Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: jERYXhJ7TYawf/ONqBvNulsW0N1nZwrYrKqh4hF3SsE=
Subject key identifier: E1:6B:82:20:CA:FF:A2:76:54:40:C4:E3:CA:C6:48:26:72:6E:85:8E
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 1F1147ED4961DAB66799283B9510606BCCCC6AF1
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 06 Apr 2024 14:18:19 +0000
ROA not before: Sat 06 Apr 2024 14:13:19 +0000
ROA not after: Sat 05 Apr 2025 14:18:19 +0000
asID: 215729
IP address blocks: 2a14:7581:2068::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:11:47:ed:49:61:da:b6:67:99:28:3b:95:10:60:6b:cc:cc:6a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 6 14:13:19 2024 GMT
Not After : Apr 5 14:18:19 2025 GMT
Subject: CN=E16B8220CAFFA2765440C4E3CAC64826726E858E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a1:62:f1:55:a5:73:de:e5:a0:18:9d:a8:e8:
5e:5a:8e:a6:61:9d:46:67:c3:49:91:a1:ef:48:a9:
bc:eb:06:7b:dc:8a:7f:c6:97:35:a7:97:b4:8a:11:
4b:41:9d:7f:18:54:0f:c6:b7:65:e4:65:aa:38:f8:
5f:50:b8:7b:5c:27:6b:e4:41:61:41:f4:b8:82:74:
d9:bd:d2:43:94:b7:5e:18:57:5f:51:7b:cc:86:5e:
d4:29:3c:8b:ca:86:73:9a:7a:d3:37:78:30:c7:72:
f8:f5:65:7d:0a:be:0f:8a:d3:f7:c1:7d:1e:58:e5:
56:9a:00:a2:9b:0a:60:1f:06:eb:92:89:2b:53:76:
8c:1a:c2:5e:fd:aa:9a:7a:1f:e2:74:a0:70:63:48:
4c:af:ca:68:f9:0d:23:36:94:a1:05:96:30:cb:a5:
3d:f5:78:0d:40:24:56:3c:48:c7:45:d3:64:7d:3d:
e5:ac:53:98:d5:4f:f8:0f:a3:e1:dd:f2:41:a0:3b:
b0:dd:6a:1e:8d:99:2e:9f:28:03:09:e8:c8:2b:25:
ec:6d:14:83:6e:62:25:e7:02:fc:ad:59:ad:04:5b:
48:19:16:ff:9a:ad:35:b1:71:ec:05:74:84:f1:71:
08:4b:f0:27:35:06:b1:6a:44:38:22:d8:c1:8e:10:
79:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6B:82:20:CA:FF:A2:76:54:40:C4:E3:CA:C6:48:26:72:6E:85:8E
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2068::/48
Signature Algorithm: sha256WithRSAEncryption
42:c1:1c:41:7c:c0:23:8d:d5:6d:e7:47:36:72:65:25:d6:b5:
f1:73:cc:17:c2:95:b6:c8:0c:12:ba:8a:55:7e:5b:8d:af:6e:
e3:33:94:39:ee:01:de:cd:48:d1:36:25:ce:cf:ce:4c:0a:84:
47:3c:39:8d:64:c8:62:42:ff:f2:ec:18:dc:71:db:92:7e:71:
50:a5:96:d0:d5:cd:13:0e:85:19:8e:98:af:7b:68:d7:49:b1:
bf:e1:86:ec:68:fe:aa:4e:9d:cd:0f:91:67:be:4b:62:f3:88:
24:9c:bf:28:23:1d:ff:fa:90:f8:4b:c1:0a:6b:27:47:3f:7f:
b1:2c:93:7f:a0:79:ae:14:8b:0a:af:cb:5e:be:69:c8:d5:00:
32:85:90:ca:a6:9d:4a:b6:4f:04:58:82:cd:da:37:bf:d6:b0:
41:e6:6e:69:c1:eb:3c:9b:0d:9b:59:1b:b0:d2:56:fd:1c:88:
a2:dd:84:53:10:52:ff:9f:8b:74:5d:85:7e:c4:4b:60:59:b7:
9f:4b:0f:64:48:0d:d2:88:3c:42:cf:e7:7a:3c:87:67:13:85:
ad:1f:37:a1:70:bb:d2:64:f7:95:60:0b:e2:a6:3f:64:dc:c2:
47:15:83:14:74:f8:37:c8:1d:b8:e5:54:71:b6:11:1a:a8:8a:
19:5c:17:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org