5:d0:01:97:34:45:78:1f:3c:7d:e3:
3d:ea:c6:31:a1:cc:8b:31:57:28:a7:da:71:c0:57:d6:a7:91:
32:6a:3e:39:e1:7b:20:16:09:de:14:f4:ad:ea:fd:b3:2f:7f:
01:3e:b8:db:a5:0b:30:f1:a7:13:4d:2f:42:b2:45:ac:06:c3:
f6:dd:9b:7b:af:b8:5a:91:7b:bb:84:a6:39:2f:c6:b7:e6:30:
af:f0:db:12:5f:6a:9f:5e:b5:9d:35:0e:7d:bf:b7:a0:d2:a0:
b0:c6:2e:fe:24:cc:2d:ed:6d:ea:dc:98:b0:b5:96:4f:d8:b1:
07:9b:eb:58:9e:40:9a:bb:82:3c:07:46:d2:08:4a:a4:fd:b3:
f8:2e:f0:f8:3e:43:30:cf:97:b5:1e:94:00:34:ec:c2:05:bc:
c2:ba:cf:51:c6:6f:f2:d0:7e:e0:5a:7a:0f:e1:cd:42:0f:51:
28:05:e5:b5:d0:e7:28:f1:b3:95:e4:1a:82:dc:2b:16:51:4a:
42:9e:f7:03:02:04:d4:4c:59:18:aa:d2:3b:ba:84:49:07:45:
3d:3f:01:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:32:40 2025 by rpki-client