Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa
File: 326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: xT2pm07UnP0uG6BhVw2rTqffGPuhiKG8ksJKNvqD2jc=
Subject key identifier: A6:67:F4:80:C7:F5:CE:8B:FA:11:C2:FE:EA:0A:56:49:8F:67:7F:72
Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11
Certificate serial: 6A081E91B9E60C488F0045CF626AB71805F146
Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa
Signing time: Fri 13 Sep 2024 05:23:37 +0000
ROA not before: Fri 13 Sep 2024 05:18:37 +0000
ROA not after: Fri 12 Sep 2025 05:23:37 +0000
asID: 216324
IP address blocks: 2a14:7581:213::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:08:1e:91:b9:e6:0c:48:8f:00:45:cf:62:6a:b7:18:05:f1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11
Validity
Not Before: Sep 13 05:18:37 2024 GMT
Not After : Sep 12 05:23:37 2025 GMT
Subject: CN=A667F480C7F5CE8BFA11C2FEEA0A56498F677F72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:8d:c0:38:9e:2e:b3:44:f1:00:e2:3f:b2:
3c:50:b0:8e:e0:a6:1c:6e:a7:ab:35:78:91:aa:9d:
c8:01:5d:35:4a:33:21:38:0e:c0:aa:20:81:3e:c0:
51:f1:2a:b5:ac:1b:e9:56:5f:f3:c0:7c:ee:e3:36:
f2:9c:4b:fb:70:04:46:be:15:88:87:fd:4b:89:5e:
f9:10:22:9c:54:20:c8:02:95:14:18:d0:7c:a0:fc:
be:e4:c1:ff:ee:9f:62:de:c4:2b:a8:63:90:f5:75:
d5:f7:bb:c2:b7:bc:b0:a3:92:51:8c:58:39:b2:38:
c1:43:b4:bc:c2:c3:2a:62:fb:3b:1c:6b:c3:a9:fc:
c8:63:8b:0a:7c:b5:f6:a5:0c:2c:0e:82:45:87:a5:
4f:7b:18:16:30:40:e1:82:5c:12:df:f2:61:68:94:
5f:65:53:51:a6:88:6e:2c:1d:6c:93:67:ec:fe:a3:
81:5a:e8:05:48:bb:33:fd:f5:bb:21:76:35:60:c9:
ab:a2:67:66:4e:5f:b2:b3:7a:42:19:f5:f7:07:55:
6b:66:9f:78:cf:31:b0:b3:e0:49:e9:20:43:a6:f2:
36:a0:c8:57:a4:fb:73:8a:0b:eb:90:07:78:ff:02:
97:29:5e:20:85:f9:ce:07:7c:b2:97:e8:70:e2:d9:
a0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:67:F4:80:C7:F5:CE:8B:FA:11:C2:FE:EA:0A:56:49:8F:67:7F:72
X509v3 Authority Key Identifier:
keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:213::/48
Signature Algorithm: sha256WithRSAEncryption
a6:22:74:87:af:72:c1:3e:48:10:e0:d3:46:19:66:38:81:4e:
1c:07:10:9d:82:85:45:28:90:ef:13:78:ce:e6:36:8e:38:71:
64:7c:19:79:8c:13:6f:14:16:d3:d6:4c:29:f0:fd:85:23:1c:
bb:0c:c5:32:35:79:31:98:ca:55:88:7d:ff:47:0b:a6:d2:1d:
9a:f2:e3:12:c7:24:e9:89:45:1e:37:f3:6b:78:4c:3e:0c:7b:
39:6f:e6:14:b9:86:ec:54:a3:6d:57:55:07:e6:42:fe:7e:73:
05:27:4e:16:0c:a4:f0:9b:4b:4c:ee:f4:05:3c:74:57:65:25:
1a:a5:21:3f:58:41:92:cb:3c:ab:d2:95:f5:0e:dd:80:7b:94:
b9:8e:11:01:09:ae:74:b9:b9:59:ac:b6:d6:bf:16:a8:62:47:
e6:e3:63:6f:83:98:33:ae:55:01:64:67:7f:01:e9:8f:e9:7e:
a4:51:d7:91:96:f9:05:c2:a2:50:9f:69:ce:39:17:dc:55:07:
3a:dc:32:98:f6:81:1c:90:60:66:a3:c8:4f:53:ab:00:3b:2a:
e9:0b:36:43:d7:8c:41:18:94:6f:c2:a1:d7:22:24:6d:28:8d:
0f:a6:60:25:de:77:ec:b9:20:f1:d1:c1:0c:07:14:15:96:ca:
88:77:bb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:39 2025 by rpki-client