Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 4ZXFzVAjfjncrywWy8lQUSWudCda8G+8xbbkVvyrAPU=
Subject key identifier: C8:F8:D0:05:A7:55:DA:7B:97:50:45:79:56:6A:B9:BF:4C:45:01:86
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 02375D8E230D0B493A2B4CFEEC22B7387FA3BCE9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:18 +0000
ROA not before: Fri 27 Dec 2024 09:23:18 +0000
ROA not after: Fri 26 Dec 2025 09:28:18 +0000
asID: 9009
IP address blocks: 2a13:9500:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:37:5d:8e:23:0d:0b:49:3a:2b:4c:fe:ec:22:b7:38:7f:a3:bc:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:18 2024 GMT
Not After : Dec 26 09:28:18 2025 GMT
Subject: CN=C8F8D005A755DA7B97504579566AB9BF4C450186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:c9:e6:ad:48:6b:b8:39:d6:0d:cd:3a:46:
01:95:30:0a:4f:72:1b:a5:2c:e9:39:1e:6c:6d:8c:
d5:2d:c1:92:2a:de:ed:fb:60:6d:f1:2a:e5:50:dd:
9c:e6:4b:65:70:0e:9e:73:31:0e:5c:bf:4e:4a:f7:
a2:a5:f6:b0:39:d9:71:60:d7:0e:e6:3b:69:8c:03:
c0:57:49:ee:56:91:06:ba:82:39:fc:de:1a:eb:e6:
da:48:d8:ba:16:82:68:5b:be:be:45:ac:98:4a:4b:
ab:c1:e0:d8:ae:bf:b5:3c:f0:ec:9f:b4:16:97:36:
91:6c:51:1c:3a:4d:af:25:96:ff:bc:c1:b6:75:34:
5b:95:13:9b:ad:4b:8a:bb:0b:51:8f:ad:07:84:31:
21:53:5c:fa:26:b0:e6:05:ea:c6:93:e8:e1:1b:4d:
fc:0a:01:97:19:cd:7e:f3:db:a3:50:0b:78:33:1a:
8a:6b:a8:c5:fb:4c:d2:f9:8e:be:3d:74:81:2e:3e:
88:69:dc:6f:61:17:74:55:8f:f1:40:3b:96:65:dd:
b0:53:c3:53:6f:22:10:ba:e3:4d:a7:2d:06:7e:65:
51:56:c6:11:ba:a3:89:5c:e8:24:6c:cc:c5:4e:33:
0e:55:8f:9a:e8:5b:23:6d:33:bc:cd:d4:f3:81:29:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F8:D0:05:A7:55:DA:7B:97:50:45:79:56:6A:B9:BF:4C:45:01:86
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a633a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:c::/48
Signature Algorithm: sha256WithRSAEncryption
4d:cf:7d:65:7f:a5:7f:bc:f3:42:80:8a:2c:da:03:d1:26:ff:
1d:b4:91:69:34:3c:a8:6d:01:e8:b3:2f:f9:b7:00:05:58:74:
fc:15:ad:65:28:7c:7f:b7:52:d4:2c:7e:10:a9:31:85:26:80:
be:f9:2c:4d:f5:a9:2f:4c:8d:92:2b:74:6a:88:06:e6:16:5f:
69:5e:cb:05:0f:2b:7d:a8:5a:74:47:c8:23:0c:ee:63:66:ba:
cd:1a:c7:1c:63:4f:0b:4a:8f:a7:9b:41:0e:f1:89:4c:28:8c:
25:c8:9c:6b:cd:92:db:54:18:64:0d:6e:e0:b2:99:df:2e:1f:
d2:33:41:ae:83:12:b1:14:2a:9d:14:7c:6b:52:1a:72:75:0f:
72:d2:d5:3d:72:2b:ab:35:3c:07:34:38:00:cf:a5:a2:de:8d:
cb:fe:2e:b1:bb:12:eb:0a:5a:98:99:94:6f:f8:a1:b5:77:e2:
ea:79:78:f0:c9:59:be:cc:b6:78:ea:d3:9c:28:53:6a:cd:f1:
5a:47:ae:1c:3f:a6:15:28:ee:ce:ad:7a:d1:bb:d8:bb:e1:09:
70:f3:87:35:04:47:82:33:cb:28:26:38:36:d8:26:d3:a6:f3:
cd:9d:06:0d:7b:4f:66:a7:0c:64:6c:23:8f:03:17:70:7b:fe:
51:7f:b6:93
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUAjddjiMNC0k6K0z+7CK3OH+jvOkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNDEyMjcwOTIzMThaFw0yNTEyMjYwOTI4MThaMDMxMTAvBgNV
BAMTKEM4RjhEMDA1QTc1NURBN0I5NzUwNDU3OTU2NkFCOUJGNEM0NTAxODYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtK8nmrUhruDnWDc06RgGVMApP
chulLOk5HmxtjNUtwZIq3u37YG3xKuVQ3ZzmS2VwDp5zMQ5cv05K96Kl9rA52XFg
1w7mO2mMA8BXSe5WkQa6gjn83hrr5tpI2LoWgmhbvr5FrJhKS6vB4Niuv7U88Oyf
tBaXNpFsURw6Ta8llv+8wbZ1NFuVE5utS4q7C1GPrQeEMSFTXPomsOYF6saT6OEb
TfwKAZcZzX7z26NQC3gzGoprqMX7TNL5jr49dIEuPohp3G9hF3RVj/FAO5Zl3bBT
w1NvIhC6402nLQZ+ZVFWxhG6o4lc6CRszMVOMw5Vj5roWyNtM7zN1POBKZKHAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUyPjQBadV2nuXUEV5Vmq5v0xFAYYwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYt
YjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWExYWY2LzAvMzI2MTMxMzMzYTM5MzUzMDMw
M2E2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM5MzAzMDM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA
KhOVAAAMMA0GCSqGSIb3DQEBCwUAA4IBAQBNz31lf6V/vPNCgIos2gPRJv8dtJFp
NDyobQHosy/5twAFWHT8Fa1lKHx/t1LULH4QqTGFJoC++SxN9akvTI2SK3RqiAbm
Fl9pXssFDyt9qFp0R8gjDO5jZrrNGsccY08LSo+nm0EO8YlMKIwlyJxrzZLbVBhk
DW7gspnfLh/SM0GugxKxFCqdFHxrUhpydQ9y0tU9ciurNTwHNDgAz6Wi3o3L/i6x
uxLrClqYmZRv+KG1d+LqeXjwyVm+zLZ46tOcKFNqzfFaR64cP6YVKO7OrXrRu9i7
4Qlw84c1BEeCM8soJjg22CbTpvPNnQYNe09mpwxkbCOPAxdwe/5Rf7aT
-----END CERTIFICATE-----
Generated at Fri Jun 6 22:08:12 2025 by rpki-client