Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa
File: 326130353a646663353a3a2f33322d3438203d3e20323033303639.roa (raw, json)
Hash identifier: nUVCJO7s5Ad3iPwa8rYHL0wUvmbuVzf24FKFYLxCBg4=
Subject key identifier: 5B:06:AB:31:C1:DF:8E:64:B1:8F:EC:B9:79:4C:42:2E:57:DB:78:2E
Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5
Certificate serial: 24B9FF0FCD31D5BF0E44AE737B240B749DBBBC3C
Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa
Signing time: Tue 18 Feb 2025 22:51:41 +0000
ROA not before: Tue 18 Feb 2025 22:46:41 +0000
ROA not after: Tue 17 Feb 2026 22:51:41 +0000
asID: 203069
IP address blocks: 2a05:dfc5::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Mar 2025 18:09:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:b9:ff:0f:cd:31:d5:bf:0e:44:ae:73:7b:24:0b:74:9d:bb:bc:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5
Validity
Not Before: Feb 18 22:46:41 2025 GMT
Not After : Feb 17 22:51:41 2026 GMT
Subject: CN=5B06AB31C1DF8E64B18FECB9794C422E57DB782E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ae:e5:a3:ee:af:6f:b5:85:d3:c0:67:0e:7e:
49:f0:76:35:bf:01:f8:7a:1c:e9:e3:2b:f6:8e:c2:
30:6b:64:19:78:0d:f7:8c:c0:32:dd:2d:2b:87:09:
53:cd:0c:16:50:7b:6d:b5:4c:87:b3:ab:07:2d:3b:
d3:d1:c7:44:e0:2f:99:b9:bb:51:10:fc:4e:c0:01:
b8:2d:06:3e:75:aa:75:78:3e:4c:f6:1c:b1:51:6a:
21:0c:1a:05:41:be:70:4e:e0:15:ca:66:99:c9:26:
67:70:eb:5e:60:a3:ea:1e:e1:30:b6:4c:e3:ae:a6:
f3:08:08:72:89:85:27:dd:c7:65:06:33:a3:16:9f:
16:2a:0d:9e:06:d1:53:97:cc:cb:f4:b9:5a:2a:45:
0f:8f:36:70:91:b5:a7:09:ac:f3:c3:d6:2b:25:d4:
6c:ec:83:df:2b:0e:95:a3:03:44:8a:40:82:3e:55:
0c:77:ea:19:4c:93:96:b4:d1:76:43:2d:6f:48:f9:
fc:c9:71:88:ba:13:48:0f:48:fd:24:8d:f2:a7:15:
19:b6:c8:48:02:b6:2e:77:c0:05:d7:26:06:4f:c9:
67:67:eb:5f:d2:33:6f:7c:ef:2d:a5:90:c6:6d:55:
da:cd:f0:70:5e:f2:b8:45:ef:0a:4d:4e:e8:e2:87:
41:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:06:AB:31:C1:DF:8E:64:B1:8F:EC:B9:79:4C:42:2E:57:DB:78:2E
X509v3 Authority Key Identifier:
keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc5::/32
Signature Algorithm: sha256WithRSAEncryption
0c:71:8a:15:24:f1:52:91:f3:5c:f4:94:6e:ad:af:48:8d:20:
d3:42:72:91:16:d5:87:06:d6:43:ae:dc:94:a7:8b:b7:99:e4:
13:79:05:01:20:8c:83:67:c5:02:34:cb:fe:db:a4:94:03:06:
d1:f3:fc:57:fc:15:2d:e2:fb:7d:69:ec:e7:69:07:11:02:51:
5b:06:89:f0:12:1d:63:91:7f:28:ec:45:c0:ec:3a:a1:d7:f2:
f7:04:e8:34:1c:79:eb:44:ee:81:3e:fb:0d:1b:60:fa:00:cc:
15:f6:5f:17:81:ac:5e:97:ea:42:8f:8a:5b:f0:c8:b5:a7:71:
b0:23:07:12:9b:7d:46:3f:d8:7f:74:46:2d:d1:52:08:c2:a8:
d5:1d:b7:18:ce:b2:5a:88:3a:63:e7:c3:ab:9f:02:29:1b:4a:
7d:1c:d5:8e:cb:1f:02:33:db:c2:8f:a5:ca:fe:17:ce:88:79:
4d:48:fe:39:f3:d3:49:9f:22:4d:76:f3:93:f5:be:a5:1e:86:
f3:19:b1:62:13:fd:9e:51:33:e7:e9:0f:8f:42:c7:01:96:77:
35:fb:78:bb:0d:58:e0:f0:92:fb:be:93:20:56:34:9d:ab:28:
74:5e:3d:b8:cc:ff:d7:f9:27:99:85:5a:ea:f6:54:74:1c:60:
ca:86:74:f9
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgIUJLn/D80x1b8ORK5zeyQLdJ27vDwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0
MEIyQjZCNTAeFw0yNTAyMTgyMjQ2NDFaFw0yNjAyMTcyMjUxNDFaMDMxMTAvBgNV
BAMTKDVCMDZBQjMxQzFERjhFNjRCMThGRUNCOTc5NEM0MjJFNTdEQjc4MkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsruWj7q9vtYXTwGcOfknwdjW/
Afh6HOnjK/aOwjBrZBl4DfeMwDLdLSuHCVPNDBZQe221TIezqwctO9PRx0TgL5m5
u1EQ/E7AAbgtBj51qnV4Pkz2HLFRaiEMGgVBvnBO4BXKZpnJJmdw615go+oe4TC2
TOOupvMICHKJhSfdx2UGM6MWnxYqDZ4G0VOXzMv0uVoqRQ+PNnCRtacJrPPD1isl
1Gzsg98rDpWjA0SKQII+VQx36hlMk5a00XZDLW9I+fzJcYi6E0gPSP0kjfKnFRm2
yEgCti53wAXXJgZPyWdn61/SM2987y2lkMZtVdrN8HBe8rhF7wpNTujih0HVAgMB
AAGjggJuMIICajAdBgNVHQ4EFgQUWwarMcHfjmSxj+y5eUxCLlfbeC4wHwYDVR0j
BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi
ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy
QjZCNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct
NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1
M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
KgXfxTANBgkqhkiG9w0BAQsFAAOCAQEADHGKFSTxUpHzXPSUbq2vSI0g00JykRbV
hwbWQ67clKeLt5nkE3kFASCMg2fFAjTL/tuklAMG0fP8V/wVLeL7fWns52kHEQJR
WwaJ8BIdY5F/KOxFwOw6odfy9wToNBx560TugT77DRtg+gDMFfZfF4GsXpfqQo+K
W/DItadxsCMHEpt9Rj/Yf3RGLdFSCMKo1R23GM6yWog6Y+fDq58CKRtKfRzVjssf
AjPbwo+lyv4Xzoh5TUj+OfPTSZ8iTXbzk/W+pR6G8xmxYhP9nlEz5+kPj0LHAZZ3
Nft4uw1Y4PCS+76TIFY0nasodF49uMz/1/knmYVa6vZUdBxgyoZ0+Q==
-----END CERTIFICATE-----
Generated at Thu Apr 17 07:24:25 2025 by rpki-client