Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: 9I5cfXC3zeMs4vA6zUX1vp3/18LcY/br3YGMf/bxmoo=
Subject key identifier: 3E:1F:D8:1E:7F:50:DD:8B:86:3E:A1:87:D0:4A:F9:01:66:40:75:E9
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 78EDE6F151399CB8FAE492EF89F146277E569A91
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa
Signing time: Tue 05 Mar 2024 16:06:13 +0000
ROA not before: Tue 05 Mar 2024 16:01:13 +0000
ROA not after: Tue 04 Mar 2025 16:06:13 +0000
asID: 215729
IP address blocks: 2a14:7581:2180::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:ed:e6:f1:51:39:9c:b8:fa:e4:92:ef:89:f1:46:27:7e:56:9a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Mar 5 16:01:13 2024 GMT
Not After : Mar 4 16:06:13 2025 GMT
Subject: CN=3E1FD81E7F50DD8B863EA187D04AF901664075E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fe:0d:84:65:69:5b:a1:7f:e3:8f:f6:17:3f:
4b:70:36:6d:9b:c2:a7:b7:8c:3d:47:51:8e:97:1d:
92:ce:c4:be:ae:d6:4c:93:e5:99:ba:f6:0f:84:f5:
0b:03:00:19:16:9d:6a:e2:57:ab:96:53:25:49:a9:
c9:bf:a1:4e:1a:76:5c:35:a4:7c:c9:36:64:ca:55:
d5:c9:4e:68:4d:43:59:c9:6d:bd:4c:5a:c0:9e:dc:
7f:45:61:81:a3:78:7a:98:38:ed:e9:0c:d6:b3:97:
e3:63:c2:b3:b6:f8:aa:b4:6d:da:62:3c:29:1a:7f:
ad:d5:72:ad:c7:c3:c9:f2:0f:5a:4c:b2:9b:e1:25:
7b:19:e3:79:68:1b:16:fc:7f:1f:6c:b8:58:ac:3f:
77:80:31:1f:e2:70:3b:7f:cd:9f:45:22:9d:8d:da:
98:43:27:08:1f:08:30:64:04:3e:80:f6:83:09:80:
a5:3a:98:92:6e:4f:91:82:4e:a0:cf:e3:f8:a1:c7:
00:71:0c:8d:02:04:6d:bb:9d:39:07:e7:6e:db:dc:
a2:3d:a0:a5:66:04:20:2d:9b:9b:e8:29:25:df:55:
9f:9d:24:44:a3:d5:8e:f2:4e:e6:89:76:ca:4a:6d:
b6:a3:07:29:c4:ff:83:91:64:0b:61:ab:51:1b:8b:
97:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1F:D8:1E:7F:50:DD:8B:86:3E:A1:87:D0:4A:F9:01:66:40:75:E9
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2180::/48
Signature Algorithm: sha256WithRSAEncryption
7e:ce:1c:f1:87:85:8c:ee:85:c5:bb:68:01:b2:f8:53:6a:8c:
c5:65:a6:5d:1e:b8:76:6d:08:c4:43:55:67:20:f4:3d:4f:09:
6d:0a:ea:42:d4:de:d9:58:12:b4:03:76:bc:3d:96:33:02:6b:
54:6f:7f:0a:46:aa:80:92:54:ca:e8:c2:c3:93:e6:20:f0:5e:
a8:2c:79:50:5c:8a:44:78:06:92:3e:57:9e:ec:73:07:58:53:
eb:d5:14:4f:0a:7e:48:c4:aa:5d:dc:7e:ac:ec:2b:8e:09:f0:
31:9e:1c:c4:14:a5:b1:ab:77:c4:93:db:39:cb:f5:98:a8:59:
85:a0:98:c2:34:a4:eb:b3:11:17:58:68:8d:c4:eb:a8:02:ac:
26:12:b9:c0:52:bf:b7:fb:11:f4:e0:24:d3:b1:6e:99:03:ca:
b0:8b:68:ee:96:ab:91:f2:c7:77:87:b7:90:52:4f:62:59:fb:
5f:45:83:02:b3:c0:e4:e6:a7:cc:79:9e:41:d9:04:db:8f:63:
c4:ad:3e:2a:4d:86:64:cf:5d:ef:33:e7:c3:43:84:3f:4f:e5:
d5:86:d0:b6:bb:9c:32:18:12:62:7b:84:f7:2f:8f:be:ef:92:
38:d8:ef:06:47:7c:a6:4c:b7:3e:05:31:5a:34:ec:74:d6:c9:
92:29:5e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 21:07:18 2024 by rpki-client on console-ams.rpki-client.org