Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa
File: 326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa (raw, json)
Hash identifier: IVWZKb/aHgPNFKI65R19Ha0509rvzlQ0QdiqtK57uWw=
Subject key identifier: B9:69:84:B8:B6:BD:7D:74:DE:21:22:8F:C2:34:FE:10:58:BE:FC:EE
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 3ABE10A2C1FDD21D5CC044F64573981847D9E9DA
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa
Signing time: Wed 29 May 2024 16:06:45 +0000
ROA not before: Wed 29 May 2024 16:01:45 +0000
ROA not after: Wed 28 May 2025 16:06:45 +0000
asID: 53356
IP address blocks: 2a14:7581:105::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:be:10:a2:c1:fd:d2:1d:5c:c0:44:f6:45:73:98:18:47:d9:e9:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: May 29 16:01:45 2024 GMT
Not After : May 28 16:06:45 2025 GMT
Subject: CN=B96984B8B6BD7D74DE21228FC234FE1058BEFCEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:47:45:c2:fb:4a:a3:47:1c:9b:e1:9a:40:23:
12:74:14:3c:a2:a6:a2:c4:20:8b:f9:7d:09:f3:ca:
60:63:57:33:62:1f:d4:8b:b4:5f:62:19:02:a4:4c:
8b:2f:c1:ae:0d:84:5d:35:11:88:39:00:50:33:36:
bb:f8:e6:d4:5b:31:61:fc:29:0d:33:99:e9:ea:6c:
e9:29:e0:10:28:10:c3:05:93:5b:3c:44:7b:4a:0d:
8b:9a:55:7c:6d:2e:3b:e4:c2:f7:b8:b2:f9:19:e3:
81:57:fc:ca:de:d1:00:d1:a0:09:b9:c0:65:62:68:
b2:8d:46:36:58:4e:d8:00:9a:ab:10:85:0c:50:09:
03:1f:12:25:8b:fe:8a:c6:6b:e5:13:de:58:26:02:
9c:91:dc:60:be:e1:42:d7:7e:cb:18:29:93:9a:a3:
8c:8e:25:c4:40:f5:42:94:7c:7b:70:e6:03:2b:c6:
16:84:9b:dd:7e:db:62:d0:84:5c:6b:8c:d2:f2:88:
3a:f4:fc:2b:e7:cf:d4:90:e5:7a:5c:fc:c2:bb:00:
c5:f2:dd:24:63:22:63:1c:61:b9:a2:0f:ac:a7:b5:
37:fc:e6:69:97:29:ba:33:19:70:a4:0a:83:0d:65:
8d:da:cc:69:e8:d6:d9:c6:a2:75:e2:fa:c3:dc:b7:
81:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:69:84:B8:B6:BD:7D:74:DE:21:22:8F:C2:34:FE:10:58:BE:FC:EE
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:105::/48
Signature Algorithm: sha256WithRSAEncryption
2e:a8:5b:a3:4e:10:47:4f:9f:b1:fb:50:21:d6:92:1b:41:18:
8d:71:27:fd:03:3f:19:e1:77:d4:30:05:7c:bd:3b:e8:dc:28:
61:51:67:cf:1f:1e:5d:f6:f8:2c:7e:17:a1:84:0a:7e:ae:e6:
d1:06:54:28:0f:5d:15:bd:0f:06:d7:b1:27:f9:28:c7:05:6b:
9a:41:7b:3f:48:74:68:34:28:b7:32:8d:ff:9c:3e:03:28:5c:
cd:25:59:f0:6b:7e:2c:54:6a:eb:7a:73:2e:b6:81:2e:19:97:
53:62:4a:47:33:71:5e:33:49:ac:70:fa:ef:9e:a5:05:8a:4c:
2b:45:b8:6c:b0:fd:50:3c:f9:61:e4:83:f1:21:f7:f4:c0:be:
f1:cf:0f:52:72:09:e5:fc:5e:cb:e0:9f:24:4b:c0:40:40:46:
b0:bf:0d:6a:9a:ee:a3:b4:e3:78:e6:84:e0:4a:1b:a8:10:25:
6c:07:1e:33:77:d8:f7:df:69:9b:0b:e1:5a:4d:d9:2d:d5:34:
83:cc:be:4f:6b:a3:d1:a1:1d:6e:ce:78:e8:ca:ca:2c:9e:6f:
02:37:06:78:a2:0d:15:6c:56:02:37:33:ad:04:ac:f5:0e:80:
b1:3c:85:85:52:c2:a7:d6:4a:94:b9:7a:14:b8:7f:bd:f7:f0:
9a:08:a4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:01 2025 by rpki-client