Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa
File: 326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa (raw, json)
Hash identifier: QUOxsQ0jrjtQMYftK/FhaP7xMarM291zbcxEh8cQdLw=
Subject key identifier: 53:61:57:43:00:55:B3:26:91:B9:D6:4C:5A:A4:D2:CC:27:5C:5C:7A
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 30650BFAE03821714EECDDDFF07DA1DA4E9AD293
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa
Signing time: Sat 25 May 2024 16:00:08 +0000
ROA not before: Sat 25 May 2024 15:55:08 +0000
ROA not after: Sat 24 May 2025 16:00:08 +0000
asID: 215729
IP address blocks: 2a14:7581:2341::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 16:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:65:0b:fa:e0:38:21:71:4e:ec:dd:df:f0:7d:a1:da:4e:9a:d2:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 25 15:55:08 2024 GMT
Not After : May 24 16:00:08 2025 GMT
Subject: CN=536157430055B32691B9D64C5AA4D2CC275C5C7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:03:5a:31:ba:ac:e8:96:a4:bd:c1:6e:f0:ea:
f5:9c:27:dd:86:2f:30:4b:01:11:41:e1:1f:18:fd:
fa:9d:99:3e:b0:a2:61:a3:1e:64:3d:fa:ae:bb:bb:
0c:ef:6f:31:36:e9:00:72:63:4a:80:06:43:fd:c6:
f6:ab:31:5d:f1:06:37:8d:30:09:9f:80:26:f2:56:
5f:9e:ad:5f:f9:71:b0:90:69:a2:8c:56:2b:5e:52:
a4:1f:9e:cc:06:8f:70:0c:41:17:36:2c:34:e6:ff:
36:23:13:1a:93:19:bc:14:9b:04:f0:7d:4a:ab:61:
6c:c6:05:37:bf:ad:1b:42:70:b8:7d:02:cf:f2:44:
f3:bc:c2:53:4b:02:47:1a:2c:7f:b5:36:37:cd:82:
5b:41:3b:8a:f9:8d:44:8d:4b:e3:0c:50:6e:f7:c9:
e7:e9:70:4e:65:40:48:2f:70:92:3a:7f:17:c2:f4:
bb:b7:a5:ad:04:a4:71:68:a0:74:47:98:6a:c5:7f:
0a:dd:f4:9e:36:e0:17:4d:0d:52:c2:39:e9:ff:11:
62:9d:98:7a:da:48:f7:e1:34:c8:9b:3f:7c:4b:1f:
c2:4f:a9:58:ef:d7:2a:58:8c:ef:7a:be:8b:8e:c4:
50:f7:96:4c:16:9c:43:e8:fa:92:f7:b3:08:ba:d8:
dd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:61:57:43:00:55:B3:26:91:B9:D6:4C:5A:A4:D2:CC:27:5C:5C:7A
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2341::/48
Signature Algorithm: sha256WithRSAEncryption
14:92:da:0f:b4:0e:20:8c:d7:91:d1:67:b6:54:af:72:5f:df:
40:6e:ba:9c:3b:bc:48:ce:65:6d:cf:fa:30:91:39:b7:71:b5:
f6:80:24:cb:cc:75:48:57:b0:91:be:d9:7a:6b:83:c7:5f:00:
a7:17:55:d8:23:a0:31:92:97:6b:44:9a:9d:c8:2c:2a:9e:fa:
64:6f:9a:3c:83:45:7e:75:2c:d4:66:6c:97:e7:ea:2f:ee:e7:
ad:ab:08:a5:b9:40:c2:4a:de:88:c8:a4:c8:7a:13:af:15:ec:
32:59:3c:9f:3b:31:aa:1d:03:28:1c:7e:bf:b2:22:21:4a:12:
90:ab:c3:35:13:6f:ab:ba:f3:d0:2a:f4:d4:89:9d:64:bc:0e:
ca:2e:bc:84:bf:38:37:fd:dd:cc:91:03:ea:47:bc:91:58:80:
9b:7d:36:51:af:18:e8:da:b3:03:f1:cb:c5:e8:ff:ec:c5:83:
e9:74:13:99:20:6e:4b:b0:d0:4d:3e:0d:54:68:dd:cb:54:ab:
c5:0a:00:0e:cf:e9:05:74:8a:2a:76:61:f6:1c:70:c1:26:30:
ba:97:b3:33:6f:e8:f6:ba:e5:31:85:97:df:f0:1b:c1:9d:45:
75:2a:09:3b:a2:1e:56:6d:27:9d:e6:9c:b6:34:68:33:7d:81:
ea:49:17:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 19:35:32 2024 by rpki-client on console-fra.rpki-client.org