Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130323a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a3130323a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: WYvVZ8fAuUsocTsVarqn75WcsZ7N/v67baANN5RqXDE=
Subject key identifier: 7A:F4:F6:A7:F5:90:C1:67:81:A8:54:2F:6F:BA:6A:E0:48:96:A4:AE
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 56187BF90060453602D342EE24B9EA0D0916C139
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130323a3a2f34382d3438203d3e20323136333234.roa
Signing time: Tue 04 Feb 2025 15:01:55 +0000
ROA not before: Tue 04 Feb 2025 14:56:55 +0000
ROA not after: Tue 03 Feb 2026 15:01:55 +0000
asID: 216324
IP address blocks: 2a14:7581:102::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:18:7b:f9:00:60:45:36:02:d3:42:ee:24:b9:ea:0d:09:16:c1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Feb 4 14:56:55 2025 GMT
Not After : Feb 3 15:01:55 2026 GMT
Subject: CN=7AF4F6A7F590C16781A8542F6FBA6AE04896A4AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fc:ac:96:1d:af:f1:18:b6:ee:fc:22:13:58:
df:55:90:c5:a3:fd:02:b2:91:98:4a:7c:19:a6:d1:
c3:90:18:ac:70:99:84:0b:42:66:e9:33:0a:1e:d8:
63:ca:6a:21:71:80:c1:6c:b6:4a:26:34:04:cc:0a:
97:6e:89:82:1e:3b:37:8a:59:d8:0c:f7:3c:2e:0d:
b9:54:84:3e:9d:cc:2b:f1:40:9c:28:2d:91:26:4a:
54:08:25:38:20:c4:eb:2a:8f:ad:00:bd:e6:7d:76:
92:0d:2d:48:f7:a1:8c:06:3d:f3:7e:80:f4:37:96:
12:91:1b:b5:eb:77:c1:a2:ac:c1:32:b9:bd:2b:42:
df:42:f0:24:24:20:62:b5:2b:dd:d9:f9:cd:05:50:
98:5f:c1:d8:6b:cd:58:da:40:76:69:8b:cb:b7:3c:
6e:59:11:47:04:64:cb:ff:66:2a:47:1f:0e:d2:51:
a6:ad:d4:6e:17:ce:ce:d6:fa:5d:39:34:fe:b7:50:
d3:39:3a:75:49:46:46:72:3c:35:d3:d9:46:ad:8b:
6f:b0:51:8c:75:82:e0:61:7a:36:b5:de:fc:84:b5:
9b:fc:0a:9e:36:eb:cd:73:45:b6:77:06:38:74:77:
b8:58:78:93:b1:4d:d1:1a:31:91:b3:5c:e5:f0:ed:
a2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F4:F6:A7:F5:90:C1:67:81:A8:54:2F:6F:BA:6A:E0:48:96:A4:AE
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130323a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:102::/48
Signature Algorithm: sha256WithRSAEncryption
55:15:b7:fc:20:27:9d:33:c9:c5:0d:cb:2e:e0:a4:fa:95:94:
7d:7b:ad:d7:a7:82:38:de:45:8b:08:40:d8:a8:b4:d3:4f:22:
e6:ab:72:8f:51:62:4b:f6:20:3f:b1:94:77:63:92:05:7f:9b:
25:9c:6c:27:d1:be:cf:71:d8:c0:2d:58:ce:92:3c:2d:82:95:
67:22:9f:ae:bf:5f:77:7d:16:bc:d4:05:ff:f9:e2:0b:df:bf:
36:66:8a:ce:39:74:e7:0d:eb:00:68:5d:86:5d:17:47:56:d7:
7c:64:15:4f:d0:35:0d:c1:92:ee:39:aa:c0:29:72:d5:01:75:
82:24:fa:f5:a4:ac:1e:7d:16:60:aa:81:65:2d:53:c2:94:bc:
6e:f3:ac:db:ab:16:63:cb:d1:24:3b:0d:9f:a1:ba:90:ab:34:
3a:57:bb:36:5c:52:87:cd:6a:bb:0f:22:e6:6b:83:8d:b6:9a:
b5:b7:b8:51:c7:28:65:55:b7:e7:5d:f0:f6:51:f8:ee:43:b3:
d0:fc:0a:3c:a1:1e:98:a9:69:60:23:55:f4:31:9b:79:38:d2:
f6:42:11:16:56:10:5e:3f:1f:f1:6d:c7:cc:1d:3d:01:d8:ae:
2a:8c:da:64:6b:e4:93:ab:d9:f3:a5:fe:93:b8:ad:1b:3f:3f:
88:69:a0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:31 2025 by rpki-client