Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323136303739.roa
File: 326130353a646663313a393136343a3a2f34382d3438203d3e20323136303739.roa (raw, json)
Hash identifier: GrEwUb/rRJbeo38hLNNHaBserAlobb7jRcBdA5nKkpo=
Subject key identifier: EE:14:7D:7C:EE:41:76:F2:9E:C6:C1:B7:0A:40:56:3B:98:A2:E1:AF
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 130FEF986A912B01C310CA0EFCFF35BC90B4E365
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323136303739.roa
Signing time: Thu 11 Apr 2024 17:53:22 +0000
ROA not before: Thu 11 Apr 2024 17:48:22 +0000
ROA not after: Thu 10 Apr 2025 17:53:22 +0000
asID: 216079
IP address blocks: 2a05:dfc1:9164::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0f:ef:98:6a:91:2b:01:c3:10:ca:0e:fc:ff:35:bc:90:b4:e3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Apr 11 17:48:22 2024 GMT
Not After : Apr 10 17:53:22 2025 GMT
Subject: CN=EE147D7CEE4176F29EC6C1B70A40563B98A2E1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a9:45:fe:b6:0a:cd:a6:21:f9:e0:e8:e8:2d:
ca:10:af:34:57:a7:45:3f:1a:a2:65:a2:4c:8b:ee:
d4:fc:d3:07:4f:98:3f:6e:61:f5:95:22:58:2e:be:
63:0b:9d:f2:ea:74:fc:ce:b1:f7:e6:7c:50:35:e0:
a2:e6:d2:5f:5f:c8:6f:82:38:74:f0:b5:0f:2c:2a:
ae:dc:89:bb:44:8a:48:34:e7:65:cd:97:71:87:52:
d8:5d:17:78:3a:8e:a7:6b:ca:e2:52:14:8d:5a:bc:
b7:83:7c:e6:c9:42:cd:17:9c:e2:62:91:ca:dc:ec:
3e:82:6d:20:e4:ba:12:e1:33:ff:a1:a7:52:4e:e2:
54:f4:59:6b:dd:44:6b:9a:49:dd:ba:33:b6:11:18:
50:c7:e8:4b:a5:50:ec:2b:32:ea:1d:8d:82:16:40:
21:c5:34:51:25:af:1b:7f:27:d6:3c:e5:c6:4a:eb:
5f:2a:d4:8c:f6:75:71:c5:8c:ae:d2:4a:11:9a:cd:
65:4b:ca:51:4e:0f:fe:15:37:df:cc:7d:62:b7:ab:
b0:10:ae:dc:9e:cd:c3:f3:6f:3c:0e:57:79:3b:3c:
9a:3d:97:8e:41:4d:f1:27:ac:fe:46:dd:60:c9:e1:
2a:65:92:4f:e0:ff:5f:80:ee:f1:54:da:1f:15:22:
92:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:14:7D:7C:EE:41:76:F2:9E:C6:C1:B7:0A:40:56:3B:98:A2:E1:AF
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136343a3a2f34382d3438203d3e20323136303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9164::/48
Signature Algorithm: sha256WithRSAEncryption
2c:77:9e:7d:80:30:ca:ec:25:5f:d7:7a:9d:98:58:72:c0:5e:
a7:73:7f:e5:88:bd:62:36:05:25:16:92:52:c8:32:ba:01:11:
3b:d2:17:22:fc:36:7f:a0:ff:a3:e6:e6:f9:40:c6:32:12:f9:
9e:09:ee:83:1a:56:ef:91:99:6d:e0:2c:b6:99:5d:e8:82:71:
0e:87:bf:75:11:27:37:d9:7e:7e:47:8f:da:f9:bc:a7:e5:b7:
32:07:2c:b6:88:96:6a:37:76:f4:2b:98:a6:2c:41:f5:6e:7a:
5d:81:bc:8b:7f:8b:36:79:28:70:c9:50:c3:1a:f5:c8:ee:39:
7c:4e:b2:d5:71:d4:5d:08:50:a0:02:7c:51:5a:1a:2d:ce:05:
f3:5d:e8:e5:6c:61:cc:8f:de:d9:7f:e2:7a:b8:b5:fa:37:a1:
39:07:09:d5:80:c8:4f:0c:0f:1f:d1:15:15:89:01:a3:ab:83:
66:2c:96:39:8d:74:c5:93:09:01:dd:53:90:a5:6a:c8:55:68:
8e:e8:b6:79:ef:83:d1:7c:df:7c:ed:7e:c2:21:52:97:7c:1c:
f1:e2:65:a3:56:52:a2:38:73:71:43:4d:44:5d:59:09:39:f2:
38:ea:2d:b4:08:95:cb:5a:43:b5:de:4a:2f:b0:31:dc:9d:74:
a8:84:73:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:17 2025 by rpki-client