Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
File: 326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa (raw, json)
Hash identifier: 9gRtx+R4kaWBVEz6pF0m0kprXyzVabXPxCFEClAvbBo=
Subject key identifier: 24:BB:61:03:EC:AF:CF:0F:86:8F:2E:1C:41:F1:BC:B1:00:E4:2F:A7
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 50318CE8B77AFA8AF8861E5A543591D918EC2982
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
Signing time: Fri 27 Dec 2024 09:28:18 +0000
ROA not before: Fri 27 Dec 2024 09:23:18 +0000
ROA not after: Fri 26 Dec 2025 09:28:18 +0000
asID: 9009
IP address blocks: 2a13:9500:e::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:31:8c:e8:b7:7a:fa:8a:f8:86:1e:5a:54:35:91:d9:18:ec:29:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 27 09:23:18 2024 GMT
Not After : Dec 26 09:28:18 2025 GMT
Subject: CN=24BB6103ECAFCF0F868F2E1C41F1BCB100E42FA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fd:19:7e:40:7b:e9:f5:1d:be:47:33:d6:b1:
8b:15:ba:77:70:b0:22:98:78:9c:1a:0b:43:47:d7:
56:0f:88:81:92:6e:d3:a7:fb:ff:68:45:b2:6a:04:
af:27:ea:76:b5:1c:2e:76:5a:57:bf:41:60:29:85:
3c:79:c8:47:64:5c:41:52:06:f2:40:09:66:40:81:
2b:36:b4:be:75:3f:b8:1d:92:a6:ea:04:4f:e3:73:
02:45:c4:a7:81:de:91:c5:90:e3:2e:dc:3d:ff:15:
a1:53:77:58:37:65:01:65:ff:8a:27:a2:ac:22:25:
47:04:9a:37:d9:16:14:c0:08:25:3a:ff:04:28:9b:
bf:66:ff:d4:76:c4:62:a9:e1:30:3e:9f:23:7d:23:
2e:91:a2:00:9a:85:32:ef:cf:3e:e7:23:33:8e:5e:
4f:e1:4f:9c:a3:6e:df:b5:aa:68:a6:64:95:29:d1:
19:ac:ab:69:4d:c9:63:68:b1:78:a8:f7:9b:f0:4d:
7a:d9:a6:f4:cb:04:c3:23:63:13:97:35:39:cf:b0:
5d:7a:26:c8:40:6b:d7:bc:08:d8:47:ff:dd:47:70:
6f:f6:fb:c2:7b:0a:33:56:30:fb:87:1c:1b:99:74:
9a:e2:13:48:cc:d5:00:6b:1d:99:7f:b9:c7:a9:a4:
34:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BB:61:03:EC:AF:CF:0F:86:8F:2E:1C:41:F1:BC:B1:00:E4:2F:A7
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/326131333a393530303a653a3a2f34382d3438203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:e::/48
Signature Algorithm: sha256WithRSAEncryption
1e:35:a2:1e:a2:a1:ba:c4:ad:ba:2c:b9:a1:ad:1c:87:2b:9e:
03:70:a2:c5:40:78:ed:73:90:f3:17:c3:57:5f:bd:63:48:d6:
28:90:5d:c7:c9:a4:35:a7:34:3e:3d:50:ac:77:f1:d6:c2:97:
14:a0:de:f2:62:8e:d6:c3:63:76:2b:38:c8:a6:35:87:63:1f:
06:b5:c8:e1:cc:d8:09:56:37:81:33:c2:fb:e4:23:2b:82:9e:
e5:2e:1e:3a:22:fc:86:ea:80:b4:9e:b1:45:7a:53:e7:55:d0:
2b:27:cd:d3:c0:52:75:79:11:77:73:ef:16:bd:65:95:43:93:
ab:18:a6:8f:8b:a8:9c:c2:4c:19:e4:ea:b7:4f:78:5e:8e:35:
6d:f3:4c:ce:fe:50:95:17:a9:6d:0f:2d:83:b4:89:80:9e:3b:
b5:e1:3c:0f:1b:b9:f9:72:58:67:74:12:0b:7b:1d:5a:15:d9:
25:37:58:33:39:89:0f:a2:ea:ce:81:25:56:b1:75:66:0f:3f:
5c:a4:13:64:45:40:e1:6c:93:7a:33:32:13:46:70:57:51:cb:
37:89:20:85:a2:7d:ab:70:6c:e3:e5:27:ec:ce:30:77:2a:12:
18:26:5f:6f:db:1a:f4:ea:33:18:51:75:2a:d2:d8:3b:db:41:
1e:24:38:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:08:11 2025 by rpki-client