Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: ++uL06QCr9tsvOh4Wr52W6vFPokiVWHu9AlqfMmgpBM=
Subject key identifier: D9:6C:E9:D2:D7:3E:BC:6B:F5:3F:54:11:6C:03:E7:06:BA:06:3C:79
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 1D88FD7A19E10997E68D18F3C6AF1EA79345BB76
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 06 Apr 2024 15:36:33 +0000
ROA not before: Sat 06 Apr 2024 15:31:33 +0000
ROA not after: Sat 05 Apr 2025 15:36:33 +0000
asID: 215729
IP address blocks: 2a14:7581:2010::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:27:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:88:fd:7a:19:e1:09:97:e6:8d:18:f3:c6:af:1e:a7:93:45:bb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 6 15:31:33 2024 GMT
Not After : Apr 5 15:36:33 2025 GMT
Subject: CN=D96CE9D2D73EBC6BF53F54116C03E706BA063C79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:04:49:cd:a1:d4:dc:88:56:37:5b:6a:88:8c:
09:62:85:39:6c:a1:32:0f:81:47:66:25:23:07:18:
15:ae:47:f1:ca:94:10:6d:b6:10:a6:eb:83:39:e6:
0f:c7:71:55:c6:2b:86:4b:5b:e2:d7:14:cb:aa:af:
a2:c0:c3:b8:1f:25:10:3c:40:50:a0:6f:b6:e4:bf:
97:3d:1b:0c:af:a7:59:d7:16:48:ca:3d:b5:04:1d:
b9:f9:2a:4c:18:9c:72:cb:81:40:77:36:4d:6f:74:
c1:bd:11:6e:fd:cd:fc:1f:8c:12:22:f1:08:f0:30:
af:63:b8:72:a6:54:13:08:29:2c:d3:fc:20:8f:e8:
90:eb:b9:39:d7:52:62:61:fa:d3:48:9b:44:c3:b2:
87:48:de:af:ad:36:8c:b8:14:a6:ea:cd:88:c1:dc:
46:29:ac:a6:71:82:00:e0:03:8a:cc:99:7f:14:65:
d7:b7:82:80:38:40:b4:9d:ba:34:f5:0e:45:9e:a7:
ef:5c:6f:c9:7c:0f:9b:9e:c6:ac:07:11:67:f8:fe:
e2:c7:14:12:ff:24:7f:d4:5e:a8:d1:d2:9f:ee:4c:
a8:55:7a:99:bf:6a:6c:20:de:90:50:4e:04:29:8f:
50:49:5b:ad:7f:8b:c0:f3:45:3d:e4:42:0b:f4:34:
26:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6C:E9:D2:D7:3E:BC:6B:F5:3F:54:11:6C:03:E7:06:BA:06:3C:79
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2010::/48
Signature Algorithm: sha256WithRSAEncryption
24:82:4e:a1:68:b6:63:0f:02:a1:75:f2:d0:30:f3:b2:53:56:
4d:9a:86:72:fd:9e:1f:62:e5:dd:33:04:dc:eb:60:07:2e:8b:
85:a5:d0:18:13:26:d8:46:b5:8a:ac:6f:b2:cb:40:f9:c7:2b:
47:70:47:61:67:e6:cb:5d:88:c8:6e:6b:6c:a1:7e:fa:b1:97:
62:d8:3e:85:7d:a1:ee:e7:3f:31:bf:6b:34:08:59:f2:56:d4:
16:3f:3a:6f:a8:5b:ff:7e:8e:cc:6a:e0:9b:56:73:96:17:50:
ec:2d:57:ab:7d:c7:ea:2f:5f:29:0e:92:56:1a:49:ad:cc:e7:
a2:f2:5b:a4:d2:06:52:45:98:82:26:ae:0d:0a:d5:63:c3:80:
31:c2:03:fd:30:fc:fe:42:f9:bd:26:58:b8:3a:64:d4:bc:62:
84:dc:93:8b:e7:dc:a8:43:f3:90:2b:f9:cf:50:3b:3e:2a:35:
27:9b:12:d3:af:64:94:f8:96:c4:17:c6:8a:04:17:b6:79:73:
a7:37:58:e9:98:1d:e5:58:12:95:33:03:e3:67:30:b0:65:16:
5f:1a:f1:80:75:dd:2b:7c:66:93:91:0f:4c:f0:74:6a:15:d5:
d0:55:e9:a4:96:86:4b:3d:dc:c7:96:0b:25:56:11:d6:7d:22:
23:26:73:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org