Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165663a3a2f34382d3438203d3e20323033303639.roa
File: 326130613a363034303a313165663a3a2f34382d3438203d3e20323033303639.roa (raw, json)
Hash identifier: tuDOp6ymFNLIaH2SNOVr4dLIvQzALyCA4Dcr8Il5FUM=
Subject key identifier: C2:D2:16:53:F9:1E:F6:0E:93:B2:78:F4:F6:AD:3D:A4:D3:56:66:17
Certificate issuer: /CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122
Certificate serial: 2EB6D1C479FA0FF945AE6FE0AB079C4BB47DC43F
Authority key identifier: F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165663a3a2f34382d3438203d3e20323033303639.roa
Signing time: Sat 21 Jan 2023 03:19:05 +0000
ROA not before: Sat 21 Jan 2023 03:14:05 +0000
ROA not after: Sat 20 Jan 2024 03:19:05 +0000
asID: 203069
IP address blocks: 2a0a:6040:11ef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:b6:d1:c4:79:fa:0f:f9:45:ae:6f:e0:ab:07:9c:4b:b4:7d:c4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122
Validity
Not Before: Jan 21 03:14:05 2023 GMT
Not After : Jan 20 03:19:05 2024 GMT
Subject: CN=C2D21653F91EF60E93B278F4F6AD3DA4D3566617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:d9:87:c1:35:d9:02:c9:19:ba:0e:e3:da:
73:b5:c3:50:84:57:0a:85:71:37:60:55:92:27:18:
bb:84:a9:a8:bf:89:b3:81:50:9f:45:2c:e3:01:48:
ea:90:f1:c7:52:b9:61:0d:92:81:45:e6:9f:c1:bb:
2d:ef:ce:02:c9:20:9b:e2:a3:b2:f9:57:5d:b9:66:
7a:f3:80:19:9c:5d:9b:08:5f:49:b1:29:48:31:9f:
45:b9:a4:25:5b:0c:e7:42:96:c5:51:cc:3a:0d:e6:
61:f1:8e:0d:a7:e9:19:43:ed:22:35:30:43:6a:17:
f1:f8:1a:0f:41:dd:28:c6:9c:90:56:6e:2c:d9:ee:
c9:fe:f8:a4:cc:72:cb:4e:01:ce:68:fc:d5:e4:94:
16:aa:3d:c8:13:48:85:06:e1:ee:8d:ed:8d:3e:ec:
97:64:2e:dd:d6:cc:1d:81:32:0e:46:17:5d:58:f8:
11:db:f4:65:a4:b2:1a:47:14:51:18:2f:81:81:35:
08:5d:0b:42:d1:e1:ca:cd:65:b8:02:43:eb:4f:fc:
00:b1:ca:6d:13:4e:97:1f:66:34:30:4b:ff:03:e2:
78:bd:b1:e3:21:d7:8f:d6:4c:c1:f8:a5:b0:b0:8a:
cf:a3:77:5a:99:19:86:72:0f:e7:66:39:c0:3c:2a:
ea:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D2:16:53:F9:1E:F6:0E:93:B2:78:F4:F6:AD:3D:A4:D3:56:66:17
X509v3 Authority Key Identifier:
keyid:F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165663a3a2f34382d3438203d3e20323033303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:11ef::/48
Signature Algorithm: sha256WithRSAEncryption
4a:43:53:b7:dc:f6:37:94:06:ce:65:1d:ed:4f:44:6f:45:98:
8b:e0:35:e1:84:dd:de:e7:5e:b0:29:78:23:5c:a6:0c:23:a4:
c0:2e:fb:e4:72:63:e2:8a:ca:c8:b9:0a:bf:a4:9e:df:fc:d1:
7d:d2:d7:ab:84:54:c7:e4:28:ba:27:c6:b6:22:98:02:95:c8:
79:99:cf:af:2b:12:9d:cf:3e:f6:99:ed:16:bc:2d:f5:68:75:
32:e3:3b:7b:ad:ba:f9:ad:6e:5f:19:13:ea:08:cd:c4:44:3c:
5f:b3:32:09:81:45:e7:bf:78:ae:f7:9b:d7:80:1c:d6:ec:64:
87:33:12:85:fb:91:e9:6b:65:f1:5c:38:16:52:ee:04:18:02:
9f:34:7b:3a:a0:e0:9f:c5:ae:70:87:0e:34:19:e4:2a:3f:f2:
1f:38:28:f5:ac:0b:46:58:0d:7f:7e:a8:5d:6e:d0:04:42:63:
f4:3e:dd:06:d3:aa:a8:f4:d9:8c:76:ea:2a:67:05:c2:ad:66:
f3:c7:fb:50:11:69:e5:b2:73:b9:c5:25:90:43:5f:31:de:23:
0e:7f:40:4e:c3:8d:a5:a8:72:f3:ea:a8:e4:3a:f4:a9:de:46:
8c:a9:51:f3:3d:17:9b:84:e5:9b:87:2e:b9:50:11:39:c7:76:
d2:7d:75:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org