Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: 1C7tbyRAw7GAB8GMRxrAsb5flSYScaggz104KmYZUX8=
Subject key identifier: 87:77:51:9B:C8:52:01:B2:E5:13:BD:0C:1E:A7:A3:25:19:96:B7:C7
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 50E1AD29FC529AF832CE877AA41B82094155C47E
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa
Signing time: Mon 01 Apr 2024 04:45:24 +0000
ROA not before: Mon 01 Apr 2024 04:40:24 +0000
ROA not after: Mon 31 Mar 2025 04:45:24 +0000
asID: 215729
IP address blocks: 2a14:7581:2111::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:e1:ad:29:fc:52:9a:f8:32:ce:87:7a:a4:1b:82:09:41:55:c4:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 1 04:40:24 2024 GMT
Not After : Mar 31 04:45:24 2025 GMT
Subject: CN=8777519BC85201B2E513BD0C1EA7A3251996B7C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c7:1d:4d:57:f9:06:4e:44:39:7b:59:df:aa:
35:7f:f5:2d:6f:b0:cc:e7:29:b2:1e:c6:16:e2:b0:
de:e4:cc:7b:b6:03:3c:1a:d5:cb:38:09:67:cb:98:
ea:81:b6:f1:2c:ae:12:9b:3f:79:ef:5b:12:5d:89:
60:84:1b:17:b7:25:a3:b0:a0:69:9c:7c:76:fd:38:
e8:f4:8a:fa:74:2d:cf:b9:a3:7c:9f:cb:30:19:c8:
88:97:38:d2:0d:a9:24:93:88:45:46:2c:e4:b7:a8:
99:03:9a:0e:0a:fd:97:f8:83:67:27:fb:94:73:7e:
26:53:bf:e9:fe:26:5f:f3:99:b2:bf:f4:70:e2:fa:
91:82:b7:a1:93:c5:d0:fa:63:25:48:88:be:94:1a:
02:bc:55:68:8d:12:b8:06:b9:5e:2a:83:bd:cd:34:
12:1b:4c:38:c0:c3:44:10:b2:e6:6c:ee:a4:42:0f:
f2:de:2a:44:78:7d:f7:f5:58:52:b7:58:0d:d0:b1:
38:d0:40:52:2e:c5:32:f9:9f:cc:90:94:16:cf:29:
97:d8:86:a8:ba:05:02:2a:0b:ed:ba:8a:c1:c4:e5:
7a:17:2f:4e:bd:c8:8b:fb:19:67:8c:7a:6b:b3:78:
e8:b6:1c:54:f3:ba:7b:2c:28:71:3d:0c:8c:0c:dc:
92:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:77:51:9B:C8:52:01:B2:E5:13:BD:0C:1E:A7:A3:25:19:96:B7:C7
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2111::/48
Signature Algorithm: sha256WithRSAEncryption
70:ef:cb:98:28:47:75:bf:07:ae:eb:e0:6e:b4:11:41:7a:7f:
92:54:86:cb:97:76:f7:2a:4a:4f:36:a0:b1:02:16:3d:86:f5:
9e:ec:67:b5:f7:aa:c9:ee:2f:8e:b4:2f:9c:fd:18:a1:21:23:
01:17:c2:1c:2a:2b:cb:15:29:57:a8:84:a7:16:85:e4:2c:34:
b9:5c:a7:4e:5d:27:76:cc:7e:c4:a0:9e:fe:de:25:81:92:44:
cc:ce:fa:88:91:dd:71:4f:0e:5a:d9:e8:e7:20:13:e0:82:88:
a7:60:6c:61:d3:f8:e4:b8:89:bc:af:5e:d6:11:41:29:b7:62:
8c:a0:3f:77:5d:e5:dc:6d:38:6f:07:d5:36:e0:02:cd:93:14:
d8:05:06:f3:4d:c0:c1:ed:85:39:f9:30:be:05:8b:e6:48:4e:
c3:93:34:fb:64:11:60:1c:b2:53:72:f0:7c:d4:34:56:14:63:
e6:f2:ba:4f:a5:f1:e6:ec:e1:dd:fa:27:37:3a:75:fd:e5:72:
f7:66:0f:ef:5d:12:e0:f9:6e:54:be:ac:3a:0e:40:a6:5d:fd:
79:29:ab:49:47:d5:4e:a2:8d:ef:95:51:3e:45:eb:5a:7d:8e:
e0:aa:b7:c3:3a:7f:1d:07:4c:43:c4:b1:b3:c9:47:77:49:f5:
dd:d7:35:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org