Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230313a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a326230313a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: vJXUKmuo3Bbz/sT0L9Gb1sVgQzzdEmZbqGj4PQTfVUM=
Subject key identifier: 60:57:9C:6B:30:25:A0:48:42:CA:ED:E2:B2:11:18:BC:2A:16:F7:98
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 6B1E839058C4D0B0F40EDDF9A6B3294B602F3C13
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230313a3a2f34382d3438203d3e20323136333234.roa
Signing time: Mon 13 May 2024 01:55:07 +0000
ROA not before: Mon 13 May 2024 01:50:07 +0000
ROA not after: Mon 12 May 2025 01:55:07 +0000
asID: 216324
IP address blocks: 2a14:7581:2b01::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 08:38:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:1e:83:90:58:c4:d0:b0:f4:0e:dd:f9:a6:b3:29:4b:60:2f:3c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 13 01:50:07 2024 GMT
Not After : May 12 01:55:07 2025 GMT
Subject: CN=60579C6B3025A04842CAEDE2B21118BC2A16F798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:65:4f:c1:7e:e5:08:45:aa:06:dc:53:fe:4c:
35:76:78:7a:c5:a2:3f:3b:39:7e:26:a2:06:63:bb:
c4:d6:be:5e:46:d1:21:0f:70:87:19:67:d2:9f:03:
27:db:bb:f1:7f:61:3e:16:98:2b:bb:66:ca:97:09:
ba:bc:37:f7:c4:15:06:2c:4e:fb:69:85:ff:81:c7:
48:62:fe:c7:9f:94:a9:c9:f5:6b:2d:97:f8:3a:cb:
fe:a9:f4:fc:0a:88:47:ab:87:b7:3e:89:4b:cf:52:
3e:60:89:09:ac:cb:2f:f4:67:19:83:c5:a3:72:42:
fb:eb:64:8b:8e:42:b3:7b:45:45:9e:d8:2c:4e:d9:
9e:35:30:cd:81:48:f4:5c:70:98:c3:73:37:60:e3:
2c:5a:a2:ef:4b:98:0e:7d:9a:c6:45:4d:84:d5:d0:
d2:ed:e7:32:4a:0f:6d:ae:32:6b:59:ca:08:37:36:
9e:f0:25:32:bf:98:aa:28:c3:3b:2e:91:1d:7e:54:
7b:8c:7c:de:30:d5:5b:8e:c3:bb:55:c7:6c:cc:00:
c0:9e:ac:0f:c9:1b:f7:e7:fd:af:72:e4:e7:40:53:
1e:b1:bc:66:57:be:b6:2a:a1:36:df:e8:25:d9:fe:
14:d1:f2:54:2d:33:66:19:fc:59:54:84:7f:72:bf:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:57:9C:6B:30:25:A0:48:42:CA:ED:E2:B2:11:18:BC:2A:16:F7:98
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230313a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2b01::/48
Signature Algorithm: sha256WithRSAEncryption
a5:a7:21:bd:fe:60:5b:8a:f6:a7:af:09:37:bc:3f:1b:7c:86:
f0:42:f2:03:50:74:29:3a:17:a3:2d:ef:11:1f:a8:b8:15:95:
af:c3:a8:1e:69:82:5f:f1:e0:fa:9b:31:6b:3e:39:2e:0c:b6:
8b:ae:39:56:c7:37:dc:4f:62:8f:82:fe:07:2b:ef:6c:a5:86:
ee:08:36:a6:60:8e:a5:ba:8b:1c:59:90:8e:b5:76:d4:60:2b:
82:6b:67:ab:fb:a6:03:1b:2b:16:9e:b2:22:81:bf:94:8f:7e:
e7:ed:a2:e0:47:fa:20:a0:d4:cc:cd:d2:44:89:08:9c:33:1d:
f7:33:a0:33:ce:27:82:74:e4:78:f3:a7:8f:fc:9b:5b:3d:54:
01:2a:b9:63:0c:ac:39:53:9a:ed:b1:d1:c7:dd:1a:d7:7d:cb:
79:60:f4:47:2b:cc:3d:82:1c:9a:be:db:76:3b:a7:65:fa:13:
fc:47:82:66:83:40:dd:6f:92:df:49:60:cd:3c:27:0e:f8:99:
9d:50:6f:6d:04:b5:8a:9a:33:e7:eb:60:49:99:f7:ce:63:a7:
9b:76:7b:2e:e1:13:1d:1c:f4:ae:c9:4d:75:d6:2f:dc:81:92:
83:30:d5:1c:32:c2:6c:ce:17:eb:54:db:78:99:2f:30:c1:23:
51:4c:7b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 12:22:10 2024 by rpki-client on console-ams.rpki-client.org