Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231343a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a326231343a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: vT79jhQFpp3g2QJjAGP6nhSRdehh1bMYxpcf72IE5JY=
Subject key identifier: 18:A3:42:EF:A9:58:78:CE:E7:6D:CF:69:ED:B0:BC:81:1C:BD:F6:9F
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 79937B03A46F3F91CFB24D3C018CB6E544F230E3
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231343a3a2f34382d3438203d3e20323136333234.roa
Signing time: Mon 13 May 2024 01:58:02 +0000
ROA not before: Mon 13 May 2024 01:53:02 +0000
ROA not after: Mon 12 May 2025 01:58:02 +0000
asID: 216324
IP address blocks: 2a14:7581:2b14::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 08:39:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:93:7b:03:a4:6f:3f:91:cf:b2:4d:3c:01:8c:b6:e5:44:f2:30:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 13 01:53:02 2024 GMT
Not After : May 12 01:58:02 2025 GMT
Subject: CN=18A342EFA95878CEE76DCF69EDB0BC811CBDF69F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:55:79:b5:c6:c9:3c:81:5b:df:bc:26:f9:
87:a8:6e:07:24:4d:3b:72:74:f8:b4:78:0b:f5:10:
ea:52:1f:d7:18:78:e8:78:7b:1b:30:05:2e:69:70:
18:ac:a7:05:86:18:c9:68:e3:e4:b4:c3:a3:ad:f4:
7a:9a:11:d1:df:a6:7b:63:4a:0d:08:5a:05:5d:75:
33:b9:f0:ed:8e:ca:77:91:d9:63:81:2e:d8:5a:4a:
9f:84:36:b1:06:a3:1f:01:fc:be:11:11:33:56:b5:
de:5b:f3:fb:cc:e0:93:b2:bf:fe:ce:9d:78:59:ab:
fd:ac:ae:9c:b0:72:0d:74:8d:7c:ac:23:00:13:d9:
03:94:68:03:96:f3:a0:15:42:62:19:19:55:e5:56:
70:17:96:2d:1f:2f:fb:68:4e:05:0f:4a:3b:c6:2a:
01:ff:bb:4c:b4:1a:e5:8d:d3:04:b9:01:4d:8f:40:
f6:a6:40:ba:b8:c9:3a:bc:1b:ca:e7:b2:0d:4b:ee:
8d:29:e8:94:2b:0a:1b:9d:c9:25:a3:bf:90:c6:60:
35:4b:6b:48:2c:2f:ce:66:47:41:b9:02:75:7c:86:
de:41:16:36:0f:b7:d0:1d:c0:dd:02:6b:6e:ce:74:
98:d1:e7:92:ec:28:d0:c4:f5:07:18:8d:e5:fe:1e:
b8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A3:42:EF:A9:58:78:CE:E7:6D:CF:69:ED:B0:BC:81:1C:BD:F6:9F
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a326231343a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:2b14::/48
Signature Algorithm: sha256WithRSAEncryption
78:f7:b8:57:a2:5e:a7:65:7a:43:d0:20:25:e7:15:31:c4:0c:
90:39:bc:85:97:ed:25:79:f4:01:2b:9b:05:f2:f0:dc:13:31:
c2:80:e3:9e:ac:65:e1:4f:ee:e8:33:0a:0c:d0:22:48:69:e4:
40:d9:f6:76:dd:db:90:6d:7a:c9:fe:68:fe:90:93:50:49:4c:
b8:55:6f:1b:b4:28:e9:61:51:b7:51:04:d8:b6:c0:b9:d6:81:
f5:30:5e:cf:d1:70:56:a3:4b:25:31:9d:6f:4d:32:cd:f8:d5:
49:33:52:11:ee:cc:24:f1:e9:6d:17:0f:d8:d4:13:01:d7:69:
65:63:19:c1:ea:1c:3a:c2:50:50:3f:13:4e:bb:e3:f3:01:e6:
70:b4:6c:e5:17:e2:bf:fc:8c:79:80:e6:cf:c8:da:c4:9f:b4:
81:c9:cf:2b:7f:66:a4:b0:b1:bb:b0:98:d9:3b:1e:61:c6:50:
f2:cb:b1:c7:38:74:a8:5c:c6:28:4c:e5:1d:0c:70:3a:c8:12:
7a:b9:e0:5b:ba:a8:82:8c:3d:e8:85:41:13:f7:e1:3f:2f:e7:
f8:d4:8f:0a:0e:97:ed:b3:1c:fe:0c:eb:d9:3a:2f:48:8a:c0:
66:ed:37:87:97:13:18:eb:ac:3b:d7:10:9d:df:6d:5e:de:46:
fa:2a:0d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 12:22:10 2024 by rpki-client on console-ams.rpki-client.org