Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: fjdGThdgUqy16dbv9T6spFnl+pgvmlWs7Lauaq70IC8=
Subject key identifier: B0:D2:4A:7F:63:73:F9:B6:6C:5C:EC:84:FA:E7:AC:C7:89:26:F2:8A
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 1150FE8E369F54B5CA098381BAE53575C7BB3398
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 06 Apr 2024 15:23:43 +0000
ROA not before: Sat 06 Apr 2024 15:18:43 +0000
ROA not after: Sat 05 Apr 2025 15:23:43 +0000
asID: 215729
IP address blocks: 2a14:7581:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:27:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:50:fe:8e:36:9f:54:b5:ca:09:83:81:ba:e5:35:75:c7:bb:33:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 6 15:18:43 2024 GMT
Not After : Apr 5 15:23:43 2025 GMT
Subject: CN=B0D24A7F6373F9B66C5CEC84FAE7ACC78926F28A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:aa:31:2c:8f:3b:d5:3e:d5:0e:8c:0e:b0:2c:
0c:4b:ec:29:e8:2a:52:2e:75:a3:65:a1:64:c5:29:
30:92:f1:20:2f:1a:46:54:a6:30:52:93:0a:1a:26:
fb:e4:2b:7d:73:8f:d6:04:e7:3a:bf:08:11:d3:36:
6f:9e:00:ce:7f:ac:86:8b:38:fd:70:60:f7:40:1a:
43:3a:36:d6:45:d1:b3:2e:66:d0:36:d6:34:e9:9c:
0b:1f:02:8d:99:94:ca:18:5d:12:66:db:a6:1c:d9:
81:da:6b:76:0e:af:cf:4b:3e:f2:48:c0:e4:3b:85:
18:bd:6a:68:dc:ef:71:87:ca:3c:ca:9c:93:16:22:
78:31:b0:f9:fd:95:ba:2f:d2:f1:06:e0:b4:d6:7d:
6f:27:aa:41:15:41:5f:5e:31:a7:eb:fc:41:3d:c4:
48:55:38:85:e1:23:a7:47:cd:cd:72:04:35:5e:58:
e4:5b:e2:99:a5:75:d7:f1:58:ff:02:77:5b:64:75:
3f:8b:61:37:a0:1f:20:13:f2:bd:dc:63:8f:97:64:
c4:70:d2:76:5e:a8:cc:fd:4c:5b:34:54:a2:8a:eb:
d1:f9:c8:ae:9b:12:87:eb:d1:2f:01:da:2f:11:90:
8b:3c:e3:74:64:79:fa:0b:de:8c:c8:74:e1:26:e7:
da:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D2:4A:7F:63:73:F9:B6:6C:5C:EC:84:FA:E7:AC:C7:89:26:F2:8A
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2000::/48
Signature Algorithm: sha256WithRSAEncryption
36:5b:84:a3:d4:91:b0:62:a3:2e:85:66:53:25:25:69:c6:16:
58:96:92:21:53:9c:c8:17:2a:17:87:56:5e:c3:43:80:fe:70:
63:49:bf:f9:28:6d:9c:32:4c:4f:a5:39:1f:f4:31:c9:06:fe:
98:90:39:fe:61:43:4e:92:9c:0a:b3:94:56:48:26:10:c7:9d:
6a:52:87:99:2a:64:ce:75:36:64:64:78:3b:b4:d6:fa:1b:d1:
dd:62:ec:b1:a4:4c:81:9f:d6:a5:92:e8:c0:7b:33:9f:e3:27:
22:96:78:51:a9:a4:6e:a7:8d:43:34:81:48:22:a6:b8:de:be:
1f:86:93:f5:e8:eb:39:92:2c:26:cf:4c:29:a7:d3:70:fb:44:
7f:a3:14:66:ea:fe:b0:82:ee:15:cc:ed:4d:c4:21:8f:d9:fb:
7f:91:88:b9:af:5a:23:69:58:1c:fd:b3:ca:55:83:b4:8d:f9:
c4:45:c0:50:18:db:c2:5e:30:8c:9f:c5:90:46:a3:8f:b4:6c:
42:de:16:7e:3d:76:86:be:c7:96:21:47:9d:b7:c1:9c:de:de:
fa:78:5f:06:2a:58:88:db:dd:95:5f:c6:d2:7a:fc:10:23:b8:
72:78:07:0a:31:18:ee:e6:32:ff:ec:b0:e6:2b:0b:26:e5:01:
bb:ff:9a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org