Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: a4O9rfuWoa0A0gLU4vU09k45bLYIZdFzT4rvjJNasPc=
Subject key identifier: A5:7C:61:43:29:F2:CE:55:1D:65:8D:12:2F:44:C0:79:84:9C:E3:5A
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 70D2EF66351667D8A8D4F21B71AF1A54AB47C682
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa
Signing time: Wed 03 Apr 2024 15:05:15 +0000
ROA not before: Wed 03 Apr 2024 15:00:15 +0000
ROA not after: Wed 02 Apr 2025 15:05:15 +0000
asID: 215729
IP address blocks: 2a14:7581:2153::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d2:ef:66:35:16:67:d8:a8:d4:f2:1b:71:af:1a:54:ab:47:c6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Apr 3 15:00:15 2024 GMT
Not After : Apr 2 15:05:15 2025 GMT
Subject: CN=A57C614329F2CE551D658D122F44C079849CE35A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e8:85:26:26:f1:7e:59:69:ed:83:aa:47:24:
a1:56:b2:de:77:5d:16:30:e0:77:4f:e3:fd:4f:12:
71:ff:c3:d9:6d:06:11:88:aa:f6:7f:a9:ab:12:1d:
b9:4a:db:81:54:9c:92:14:a6:0c:4c:31:53:1f:05:
0f:84:89:e5:60:e4:8f:49:90:e3:57:e4:3f:fa:35:
5d:73:af:49:b7:3e:34:3c:11:19:78:1d:d4:25:ed:
31:e5:f4:99:5f:21:89:f8:7f:0e:9c:58:6c:b7:25:
19:9a:ff:56:64:06:7c:6c:31:91:4e:9c:11:5d:62:
74:d6:e2:56:37:cd:66:66:17:75:98:aa:7d:12:4e:
f7:78:28:bf:85:6f:2e:37:b2:62:86:a6:62:67:d9:
0e:e1:5e:8f:c3:4f:bf:21:87:3c:87:7c:df:91:1c:
fe:6a:e3:65:04:fd:6c:2b:1a:1f:65:bf:20:2f:5a:
90:7b:5e:39:07:75:3f:59:31:0d:66:14:3f:dc:d6:
02:98:2f:9e:72:8d:77:dd:26:77:49:1e:f6:87:16:
30:07:ba:ad:a1:71:88:b1:23:35:48:85:4f:b6:94:
78:2d:fe:85:9f:d8:2b:f7:af:65:dc:01:5b:28:2b:
46:6d:43:4c:3c:7a:a0:97:dd:fd:43:4f:54:9b:96:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7C:61:43:29:F2:CE:55:1D:65:8D:12:2F:44:C0:79:84:9C:E3:5A
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2153::/48
Signature Algorithm: sha256WithRSAEncryption
2a:40:6f:64:bd:df:1d:1f:26:bf:b6:c8:24:33:b6:a5:cc:6d:
9e:31:06:c1:9e:79:25:a9:0c:e0:33:c9:43:25:70:a5:89:78:
ac:56:34:8e:20:e1:ef:ce:6c:5c:0a:39:23:03:fb:a5:fa:84:
3b:2b:32:f5:57:1d:d8:b7:33:01:96:08:ec:97:90:13:62:98:
11:a3:a3:fd:ac:db:8a:05:ff:ba:17:ec:f3:50:74:20:83:9f:
be:3f:e0:22:80:3a:c7:c2:a6:1e:a6:40:9b:00:81:20:38:f4:
8f:d5:3d:86:97:77:a9:fb:04:24:5a:5f:fb:43:ff:55:e5:f2:
a3:8f:ea:78:0b:3b:73:9a:f3:75:a1:11:dc:fc:53:88:91:8c:
e4:f0:af:bf:2c:67:6d:a1:c5:5c:d0:1e:96:9d:0b:33:83:46:
42:31:32:77:a3:2d:44:d8:6d:d0:1f:34:f5:74:8c:3d:e0:4f:
7c:5b:ac:52:b1:b6:f9:72:7b:b8:60:09:19:65:c5:57:55:97:
05:a7:80:a8:ef:53:3e:f1:1d:5b:df:cc:d9:06:c1:61:c1:f5:
ca:ab:6f:3b:bf:3c:27:a4:e2:8e:9a:a3:2c:53:78:4a:4e:c1:
af:cd:82:34:84:ad:c4:0c:42:cf:58:8c:07:89:cd:3e:c0:a7:
de:5c:66:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org