Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136653a3a2f34382d3438203d3e20323130393635.roa
File: 326130353a646663313a393136653a3a2f34382d3438203d3e20323130393635.roa (raw, json)
Hash identifier: 0SvV1/hYqUivfTfoniwclR2JrzeYnf9nVInbkxdQERE=
Subject key identifier: 79:9B:BD:54:B4:A5:1E:18:07:25:7A:10:45:34:B0:2A:4B:2F:F5:E8
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 02089BBEED58338DAE67EEEB32303BCE64EC5DF5
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136653a3a2f34382d3438203d3e20323130393635.roa
Signing time: Sat 09 Dec 2023 10:15:17 +0000
ROA not before: Sat 09 Dec 2023 10:10:17 +0000
ROA not after: Sat 07 Dec 2024 10:15:17 +0000
asID: 210965
IP address blocks: 2a05:dfc1:916e::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:08:9b:be:ed:58:33:8d:ae:67:ee:eb:32:30:3b:ce:64:ec:5d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Dec 9 10:10:17 2023 GMT
Not After : Dec 7 10:15:17 2024 GMT
Subject: CN=799BBD54B4A51E1807257A104534B02A4B2FF5E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0e:99:45:5c:2d:48:8f:39:01:f5:c4:02:a2:
03:b1:1f:ff:43:4c:01:25:c1:1d:41:59:37:cc:13:
a1:70:9f:c5:66:74:5d:22:14:73:6f:1c:25:76:6f:
d7:38:ee:ff:54:d1:f5:fd:4c:48:c0:05:02:b9:3b:
7f:aa:44:72:5b:41:5b:52:f2:56:7b:03:9d:a6:4b:
51:32:07:7a:2b:a6:b3:33:84:49:79:4f:40:a8:f4:
23:a1:09:c6:4d:18:9d:90:81:be:7f:3b:53:60:79:
9f:a5:10:de:9f:15:a6:43:9f:19:8d:ab:d2:fe:1b:
69:50:92:19:4a:7f:74:10:49:86:83:be:d0:f9:b4:
62:05:7d:ca:34:f2:ce:68:69:a7:ba:f0:e7:12:8e:
62:2b:2b:e4:b4:6b:39:3f:37:52:67:ef:19:73:87:
74:c3:1b:ed:05:83:83:c2:bd:77:e9:72:28:25:de:
ec:79:ad:2a:de:42:93:0d:22:c9:e2:c7:e1:3d:8c:
6a:77:28:74:07:73:8e:34:0b:0b:50:fb:16:49:51:
42:fc:0a:5b:f7:8a:3e:3d:ae:69:bc:30:2b:79:e2:
4f:e4:5c:90:68:33:81:1e:97:c2:80:a7:dd:1f:a3:
db:b9:f0:15:6a:fe:f0:90:e0:cd:5e:cd:8f:65:90:
21:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9B:BD:54:B4:A5:1E:18:07:25:7A:10:45:34:B0:2A:4B:2F:F5:E8
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393136653a3a2f34382d3438203d3e20323130393635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:916e::/48
Signature Algorithm: sha256WithRSAEncryption
26:1f:b2:08:22:ea:de:60:33:46:eb:20:21:e6:d6:aa:e4:89:
87:b9:ec:b4:91:a8:80:7e:da:62:cc:13:a0:69:f1:9d:2c:49:
14:ba:6e:8f:9b:c3:9c:ee:30:d4:11:8d:e6:5f:9c:eb:5e:51:
63:2e:3d:bd:2d:54:b6:5f:7c:96:20:25:30:18:d9:6d:fa:3b:
2e:df:15:57:fd:0d:c1:05:d0:e0:4d:93:05:9a:fb:f5:5d:2e:
93:0c:5d:04:be:28:45:ee:79:5e:9a:00:d9:d0:06:73:90:2b:
28:34:ed:1f:f7:a0:b4:ed:9e:d7:7c:cd:d4:ca:24:db:63:a3:
e3:0b:20:b4:8f:d4:3f:0f:86:34:4c:8c:6a:9a:11:70:cb:f3:
e0:23:a1:66:6d:77:b5:5b:56:8c:1d:06:9d:e8:c7:c2:b0:3c:
07:94:48:6d:fa:0c:05:a8:3b:b8:1f:43:01:f2:29:7a:fa:a4:
b0:02:7a:56:a3:0a:09:10:ef:09:0d:91:8e:ed:6e:67:5a:a4:
1e:82:9f:18:d4:03:18:a2:ed:a9:16:01:ac:45:3e:da:2c:a2:
a2:a5:96:97:3e:36:22:8e:46:38:60:ce:8b:32:b0:43:54:83:
57:45:a1:6d:46:14:91:0b:61:d3:62:1b:11:e8:45:ba:c7:02:
72:9b:04:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:22 2025 by rpki-client