Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130343a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a3130343a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: fjC/MNBSyQpHbtFBo8msqH5uAIOKNGPqUoBQE12VUwM=
Subject key identifier: 37:F0:85:80:20:25:48:F0:33:49:DE:F7:6C:BF:E2:54:8C:6F:38:66
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 780EDF3EC0002AEFA79A563EC2995719CF4F3143
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130343a3a2f34382d3438203d3e20323136333234.roa
Signing time: Tue 11 Feb 2025 06:01:49 +0000
ROA not before: Tue 11 Feb 2025 05:56:49 +0000
ROA not after: Tue 10 Feb 2026 06:01:49 +0000
asID: 216324
IP address blocks: 2a14:7581:104::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:0e:df:3e:c0:00:2a:ef:a7:9a:56:3e:c2:99:57:19:cf:4f:31:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Feb 11 05:56:49 2025 GMT
Not After : Feb 10 06:01:49 2026 GMT
Subject: CN=37F08580202548F03349DEF76CBFE2548C6F3866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ec:07:8c:7e:6d:98:87:7b:9b:de:0d:58:7e:
48:b5:21:ce:37:b0:19:4d:fb:57:1c:a5:7d:00:4e:
3e:54:b9:01:06:23:c1:af:f2:e6:3c:69:76:26:86:
fd:f2:aa:ce:08:96:a0:00:47:0b:34:1a:17:ab:5c:
a9:86:79:a2:be:4b:31:20:06:8c:d2:db:f2:10:fe:
b5:fd:36:2d:e0:18:5d:9d:fb:91:4a:6e:f9:e3:38:
46:59:25:44:39:0b:c1:4e:be:85:43:68:15:ee:7a:
c2:b3:cb:b7:9f:c0:d3:08:cb:61:2f:27:d3:96:c6:
62:e2:e2:63:89:cd:1f:0f:3f:22:87:07:f9:4b:ba:
f0:af:ce:ad:89:2c:09:54:d8:68:2e:88:27:cf:a9:
ed:a5:a9:d1:5a:f6:b8:ea:40:d5:e5:27:df:01:55:
a6:db:7b:51:99:32:c0:ab:d0:60:e3:2f:e4:3f:92:
ab:f7:61:56:b6:5e:3a:53:6f:4f:2a:c5:aa:0f:8a:
9a:e2:12:89:d9:de:fc:f0:d8:8b:26:ba:f4:17:95:
ed:c1:dc:33:78:8f:1c:15:34:c5:b7:55:97:71:52:
9e:7d:71:51:79:dc:21:e0:23:b4:08:39:cb:c5:9a:
e7:be:19:7c:36:3a:00:1a:6c:c6:9d:de:4e:e0:a7:
bc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F0:85:80:20:25:48:F0:33:49:DE:F7:6C:BF:E2:54:8C:6F:38:66
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130343a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:104::/48
Signature Algorithm: sha256WithRSAEncryption
21:6f:10:8e:20:1f:e0:61:4d:be:0d:e3:40:b8:d6:d1:d7:95:
b3:3a:f9:39:5e:11:b4:9b:a5:2a:e9:92:8f:b3:8b:cb:c6:80:
14:5b:81:a0:2d:ae:b8:f5:92:bf:1e:05:69:d2:63:52:60:2b:
72:4e:93:7b:2d:7a:1f:1a:f9:ea:de:67:1c:7c:93:70:73:05:
a8:b7:7c:26:bd:47:c1:95:85:ea:5e:0b:6e:2f:41:eb:6a:ce:
9c:1d:c1:7d:15:1f:d3:65:06:bf:e1:4f:b7:7d:47:fe:30:a8:
ec:ac:3a:a7:2c:15:50:1c:f6:da:29:7a:95:15:3b:5e:b5:2d:
fe:83:d2:ad:3e:49:a1:45:63:a7:10:fc:94:90:63:37:ed:92:
3a:e1:d3:b7:1c:84:05:7e:ff:79:bb:e3:1a:2a:40:9c:74:e9:
6d:74:87:08:33:69:e1:8f:fe:9b:38:56:42:4d:0d:9f:21:2d:
86:ad:87:c2:78:ff:7d:12:74:71:6a:f5:e6:ad:a4:fd:66:06:
70:f4:f8:fd:02:56:56:fb:99:d0:31:0d:fe:67:32:15:bc:05:
10:c8:f9:e4:f1:2f:6f:4e:de:af:5c:25:26:12:c2:ae:a9:66:
85:11:6d:59:8f:f5:a8:2d:1f:f7:0e:7d:ab:71:28:ed:70:63:
54:fd:3e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:29:51 2025 by rpki-client