Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
File: 326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa (raw, json)
Hash identifier: pgXofFq4N2Gdv2hi2Gm+xDu3vPreVHe26x1G0OAsUTk=
Subject key identifier: 59:B7:DF:83:48:E8:C1:87:0B:C0:E6:A3:5B:73:CE:AF:DA:07:5F:C6
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1B9EFC48F3B3BF71F59C347494B5FC1267C65664
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
Signing time: Fri 27 Dec 2024 09:28:11 +0000
ROA not before: Fri 27 Dec 2024 09:23:11 +0000
ROA not after: Fri 26 Dec 2025 09:28:11 +0000
asID: 3356
IP address blocks: 2a13:9500:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:9e:fc:48:f3:b3:bf:71:f5:9c:34:74:94:b5:fc:12:67:c6:56:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:11 2024 GMT
Not After : Dec 26 09:28:11 2025 GMT
Subject: CN=59B7DF8348E8C1870BC0E6A35B73CEAFDA075FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ff:89:ed:a0:4f:99:d2:88:da:a9:26:54:ba:
de:50:df:44:60:58:69:82:80:af:2e:11:a6:37:a2:
a6:10:64:7c:cd:f1:ba:22:70:f2:71:f3:b0:3c:e3:
a1:69:2f:3b:d8:77:18:06:ac:d8:2d:6f:4e:08:4a:
ae:89:ad:7d:41:ea:19:4c:46:c0:2c:44:25:7d:bb:
d2:be:50:13:2d:d2:9d:65:a8:39:03:94:4d:23:55:
9d:c4:0d:fb:0c:6d:9a:61:38:8d:93:0d:6c:8c:85:
e0:4f:d0:6d:c2:ac:6f:23:22:b5:3d:87:bf:73:cd:
54:00:c9:90:1b:ab:9c:55:2c:c4:39:5c:25:35:aa:
53:9b:49:cf:60:41:9a:3e:1a:03:11:7d:ee:02:8c:
47:f7:14:85:87:fd:bb:ee:c8:47:20:db:22:65:d9:
4a:e2:3f:93:0c:86:dd:11:d4:8e:79:91:b3:4b:09:
7a:a9:5f:b5:b8:87:d9:04:00:ab:b7:13:a5:d5:59:
89:b9:7c:97:77:f8:5b:0f:d5:c6:9c:d4:07:06:c5:
a8:71:93:0e:f3:06:7b:7b:60:2e:d8:34:a7:d9:0d:
72:6d:49:0d:a0:e9:85:20:11:4f:7d:db:a9:fb:3a:
64:60:6d:8a:a6:cc:30:a1:5d:d0:cd:e2:fb:80:f0:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B7:DF:83:48:E8:C1:87:0B:C0:E6:A3:5B:73:CE:AF:DA:07:5F:C6
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a323a3a2f34382d3438203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:2::/48
Signature Algorithm: sha256WithRSAEncryption
79:06:a0:4e:3a:60:b8:ed:ec:0b:df:14:3c:f0:3f:da:00:ff:
66:8d:d8:de:03:85:c8:f8:dc:71:cf:d3:c9:4d:39:ab:3f:96:
21:21:41:03:12:96:b3:bd:a3:c0:3a:2a:ac:4b:b1:3c:92:3f:
b6:d9:70:bd:49:66:17:99:66:88:7a:6e:7b:e6:e0:d9:46:fa:
5d:c4:74:9d:4b:0a:2a:94:d7:b8:31:47:f6:30:99:c3:bb:3a:
57:95:f3:30:15:05:18:ea:5c:96:d3:00:e3:ac:55:14:40:24:
87:9a:ee:38:c4:08:fc:97:b3:10:f8:0b:07:6b:f0:3c:82:df:
7c:be:6c:50:81:66:c1:ed:b5:1c:3b:55:fc:b6:76:3c:63:3f:
60:32:85:22:d8:24:07:40:b0:8b:02:1f:ff:1b:16:38:22:c6:
b5:b3:3a:25:f9:34:13:3a:4b:e0:68:d4:fa:6c:4a:88:cf:0b:
aa:e0:5e:ab:ae:e6:b4:28:45:74:9e:d2:88:cf:af:f3:d0:fc:
0a:83:6c:55:eb:6a:50:4e:2b:76:80:e2:84:dc:36:84:04:f6:
88:e4:08:72:14:91:3c:66:3a:fa:28:78:b8:e3:60:c9:69:f1:
ee:ad:bc:77:e5:90:63:5d:f4:55:01:e9:96:fa:7a:60:e5:2e:
c5:85:06:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:10:15 2025 by rpki-client