Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: QCtcuxKcPVb1lkyq/9Yp9f4UkFOEElZo50cV2Hvqbj0=
Subject key identifier: 9C:7B:7F:94:01:7F:A5:27:FC:2F:E0:8E:1C:F0:3A:8B:60:64:F1:CD
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 2E6111AACDC9291576476DFECAEB75A94DFF10D7
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa
Signing time: Mon 01 Apr 2024 07:47:39 +0000
ROA not before: Mon 01 Apr 2024 07:42:39 +0000
ROA not after: Mon 31 Mar 2025 07:47:39 +0000
asID: 215729
IP address blocks: 2a14:7581:2102::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:61:11:aa:cd:c9:29:15:76:47:6d:fe:ca:eb:75:a9:4d:ff:10:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 1 07:42:39 2024 GMT
Not After : Mar 31 07:47:39 2025 GMT
Subject: CN=9C7B7F94017FA527FC2FE08E1CF03A8B6064F1CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2a:02:5e:17:d4:ea:5c:bd:03:c8:12:38:79:
d6:ad:84:21:c4:0f:b3:a2:63:50:4f:79:f2:b8:b9:
83:49:12:6c:48:0c:09:05:fa:34:ca:7f:96:dc:51:
2b:23:aa:2a:af:2e:30:c8:e2:91:91:1a:82:e5:d2:
ff:a3:6f:17:80:d5:ad:fe:54:59:2a:29:03:a5:75:
3a:4d:d5:5e:df:71:81:93:fd:fc:b9:11:42:22:ae:
1f:b3:17:0d:f1:e1:03:13:1c:0c:29:f2:a4:19:2d:
4a:25:74:84:89:ff:83:f6:78:3c:70:e1:74:11:f9:
67:79:4e:20:44:12:c7:07:b2:af:11:ec:0a:98:30:
1d:9f:38:d4:87:40:f2:00:e3:58:c7:91:ac:80:1c:
2e:50:c2:48:94:97:09:fa:c2:af:38:df:72:1d:6c:
23:e0:f9:98:86:db:dc:e0:75:9c:92:8a:fe:b2:c6:
c2:60:d8:1e:20:58:8d:de:05:40:0a:38:68:bc:e9:
e3:ef:6c:50:1b:4d:aa:37:8e:3f:9d:61:be:3d:b4:
6c:c0:01:68:21:24:b9:e6:82:de:18:ec:b3:b5:03:
6f:d4:94:85:cc:20:80:89:9e:dc:23:94:97:5d:a4:
7f:75:3f:a4:34:6f:65:c0:f8:42:33:42:d2:b3:0c:
50:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7B:7F:94:01:7F:A5:27:FC:2F:E0:8E:1C:F0:3A:8B:60:64:F1:CD
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2102::/48
Signature Algorithm: sha256WithRSAEncryption
27:3f:a7:0d:f1:b1:38:4e:23:58:15:26:40:5e:78:f7:7b:17:
b7:5a:f6:49:32:ec:f2:e0:44:cf:ab:0b:8f:12:a1:99:5a:e8:
7f:1d:5d:86:0d:cf:34:8c:ba:7f:b6:27:22:1a:3b:53:e8:fd:
dd:9d:b7:2c:10:4e:41:11:1c:f7:b3:c2:d8:85:07:0b:02:9c:
71:5f:7f:27:2d:12:52:c4:93:b9:01:33:5e:ea:97:ff:da:8f:
a0:01:0a:e2:6d:3e:c9:e2:d1:df:b9:77:b8:53:61:52:15:84:
9f:7d:e6:fd:5b:cd:62:7a:65:06:4f:7a:af:37:1f:f5:95:e3:
25:05:20:24:f6:a6:b0:4c:82:d3:32:5e:bc:78:4c:13:8e:9b:
71:a3:40:a7:bd:64:43:64:87:e4:60:3e:6c:1d:75:ee:8c:8f:
a5:f3:80:82:71:3b:2e:3e:84:da:ab:c7:9c:7a:de:d2:ec:98:
61:77:a9:a6:de:43:c3:c2:07:14:71:dd:7c:98:d7:19:80:68:
94:34:c4:ba:3e:6f:a6:8e:a8:2c:61:0a:ae:ee:60:cb:74:3c:
8b:b7:7a:a4:90:bc:f4:4f:b7:12:92:62:a3:3f:dc:f1:6a:62:
97:6a:16:d5:4b:d5:83:4b:19:0c:13:5a:ce:26:3d:e8:86:d7:
9e:08:4d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org