Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3161313a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a3161313a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: X6eaCQQCq+q1JN1IPEfDU7pdEdwDbNka4kB1Yw50KYY=
Subject key identifier: E5:AD:67:C5:64:F0:56:1E:D5:7D:DE:54:B8:44:C9:03:07:63:C2:25
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 29CF8E3FA10DDEC27E182EE0C5251D7CB2B59FDA
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3161313a3a2f34382d3438203d3e20323136333234.roa
Signing time: Sun 19 Jan 2025 05:00:03 +0000
ROA not before: Sun 19 Jan 2025 04:55:03 +0000
ROA not after: Sun 18 Jan 2026 05:00:03 +0000
asID: 216324
IP address blocks: 2a14:7581:1a1::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:cf:8e:3f:a1:0d:de:c2:7e:18:2e:e0:c5:25:1d:7c:b2:b5:9f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Jan 19 04:55:03 2025 GMT
Not After : Jan 18 05:00:03 2026 GMT
Subject: CN=E5AD67C564F0561ED57DDE54B844C9030763C225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:c2:30:82:92:a4:d9:4c:60:64:e6:e5:e5:
aa:87:f0:8c:e5:6b:e8:bc:f8:ca:0f:f4:b0:c0:d6:
d5:a8:e5:99:84:58:1e:0a:94:52:03:41:d4:aa:ad:
e9:3e:40:ca:06:7f:ae:ec:4e:1a:ee:93:99:e7:a2:
e0:a4:af:c5:2a:65:34:28:a4:1b:13:9c:22:a4:3a:
6a:bf:04:50:63:30:a8:11:25:35:bb:f8:92:27:ac:
97:6d:9c:0d:85:bb:86:b8:b7:bd:e4:b5:0c:40:76:
d4:5d:07:e3:af:d6:55:65:20:da:da:5b:8c:4a:f8:
bb:da:20:a6:2f:9c:d4:42:87:f5:29:7b:6f:76:32:
10:0c:b4:a1:c5:50:3b:5a:a3:a8:88:97:f2:80:f0:
cb:c8:24:64:40:0b:2e:69:b1:1f:84:12:ee:67:67:
ba:f6:50:94:5b:7d:76:2c:f9:61:c1:be:26:43:06:
f2:90:9b:a2:b8:c2:fc:07:ab:38:39:8b:1a:ca:58:
e8:ad:f8:ed:33:15:37:c6:15:54:41:cb:9d:b6:c7:
92:fd:6e:84:f2:5c:69:60:e9:71:1c:60:56:6f:bf:
19:13:91:62:29:6e:68:46:0b:c6:5f:a6:c7:16:90:
a5:e0:66:8c:78:0a:c6:ef:43:70:61:6b:7b:d5:04:
d4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AD:67:C5:64:F0:56:1E:D5:7D:DE:54:B8:44:C9:03:07:63:C2:25
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3161313a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:1a1::/48
Signature Algorithm: sha256WithRSAEncryption
1d:c7:24:93:ec:2e:3f:72:81:f2:a8:05:be:96:a4:15:b1:8a:
d8:ab:dd:6c:ee:ab:2e:d6:fc:ff:07:55:f7:7f:c1:97:a2:8d:
99:59:44:5d:57:ef:1c:4d:68:13:5e:df:8d:46:ac:da:fd:91:
66:4a:0e:1f:87:78:be:91:6f:3b:11:31:4c:ae:8f:49:26:62:
29:77:1f:09:76:15:65:e7:65:34:f1:23:48:b3:28:81:6e:78:
ac:00:19:7b:e6:6e:e7:da:6a:af:93:27:7c:21:55:6f:2b:45:
79:b3:47:c7:62:60:86:c6:2d:09:6a:c2:64:31:a4:05:54:6d:
af:08:48:29:d7:68:6d:e8:f3:66:84:a1:ad:a2:88:56:46:09:
7b:21:ab:ff:71:30:06:e6:9e:13:f8:75:37:f4:79:4d:bf:f5:
68:ea:19:95:18:c0:24:be:54:a5:24:69:36:7e:ba:b9:6b:3a:
14:a0:7f:ac:d6:2b:ae:1b:05:fa:6d:fd:84:fe:e0:77:4d:1e:
76:20:de:9a:2e:20:33:0a:93:3e:62:2e:dc:b6:1d:5a:d1:61:
75:16:27:b0:e2:b8:e3:e2:b0:b0:71:fc:8a:a7:a7:0d:26:7e:
10:4c:25:45:ef:38:e9:12:e0:aa:42:6d:b9:db:81:f2:eb:5f:
17:5d:0c:57
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgIUKc+OP6EN3sJ+GC7gxSUdfLK1n9owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF
NzhFNkUxMTAeFw0yNTAxMTkwNDU1MDNaFw0yNjAxMTgwNTAwMDNaMDMxMTAvBgNV
BAMTKEU1QUQ2N0M1NjRGMDU2MUVENTdEREU1NEI4NDRDOTAzMDc2M0MyMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvw8IwgpKk2UxgZObl5aqH8Izl
a+i8+MoP9LDA1tWo5ZmEWB4KlFIDQdSqrek+QMoGf67sThruk5nnouCkr8UqZTQo
pBsTnCKkOmq/BFBjMKgRJTW7+JInrJdtnA2Fu4a4t73ktQxAdtRdB+Ov1lVlINra
W4xK+LvaIKYvnNRCh/Upe292MhAMtKHFUDtao6iIl/KA8MvIJGRACy5psR+EEu5n
Z7r2UJRbfXYs+WHBviZDBvKQm6K4wvwHqzg5ixrKWOit+O0zFTfGFVRBy522x5L9
boTyXGlg6XEcYFZvvxkTkWIpbmhGC8ZfpscWkKXgZox4CsbvQ3Bha3vVBNSvAgMB
AAGjggKDMIICfzAdBgNVHQ4EFgQU5a1nxWTwVh7Vfd5UuETJAwdjwiUwHwYDVR0j
BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz
NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5
NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF
BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz
NDNhMzczNTM4MzEzYTMxNjEzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz
NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB
BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEBoTANBgkqhkiG9w0BAQsFAAOCAQEAHcck
k+wuP3KB8qgFvpakFbGK2KvdbO6rLtb8/wdV93/Bl6KNmVlEXVfvHE1oE17fjUas
2v2RZkoOH4d4vpFvOxExTK6PSSZiKXcfCXYVZedlNPEjSLMogW54rAAZe+Zu59pq
r5MnfCFVbytFebNHx2JghsYtCWrCZDGkBVRtrwhIKddobejzZoShraKIVkYJeyGr
/3EwBuaeE/h1N/R5Tb/1aOoZlRjAJL5UpSRpNn66uWs6FKB/rNYrrhsF+m39hP7g
d00ediDemi4gMwqTPmIu3LYdWtFhdRYnsOK44+KwsHH8iqenDSZ+EEwlRe846RLg
qkJtuduB8utfF10MVw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:25 2025 by rpki-client