Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230383a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a326230383a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: jypb1Snw3yn05YyyWmsG0JobUqTR4189QMeV3MilTQc=
Subject key identifier: 58:94:71:C9:E4:27:67:65:77:63:BF:0D:55:BB:98:65:73:8F:C3:F8
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 503DFAFC5FFF7B4A9586F182BEA5A9D35DCACF62
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230383a3a2f34382d3438203d3e20323136333234.roa
Signing time: Mon 13 May 2024 02:01:20 +0000
ROA not before: Mon 13 May 2024 01:56:20 +0000
ROA not after: Mon 12 May 2025 02:01:20 +0000
asID: 216324
IP address blocks: 2a14:7581:2b08::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 08:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:3d:fa:fc:5f:ff:7b:4a:95:86:f1:82:be:a5:a9:d3:5d:ca:cf:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 13 01:56:20 2024 GMT
Not After : May 12 02:01:20 2025 GMT
Subject: CN=589471C9E42767657763BF0D55BB9865738FC3F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:70:06:c1:e3:9e:ed:03:01:12:eb:39:ee:4c:
fa:5f:6a:07:4b:76:a0:05:c9:40:36:47:b2:38:15:
b2:3b:18:73:0f:77:69:f7:da:b5:dc:48:5f:b6:2b:
90:03:a8:df:91:df:e5:ec:43:c4:f8:89:a1:fe:42:
d0:40:73:cb:66:91:65:82:75:7f:14:f3:86:7a:85:
b1:d0:50:8e:42:50:96:98:16:8b:f0:2a:56:5e:7a:
ca:a5:0c:45:c9:50:e3:ae:8a:ab:1f:ef:af:1b:2a:
07:38:d2:11:e0:d1:4a:d8:54:76:2f:50:f0:70:8a:
1a:3e:19:be:5d:29:3b:6a:10:8f:8d:a8:19:7e:69:
99:61:7e:9f:52:d4:eb:73:2b:2c:86:fb:a4:6e:a4:
f7:f3:7b:d6:7f:3c:28:7e:27:0b:90:ca:00:95:de:
e5:87:c7:fb:67:3d:67:10:fc:eb:47:de:fe:ea:d7:
d6:65:16:7c:dd:ea:28:7c:17:7d:5a:fb:ad:a2:66:
46:22:93:ba:16:8f:d3:29:a5:38:81:7d:bd:ef:e8:
8c:24:b9:9f:4f:54:d7:78:bd:16:f7:de:16:ab:67:
6b:8c:65:32:eb:2c:02:48:87:1a:d5:bc:ca:19:90:
79:a9:f7:ee:4c:8a:80:d4:c4:9c:b6:5d:8c:ab:4c:
14:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:94:71:C9:E4:27:67:65:77:63:BF:0D:55:BB:98:65:73:8F:C3:F8
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326230383a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2b08::/48
Signature Algorithm: sha256WithRSAEncryption
a7:2e:30:e7:06:86:70:78:59:08:91:b7:39:0d:85:c1:2c:16:
14:d3:ea:16:75:8c:65:33:cb:d3:b9:9e:44:4a:85:e9:f4:0b:
13:5b:29:bb:36:3a:8f:dc:1e:88:69:bf:3b:e5:27:93:4f:fd:
87:21:97:81:dd:92:83:c9:fc:77:e7:bd:cd:0d:39:5f:99:fc:
43:e6:8a:6a:cb:db:54:2c:e0:2b:c2:69:17:ee:bd:ab:92:07:
09:df:1f:4d:c9:c0:b1:61:54:d7:93:00:ea:e4:e0:44:5e:6f:
ba:67:b1:cc:eb:be:c8:12:db:60:47:12:3a:da:cb:c9:89:f1:
4e:c8:a7:56:57:a7:d5:b7:1e:21:b0:a4:fa:54:7b:b9:35:cc:
48:1f:75:88:41:4e:1f:3e:04:a7:48:8d:59:fc:de:31:31:b6:
04:67:36:22:01:8c:c1:57:49:23:4d:45:58:18:9e:dc:b6:92:
1e:bf:42:f3:48:9d:fe:d3:66:77:b9:e4:42:f8:37:f6:1b:26:
23:a7:83:98:e7:64:52:7f:13:15:91:28:41:28:3e:d0:46:ef:
3a:d3:dd:57:1b:75:50:84:da:fb:a0:c7:aa:46:c3:78:ef:c0:
70:97:4a:7b:b8:89:7f:9f:a6:73:c4:ed:25:cf:9c:5e:7b:e3:
ad:5b:a9:bf
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUUD36/F//e0qVhvGCvqWp013Kz2IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF
NzhFNkUxMTAeFw0yNDA1MTMwMTU2MjBaFw0yNTA1MTIwMjAxMjBaMDMxMTAvBgNV
BAMTKDU4OTQ3MUM5RTQyNzY3NjU3NzYzQkYwRDU1QkI5ODY1NzM4RkMzRjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOcAbB457tAwES6znuTPpfagdL
dqAFyUA2R7I4FbI7GHMPd2n32rXcSF+2K5ADqN+R3+XsQ8T4iaH+QtBAc8tmkWWC
dX8U84Z6hbHQUI5CUJaYFovwKlZeesqlDEXJUOOuiqsf768bKgc40hHg0UrYVHYv
UPBwiho+Gb5dKTtqEI+NqBl+aZlhfp9S1OtzKyyG+6RupPfze9Z/PCh+JwuQygCV
3uWHx/tnPWcQ/OtH3v7q19ZlFnzd6ih8F31a+62iZkYik7oWj9MppTiBfb3v6Iwk
uZ9PVNd4vRb33harZ2uMZTLrLAJIhxrVvMoZkHmp9+5MioDUxJy2XYyrTBQzAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUWJRxyeQnZ2V3Y78NVbuYZXOPw/gwHwYDVR0j
BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz
NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5
NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz
NDNhMzczNTM4MzEzYTMyNjIzMDM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM2MzMzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSsIMA0GCSqGSIb3DQEBCwUAA4IBAQCn
LjDnBoZweFkIkbc5DYXBLBYU0+oWdYxlM8vTuZ5ESoXp9AsTWym7NjqP3B6Iab87
5SeTT/2HIZeB3ZKDyfx3573NDTlfmfxD5opqy9tULOArwmkX7r2rkgcJ3x9NycCx
YVTXkwDq5OBEXm+6Z7HM677IEttgRxI62svJifFOyKdWV6fVtx4hsKT6VHu5NcxI
H3WIQU4fPgSnSI1Z/N4xMbYEZzYiAYzBV0kjTUVYGJ7ctpIev0LzSJ3+02Z3ueRC
+Df2GyYjp4OY52RSfxMVkShBKD7QRu86091XG3VQhNr7oMeqRsN478Bwl0p7uIl/
n6ZzxO0lz5xee+OtW6m/
-----END CERTIFICATE-----
Generated at Fri Sep 13 10:35:15 2024 by rpki-client on console-fra.rpki-client.org