Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: H2xJFNDb6hptZIBpOn8s6FvppRu80C5OyU0f/AjdT+M=
Subject key identifier: 45:A6:6E:42:8D:62:1E:23:9E:0C:E0:93:91:FB:8B:FC:96:63:06:E8
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 7AD6DAAD8506C6093DACDFC47620EFA5D185F845
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa
Signing time: Tue 05 Mar 2024 16:05:45 +0000
ROA not before: Tue 05 Mar 2024 16:00:45 +0000
ROA not after: Tue 04 Mar 2025 16:05:45 +0000
asID: 215729
IP address blocks: 2a14:7581:2101::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:d6:da:ad:85:06:c6:09:3d:ac:df:c4:76:20:ef:a5:d1:85:f8:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Mar 5 16:00:45 2024 GMT
Not After : Mar 4 16:05:45 2025 GMT
Subject: CN=45A66E428D621E239E0CE09391FB8BFC966306E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:af:38:de:f2:64:49:d1:a9:aa:e1:c1:b0:54:
02:ae:ef:ab:07:a8:5b:b3:db:5d:c4:73:75:31:1a:
43:fb:d2:91:7a:56:08:b2:94:41:fa:8c:4c:46:f2:
12:68:e3:5a:8a:9e:ab:be:a4:3d:b6:c0:4e:b4:91:
10:49:3e:ee:42:46:be:ce:ae:0e:18:6b:43:6b:89:
d3:ed:5e:e2:aa:1e:e0:71:ea:a7:fe:bb:94:28:86:
ec:d3:95:09:49:da:ad:8c:77:03:54:4d:7e:22:9c:
d7:f3:06:a2:07:64:54:aa:b8:c9:75:ea:93:24:60:
2b:6c:30:18:17:d0:5c:4a:99:53:d5:20:9a:8a:5e:
85:fc:5e:1a:f8:fe:34:36:87:99:4f:06:29:8a:c1:
ed:63:9d:ae:0a:69:d6:41:ad:85:dc:70:23:c4:14:
3a:9d:01:4e:5d:6c:7b:f2:1e:d8:df:5a:9c:fb:d0:
b0:3e:f1:a7:82:e6:b0:6f:3d:4d:1e:40:be:ff:ef:
c2:1e:9f:46:fe:09:c5:a4:82:fa:36:65:bb:7d:30:
65:2d:98:7c:f5:25:ef:2e:ef:a3:2d:d8:09:f9:9b:
b7:6d:e6:3a:38:92:55:0f:3e:f1:ba:e2:4d:04:1f:
ea:b8:e1:64:06:91:be:bc:7d:73:47:05:a5:4e:91:
79:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A6:6E:42:8D:62:1E:23:9E:0C:E0:93:91:FB:8B:FC:96:63:06:E8
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2101::/48
Signature Algorithm: sha256WithRSAEncryption
29:32:bb:06:53:1e:ae:77:19:63:54:1e:c5:05:91:aa:ac:6e:
eb:cd:d1:0c:11:fa:97:26:44:c8:6a:21:1f:72:50:bc:47:11:
5b:ff:d1:72:e8:b8:3f:6e:fe:fc:96:e7:6b:50:e4:25:29:1e:
2c:41:cc:ea:3e:de:5e:d8:48:23:b8:0e:74:24:ef:67:80:2b:
ac:a5:04:48:2a:7b:f6:b3:5f:e1:47:65:3f:94:1a:e6:c2:9c:
7c:86:e7:4e:5a:51:b6:9a:37:13:82:3f:df:e1:fa:5b:9c:22:
32:c9:3b:84:1b:08:e8:4a:a3:71:d0:79:21:e6:f5:31:7a:8f:
cb:ca:1e:68:a5:1a:83:cb:3c:b7:89:d6:c0:51:db:20:a2:ab:
3f:01:48:90:e5:32:c5:0c:61:43:ac:2a:eb:8c:8d:bf:02:7a:
07:72:e1:6c:1f:b3:5e:11:c3:2d:df:11:ed:75:8f:79:07:36:
a7:fd:29:ed:ac:36:3d:7f:d1:01:4b:85:cc:cf:fc:be:08:04:
97:bd:9f:ac:f5:c9:89:6b:d9:9d:d6:f4:e9:aa:10:d5:f3:d1:
1e:14:5e:cf:14:eb:4e:7b:90:f3:81:7e:b7:61:e0:33:22:d7:
64:91:ac:e0:c0:de:17:bf:9f:f6:4b:5b:9f:1d:11:76:ff:a1:
30:83:01:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org