Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323135373334.roa
File: 326130353a646663313a393136343a3a2f34382d3438203d3e20323135373334.roa (raw, json)
Hash identifier: TbzqIAfZka+k0s0ipikns1ZutMExw2wXVVEHWMdIg4U=
Subject key identifier: B2:31:E6:01:5A:78:7C:51:14:E7:8D:FD:FA:03:DF:0B:BB:60:B8:1F
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 7D629D60C2BA1DE435A34B8A6DC87790A10EC0E0
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323135373334.roa
Signing time: Wed 17 Jan 2024 17:13:09 +0000
ROA not before: Wed 17 Jan 2024 17:08:09 +0000
ROA not after: Wed 15 Jan 2025 17:13:09 +0000
asID: 215734
IP address blocks: 2a05:dfc1:9164::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:62:9d:60:c2:ba:1d:e4:35:a3:4b:8a:6d:c8:77:90:a1:0e:c0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Jan 17 17:08:09 2024 GMT
Not After : Jan 15 17:13:09 2025 GMT
Subject: CN=B231E6015A787C5114E78DFDFA03DF0BBB60B81F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:33:58:f6:2c:6b:0e:c7:1e:f3:8d:7a:11:0a:
8e:a3:ef:16:77:ff:19:66:ec:87:06:3e:d8:96:61:
3b:79:c4:1e:88:a5:56:fb:e4:46:23:c4:1e:a4:ce:
55:76:0c:03:f4:88:22:35:47:70:3f:7c:34:23:50:
41:7e:4d:45:45:71:ea:42:aa:9c:7e:9c:ba:18:d1:
e7:5d:ac:7b:0a:c0:e7:c0:f9:b6:bc:06:49:01:33:
1b:88:0f:c1:c2:4a:54:d5:e7:93:1c:07:18:34:cb:
ba:ea:8e:76:6e:4e:7b:55:85:0d:ea:ef:44:7e:9a:
2c:79:02:91:14:71:ba:df:97:90:dc:37:6f:ee:7d:
d4:73:9d:1c:d2:b3:f8:d2:03:04:ac:35:a9:77:c2:
a0:2f:c9:8a:27:03:1c:0c:f1:03:f7:4e:57:df:9b:
d9:ac:c8:05:6e:50:6c:17:a9:a5:1c:0d:30:28:dc:
52:9f:04:15:4e:5d:3c:89:27:7f:98:cd:66:61:06:
72:df:d7:16:db:37:38:d9:f9:ea:77:c5:6e:25:16:
e6:38:90:01:62:b8:50:3a:d7:d1:30:80:11:c2:d5:
fe:46:12:2c:04:a2:3a:84:21:2b:80:68:d1:48:e8:
43:c6:de:4e:b7:36:b2:04:64:b2:56:2b:1d:f9:d4:
c2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:31:E6:01:5A:78:7C:51:14:E7:8D:FD:FA:03:DF:0B:BB:60:B8:1F
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323135373334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9164::/48
Signature Algorithm: sha256WithRSAEncryption
31:6c:49:45:4b:28:0b:f2:5d:5a:9e:86:d1:03:ee:e8:29:5a:
3e:92:17:29:d5:c1:d4:13:fc:49:ea:43:be:e6:3a:fa:3e:60:
5e:d6:ac:44:a3:21:d9:42:e8:d1:d3:dc:87:41:9c:1f:99:4e:
f8:91:fb:e4:e6:d9:d2:0e:40:03:77:e2:4e:a1:d1:81:fa:a9:
3b:f3:9e:7b:13:84:8a:e4:db:17:9d:b5:b5:80:78:b2:9b:95:
5c:1b:98:f8:de:59:3b:05:11:34:0e:58:87:c7:33:47:3c:17:
88:25:6f:6e:f7:e4:00:5c:56:40:24:98:62:7e:fe:35:24:5f:
21:1f:fc:55:de:79:56:62:30:5f:fd:68:0f:66:bf:42:3a:38:
99:f1:69:af:5c:2e:1a:8c:b3:68:6b:b6:65:2f:9e:e1:68:91:
be:a9:74:41:f1:dd:e1:d3:bf:1e:c2:9c:d8:63:d4:1c:d4:f5:
cd:7d:29:d6:00:c3:30:c6:56:7f:b5:49:63:85:7e:0c:87:0c:
c0:53:a2:a9:5e:2e:a8:db:e1:c5:29:93:4d:3c:2d:26:d8:6e:
53:a3:65:0a:1c:47:3f:b4:fe:c3:bb:dc:00:c1:02:3d:a4:b2:
45:21:94:23:6d:00:61:81:d3:66:d3:62:8e:1f:dd:8f:c5:a0:
80:09:0b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:35:42 2025 by rpki-client