Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323031393338.roa
File: 326130353a646663313a393135303a3a2f34382d3438203d3e20323031393338.roa (raw, json)
Hash identifier: EQyO5QQgeSvwFPbh9q4lG7PKigyF5xI9auqLgmv8+DE=
Subject key identifier: 3B:55:A3:29:34:BD:6B:EA:F0:46:8A:E5:38:1B:9B:D7:DE:F5:A2:96
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 7BD00FC4ED5E6C98185CA8419C0C289258CFCC21
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323031393338.roa
Signing time: Sun 26 Nov 2023 11:08:44 +0000
ROA not before: Sun 26 Nov 2023 11:03:44 +0000
ROA not after: Sun 24 Nov 2024 11:08:44 +0000
asID: 201938
IP address blocks: 2a05:dfc1:9150::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:d0:0f:c4:ed:5e:6c:98:18:5c:a8:41:9c:0c:28:92:58:cf:cc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Nov 26 11:03:44 2023 GMT
Not After : Nov 24 11:08:44 2024 GMT
Subject: CN=3B55A32934BD6BEAF0468AE5381B9BD7DEF5A296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fe:94:2e:91:2a:a2:5f:0e:bf:9b:ab:64:d9:
60:8f:31:5e:45:d2:58:46:a0:d7:1c:b5:03:d1:d2:
51:5b:56:b7:bb:47:d2:71:82:58:9a:ee:76:bd:31:
a2:a3:6e:4e:72:ad:d5:40:d6:fc:9c:29:3a:c5:87:
55:2a:db:b2:a0:27:ea:cc:64:67:e5:39:50:bf:f4:
a8:59:1a:79:51:ea:79:1a:56:d7:78:3f:fe:7c:28:
20:9c:ed:cf:90:fd:d2:d4:fc:2c:fd:dd:3c:15:8d:
da:c2:28:04:22:29:da:7f:cf:f9:b2:66:da:ee:5b:
46:32:56:44:67:61:a3:62:27:7a:b7:06:fc:1f:8f:
32:15:70:4f:be:13:b0:8a:97:2b:f4:d4:76:ab:e7:
c1:e2:8c:2a:1b:31:b6:4e:f1:29:78:df:ed:c0:33:
e6:89:65:ef:87:17:e2:e3:10:59:d3:ff:71:0e:ae:
37:70:08:b4:a1:e4:5f:ca:b5:49:42:ca:e4:17:a5:
5a:59:05:29:b6:f9:cb:ed:76:b3:44:78:c9:59:5a:
da:67:35:fd:01:ca:83:52:3f:1f:bc:75:06:ad:3f:
10:af:c4:ea:a4:56:ca:04:0e:10:ee:cc:ec:d2:71:
3f:f7:86:dc:35:98:88:69:68:07:73:f4:7e:69:20:
14:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:55:A3:29:34:BD:6B:EA:F0:46:8A:E5:38:1B:9B:D7:DE:F5:A2:96
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393135303a3a2f34382d3438203d3e20323031393338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9150::/48
Signature Algorithm: sha256WithRSAEncryption
4c:1a:68:d3:2f:84:f0:b1:ba:ba:9e:73:f6:cb:7c:5c:4d:b0:
8a:bf:5b:af:07:70:02:4a:3a:c3:a7:8a:94:98:df:a5:70:3f:
8b:80:0b:07:28:a3:9b:62:7b:60:8b:0b:df:1f:76:78:f2:a9:
f9:b6:b5:da:23:4a:21:af:6f:48:43:ed:e0:0a:70:3e:1b:f2:
27:9a:e8:80:a4:8a:fe:c3:08:70:5d:0b:fc:8c:cf:d0:30:c4:
6d:6f:dc:e0:25:7e:42:1a:00:33:f4:0e:a0:23:23:45:40:b1:
32:39:9c:2c:78:c2:2f:04:e8:2c:f7:72:92:db:4c:bc:d1:71:
77:a0:21:4d:d0:36:fd:3a:4a:62:72:f5:fa:10:91:86:a4:91:
01:16:c4:e9:89:c1:ed:25:d0:48:06:c5:47:7c:88:59:48:2c:
bf:2d:97:1b:ef:24:63:2e:5d:22:b5:1f:a1:e9:ca:66:f5:96:
33:01:22:d4:cb:a0:89:e6:79:e9:d1:4c:eb:16:6f:3a:49:8a:
a4:ed:63:e1:02:b6:33:47:7d:38:db:9f:fc:e1:41:6a:b5:d1:
c3:5b:15:a3:4a:29:bb:ae:33:32:f3:d0:2a:e4:74:da:92:bb:
eb:89:ca:d6:43:1b:fe:9d:b0:cb:e8:d9:6b:6c:93:01:de:1d:
c7:0d:96:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:37 2025 by rpki-client