Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: lQubaqydAzJkCeiPO2a+oD2TNpyI4WStvyxbcIOAQTw=
Subject key identifier: 04:BF:9E:EC:43:E2:F7:34:BC:5D:C6:D0:4E:E0:B9:D4:E4:6F:A9:7D
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 3FAB66C3926F4053FF5EF0051279EA26EAF4C050
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 15 Jun 2024 14:14:36 +0000
ROA not before: Sat 15 Jun 2024 14:09:36 +0000
ROA not after: Sat 14 Jun 2025 14:14:36 +0000
asID: 215729
IP address blocks: 2a14:7581:2020::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:27:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:ab:66:c3:92:6f:40:53:ff:5e:f0:05:12:79:ea:26:ea:f4:c0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Jun 15 14:09:36 2024 GMT
Not After : Jun 14 14:14:36 2025 GMT
Subject: CN=04BF9EEC43E2F734BC5DC6D04EE0B9D4E46FA97D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:26:be:99:e8:d7:08:02:10:99:10:23:4d:
87:a3:c9:14:33:3f:34:d3:b5:d1:f1:7e:22:cf:81:
2c:dd:4c:22:16:70:d9:2c:8d:89:4f:22:ab:8c:e5:
a8:d2:ac:68:48:49:b2:c6:74:f4:69:71:00:1c:f0:
2f:52:bc:ac:cf:98:d3:24:8b:0b:37:79:71:64:65:
04:91:6a:aa:5b:43:23:4f:08:91:42:6d:4d:73:8d:
f4:4d:48:d6:cd:10:ca:57:1f:bf:60:d8:cc:61:df:
89:ac:a4:11:d3:16:2d:85:6f:c2:43:1f:6a:76:ba:
e6:47:dc:e0:60:fb:e9:58:21:c6:fc:d0:99:2b:2e:
07:57:fa:b0:1b:03:e6:25:67:68:02:d3:94:ee:1b:
0f:9f:c6:6c:8e:d4:62:26:d0:12:f3:88:ca:fa:e7:
ce:5e:8b:c2:a6:c0:87:57:23:1f:f2:11:36:de:ba:
4e:48:52:c8:c4:d6:27:28:67:16:7b:4c:f6:96:e0:
74:5c:ed:34:8c:aa:4e:a5:c5:54:00:a1:07:a2:d0:
4a:c9:8f:63:f5:9e:97:ad:55:3b:8e:ac:46:f3:b6:
aa:1d:94:da:46:83:8a:b9:ab:f4:a2:b0:df:2c:56:
4e:2b:08:df:90:45:c0:ec:01:1b:03:38:f2:66:d3:
9a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BF:9E:EC:43:E2:F7:34:BC:5D:C6:D0:4E:E0:B9:D4:E4:6F:A9:7D
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2020::/48
Signature Algorithm: sha256WithRSAEncryption
62:f8:57:fd:a4:2f:29:f3:95:e9:12:90:87:74:4d:2d:ac:7b:
f3:9c:d3:ef:1f:d4:87:02:69:93:da:6f:bc:7c:53:73:75:0c:
b0:43:f6:99:f8:34:31:8f:4f:7c:ff:e1:a2:6c:f8:fb:31:1d:
1f:10:04:61:8c:2f:d6:bb:d2:87:bf:a9:2f:cd:3c:7b:d7:65:
da:4b:90:9e:08:50:e7:14:ad:03:61:26:07:42:85:34:b9:6e:
27:32:49:12:1a:c5:79:30:db:69:c7:96:35:64:c6:cf:d7:76:
10:24:4d:d1:09:a6:1c:68:e8:64:b4:e2:26:8d:60:79:bc:97:
e9:98:9a:05:ec:de:fa:c4:e8:14:8d:47:c3:c4:e5:ba:aa:21:
ac:8f:be:b7:cc:19:1f:10:62:49:c7:ed:da:eb:9f:05:32:f5:
bf:ff:e1:f5:e0:5b:60:f8:b2:93:d6:c8:da:16:3d:79:1d:78:
74:5c:a5:5f:c7:14:ad:0d:5e:f5:6e:02:37:70:ba:85:ae:d6:
6b:f3:71:f3:21:d0:71:bd:32:ad:54:d8:82:6e:13:f2:64:d3:
ba:6b:97:7f:b6:33:d5:04:a7:e1:f9:f7:f1:2f:64:23:dd:ce:
66:96:8b:80:f0:a1:cd:dd:e4:37:ff:b4:28:a3:fe:ea:8b:7d:
1c:08:e7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org