Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231303a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a326231303a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: QGJzf4a/uGKWXhDabERdBjuZ4BbBLGSS+NVvDzLEQcA=
Subject key identifier: B7:09:79:C0:F8:A1:34:4D:3F:0C:1B:FB:00:77:11:D5:61:6D:2B:88
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 31A7AB6DD8FD484F4CD7E5DEB75483D4F5E9F7E5
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231303a3a2f34382d3438203d3e20323136333234.roa
Signing time: Mon 13 May 2024 01:57:34 +0000
ROA not before: Mon 13 May 2024 01:52:34 +0000
ROA not after: Mon 12 May 2025 01:57:34 +0000
asID: 216324
IP address blocks: 2a14:7581:2b10::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 04:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:a7:ab:6d:d8:fd:48:4f:4c:d7:e5:de:b7:54:83:d4:f5:e9:f7:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 13 01:52:34 2024 GMT
Not After : May 12 01:57:34 2025 GMT
Subject: CN=B70979C0F8A1344D3F0C1BFB007711D5616D2B88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:6d:48:3a:57:5a:c4:da:0b:ab:5c:94:4c:
a7:36:6b:65:97:3f:1c:88:71:74:3b:86:7a:9c:96:
ea:b1:be:90:56:ca:a5:57:6c:4c:f9:3c:15:d8:24:
5d:9b:ff:65:40:b0:ed:1b:ce:d8:eb:45:8c:cf:6a:
64:22:01:e3:0d:54:f3:e7:a5:49:67:92:75:c2:b2:
5c:5f:ef:d1:07:3d:37:9c:7d:e8:7f:d1:ff:77:22:
02:21:45:90:0d:b6:b7:f4:0c:4c:55:ff:65:3b:e4:
c7:9d:ff:b6:16:b8:27:eb:b5:8d:d6:2c:23:2e:11:
36:23:f0:7d:ca:44:3e:b5:43:29:a7:e9:d3:5c:30:
25:77:85:bb:64:ad:19:e5:fc:b8:ea:aa:2c:b5:16:
d1:c4:8f:36:c2:99:21:a5:a0:9a:cd:ef:42:f8:7d:
59:1d:52:6e:64:08:a1:4f:f5:bf:16:1e:e3:06:c1:
db:be:85:c8:28:a8:da:ba:b6:b5:a7:c1:93:bc:06:
3b:27:09:6d:7e:43:d3:c6:7c:2b:8d:e9:39:8d:73:
a6:57:19:c7:a4:4a:81:60:ab:5b:21:b2:d4:6c:72:
48:7d:32:1c:74:0a:c8:91:40:0c:5a:d0:7d:ad:a8:
ee:22:f4:32:7d:1f:c3:4e:be:0c:90:9a:b1:11:c8:
df:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:09:79:C0:F8:A1:34:4D:3F:0C:1B:FB:00:77:11:D5:61:6D:2B:88
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231303a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2b10::/48
Signature Algorithm: sha256WithRSAEncryption
ad:af:e4:8c:1b:da:b5:ce:20:01:fb:d8:c6:b2:ee:97:79:3a:
b0:1f:82:db:38:8c:ef:d3:46:c8:a3:22:f3:43:d7:43:ae:82:
a0:47:41:74:03:57:df:a9:79:3e:23:ba:a6:0d:ff:8b:24:16:
60:3d:be:1c:fb:95:1f:c0:5f:93:a5:f0:9b:ca:31:5f:eb:2b:
7f:8b:b0:1a:1c:63:92:0b:79:65:6a:5f:21:e2:c1:72:60:b0:
60:8d:7e:24:a4:7f:1e:0a:be:bd:f8:ce:02:8f:0c:76:e9:20:
9e:2f:5d:7d:ff:2c:3a:91:2a:9f:5c:ef:91:da:59:ef:76:66:
22:a8:e0:b2:63:3f:c9:dc:cb:ce:9d:92:c7:4e:6a:fa:7c:7b:
e4:94:d2:73:6b:8c:94:ab:cb:fc:dd:b1:f7:4b:ac:28:f1:2a:
3a:be:c8:c9:93:ce:b5:ca:42:af:e3:63:fa:d2:1d:05:12:d1:
27:67:81:b1:e0:20:2e:64:97:09:4a:b4:88:cf:3d:6e:2e:a3:
17:9c:fb:7a:dc:fb:e1:f8:21:91:c5:1f:66:db:b2:39:bc:2f:
bd:40:b6:4e:19:c4:8f:5f:a7:8a:53:87:ef:e3:3c:7a:ad:f7:
d3:56:e8:8c:88:15:33:f6:3e:7a:55:b5:61:fb:7c:20:33:5d:
0b:bd:a4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 07:51:12 2024 by rpki-client on console-ams.rpki-client.org