Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32332e3234382e302f32342d3234203d3e203136323736.roa
File: 38322e32332e3234382e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: sS0bsdAmmfdXw4uyOQcR8VcCtXvZ7GtGRcMIKcSTy6c=
Subject key identifier: 31:20:CE:FB:9C:79:3B:77:05:44:5F:DC:50:BF:CC:F8:27:78:CB:0A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 13725B23925DA9E1517B948C7E6D9AAF14FC40D0
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32332e3234382e302f32342d3234203d3e203136323736.roa
Signing time: Sun 29 Dec 2024 23:25:19 +0000
ROA not before: Sun 29 Dec 2024 23:20:19 +0000
ROA not after: Sun 28 Dec 2025 23:25:19 +0000
asID: 16276
IP address blocks: 82.23.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:72:5b:23:92:5d:a9:e1:51:7b:94:8c:7e:6d:9a:af:14:fc:40:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Dec 29 23:20:19 2024 GMT
Not After : Dec 28 23:25:19 2025 GMT
Subject: CN=3120CEFB9C793B7705445FDC50BFCCF82778CB0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:54:17:21:a4:c1:fa:7b:81:a4:05:2e:a3:
6d:6f:11:a9:cd:1d:8e:3c:f7:29:6e:a8:51:f4:ea:
03:65:ca:00:8f:ee:97:bc:8d:ed:40:39:d9:f2:bf:
47:db:45:20:ac:67:f4:81:ec:a7:13:f9:74:04:d6:
3f:87:ad:29:73:5e:f6:c7:db:68:c7:cd:3c:f3:2e:
d1:ee:8b:df:72:ce:22:3c:8b:92:2f:10:cf:f3:cc:
5a:fd:54:cb:57:99:d6:41:1e:25:bf:e7:23:55:0c:
67:5a:a9:9b:bd:08:d7:47:59:a3:58:9a:55:65:dc:
3c:90:cd:b9:0d:47:55:22:2a:e2:ce:fd:d3:ec:57:
42:aa:28:fb:4d:50:65:9d:53:c2:51:d2:1d:96:2e:
67:08:20:e3:2c:01:3b:8a:b2:10:19:a9:68:23:4d:
0d:81:a2:5a:25:85:bb:87:cf:f2:24:3f:08:63:d4:
36:d0:4b:8c:8c:f2:31:a5:ea:85:5a:6c:4b:eb:5e:
7b:73:25:4d:7d:f1:fb:ab:dd:3b:1c:3e:04:f9:0d:
b3:b7:8c:7d:6b:6b:20:9a:71:1c:51:26:26:8a:bd:
4d:95:62:60:6e:df:92:b0:3b:78:f7:61:84:16:a9:
e4:8c:42:36:6c:59:d1:ee:f8:06:ed:d7:f7:e9:2b:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:20:CE:FB:9C:79:3B:77:05:44:5F:DC:50:BF:CC:F8:27:78:CB:0A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/38322e32332e3234382e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.248.0/24
Signature Algorithm: sha256WithRSAEncryption
61:11:b0:ce:b1:23:f1:a0:12:ca:bc:d5:e6:05:f9:bc:01:41:
14:58:86:f8:3b:52:ce:31:76:7b:03:5b:0f:5c:e1:de:37:43:
16:70:5d:94:6a:b4:58:33:fa:b8:6d:40:dd:c2:14:20:d4:06:
9b:17:56:42:ee:2f:45:06:07:9d:9e:ce:82:cf:d5:3b:fa:9b:
cd:ab:d6:3f:c1:93:7f:69:62:d7:99:23:85:91:1b:26:7c:e7:
74:67:11:46:13:23:3e:75:f3:b6:4d:d1:3b:9b:8e:8f:6a:02:
20:b6:e1:77:ff:2a:3e:55:97:88:3c:81:77:c6:e5:db:71:a9:
0a:2e:14:12:a3:f8:fc:65:ad:db:d9:c9:f6:fc:ef:e9:e9:80:
6e:e3:87:2d:c9:4c:da:71:8f:e3:90:61:0c:bb:35:2d:12:81:
da:4d:c2:44:fc:08:61:ca:25:62:85:96:9f:d2:3b:05:1c:2a:
2c:f2:84:f4:8a:8c:09:64:66:6b:29:ce:d4:02:30:4c:c5:63:
90:a0:60:7e:0c:46:dd:ab:59:1f:14:bb:46:fb:a8:62:d7:29:
34:51:3e:75:c5:52:dc:73:2e:62:27:4f:a7:ce:7d:8a:c9:4a:
20:53:be:72:a6:24:e0:25:46:91:dc:e6:44:3b:6d:f5:55:82:
a9:f6:4b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:23:18 2025 by rpki-client