Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: dynqt70ntBQrh9tkeJDrBfvU+o8G71uDI/zhL0cT2Q8=
Subject key identifier: AB:20:FC:6E:3B:E5:C9:85:BC:2B:F2:89:A8:7B:FD:0E:95:DA:63:91
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 717E77D9AAEA1C105E43E6B24533C03BBEC6B876
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 15 Jun 2024 13:57:54 +0000
ROA not before: Sat 15 Jun 2024 13:52:54 +0000
ROA not after: Sat 14 Jun 2025 13:57:54 +0000
asID: 215729
IP address blocks: 2a14:7581:2132::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:7e:77:d9:aa:ea:1c:10:5e:43:e6:b2:45:33:c0:3b:be:c6:b8:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Jun 15 13:52:54 2024 GMT
Not After : Jun 14 13:57:54 2025 GMT
Subject: CN=AB20FC6E3BE5C985BC2BF289A87BFD0E95DA6391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:06:e9:b4:97:37:a9:b4:60:3a:5e:08:fa:ef:
1c:2a:e4:ca:d9:1c:30:29:db:80:8b:c8:8a:a7:73:
01:a5:35:1d:11:23:7a:3d:aa:9e:d0:0e:fb:f2:58:
81:87:1c:0f:27:1b:75:9b:cf:12:c4:c1:00:5a:be:
9d:3a:85:12:31:2e:30:16:d2:bb:01:31:7b:1c:8e:
ff:07:bc:46:df:0f:99:6c:26:81:98:ad:7c:8a:8b:
f1:ea:7a:fb:e3:e8:84:a3:2f:26:b5:a7:30:4f:f1:
09:c1:25:24:40:05:6e:1e:fa:8f:9b:a3:b3:62:8f:
75:f4:69:5b:1b:61:92:5f:6f:8c:12:98:f3:05:23:
d8:50:e6:35:1a:36:b4:cd:6b:ba:11:d2:d2:25:4f:
84:76:32:cf:04:5f:84:43:64:b2:13:c0:4c:24:e4:
96:2a:bd:36:27:6c:46:47:ef:25:e1:55:01:f5:64:
70:d4:78:7e:47:69:5f:3d:a4:f1:c7:3d:17:4b:3e:
7d:94:1f:54:1c:03:a1:e7:c5:cc:29:d4:0a:4e:89:
65:16:de:26:0d:d5:25:67:fd:7e:fe:99:d3:e8:d4:
2d:5d:b9:94:26:4f:86:75:16:63:c5:96:42:6f:46:
8d:69:47:57:e8:e0:dc:0f:60:c6:63:49:23:a3:be:
16:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:20:FC:6E:3B:E5:C9:85:BC:2B:F2:89:A8:7B:FD:0E:95:DA:63:91
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2132::/48
Signature Algorithm: sha256WithRSAEncryption
29:a7:7a:16:c2:2b:b5:c6:9f:9b:bb:d6:fe:2b:1f:be:db:ff:
38:15:b2:5a:bb:b2:0a:c6:46:f6:80:58:e2:9a:3a:fa:82:32:
d9:f4:79:54:ef:95:4e:65:86:c7:db:da:ef:d2:5a:38:59:04:
74:dd:18:98:2a:0c:28:8c:3b:ea:68:f5:0c:23:bb:55:a7:96:
78:5a:a4:fa:fb:8e:e2:9b:71:51:bc:2b:25:5b:b3:c0:7c:b0:
bf:88:3c:eb:76:ec:3c:f7:3e:e5:15:ff:11:95:ec:ae:1e:29:
ad:b0:fe:d3:84:7a:a4:29:48:c7:5d:33:53:ae:8a:27:39:ee:
b3:24:36:70:74:7e:d5:dd:eb:e8:97:18:64:ab:ac:5a:72:0c:
41:c5:17:3e:4f:f8:4e:17:11:f6:a1:f3:26:56:32:0b:9b:d4:
7d:46:ce:cb:e2:73:a9:19:2b:3a:56:8e:bc:1b:6e:f4:83:6c:
73:18:a7:30:b1:ee:fa:92:c3:f6:a3:c8:3e:b6:7a:97:02:0d:
de:4e:38:6b:79:a2:fe:61:0d:e0:42:5d:4d:80:ef:c8:16:0a:
c6:4d:f4:9f:b4:ef:bf:4a:38:96:0a:e6:05:80:6a:19:dc:c7:
61:7d:c8:4d:0e:a2:e4:6b:e5:15:78:d6:c0:5e:66:18:a3:03:
8a:00:a8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 21:07:17 2024 by rpki-client on console-ams.rpki-client.org