Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa
File: 326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa (raw, json)
Hash identifier: 0EAZ2NFbwuGWl6CNH5AGsOtZjzsc6LwCa4kExjYyEJo=
Subject key identifier: BB:23:C0:54:CD:5B:7C:5B:26:84:65:AE:C9:F0:56:C2:00:8E:64:BA
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 6A79136337A95A56462FF5D42D4E041DEAF96604
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa
Signing time: Wed 25 Dec 2024 22:19:58 +0000
ROA not before: Wed 25 Dec 2024 22:14:58 +0000
ROA not after: Wed 24 Dec 2025 22:19:58 +0000
asID: 51254
IP address blocks: 2a05:dfc1:9170::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:79:13:63:37:a9:5a:56:46:2f:f5:d4:2d:4e:04:1d:ea:f9:66:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Dec 25 22:14:58 2024 GMT
Not After : Dec 24 22:19:58 2025 GMT
Subject: CN=BB23C054CD5B7C5B268465AEC9F056C2008E64BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:e6:bf:39:dc:4b:76:f1:42:9b:3c:d7:7c:
5f:5f:c0:5d:74:68:a6:fb:fc:53:14:66:25:3b:db:
07:29:0b:6a:f1:44:62:05:06:6e:a4:dc:bd:b4:3b:
bd:67:df:10:a5:60:75:41:c2:29:e1:b9:2b:40:af:
f3:34:0c:e5:da:79:1e:01:44:25:fe:d5:a4:15:00:
ba:a7:34:dc:e9:57:17:b2:f8:35:2e:d4:7b:88:c7:
48:2a:64:ee:1a:92:c5:9d:65:9a:cb:b4:9e:d2:ab:
aa:83:2d:63:3e:b3:45:2b:1a:38:a6:aa:45:be:82:
fa:1f:c1:15:51:8a:2a:88:24:dd:bc:f7:c5:04:51:
23:3c:bb:c6:10:8f:ab:cd:72:27:65:74:d9:09:ae:
8e:27:7a:de:dc:b6:f0:c4:05:46:1c:f6:1d:82:4c:
aa:0c:fe:8e:72:3e:91:02:04:b4:b4:62:9b:c2:31:
51:1a:75:6e:8d:fb:bb:12:70:85:84:45:e6:e3:e2:
29:62:0a:c3:86:5e:95:b8:d4:e0:3f:ed:41:43:e1:
d7:db:0a:86:ab:4b:29:ca:4f:0a:f9:1c:cf:33:64:
9f:fd:d5:0a:b9:a4:e6:b0:43:be:eb:f3:72:a4:1b:
ff:4e:04:26:d2:1d:c6:5e:98:8d:5a:02:22:df:ca:
42:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:23:C0:54:CD:5B:7C:5B:26:84:65:AE:C9:F0:56:C2:00:8E:64:BA
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9170::/48
Signature Algorithm: sha256WithRSAEncryption
4e:a8:87:bf:f0:00:d8:7e:68:ff:70:ff:39:55:ff:8f:34:bb:
be:25:e6:ab:2e:37:f1:9a:07:8c:67:18:11:bd:c5:fd:44:93:
53:34:b2:3b:19:84:84:62:c5:54:5b:6a:32:51:7f:10:03:28:
0a:70:64:bd:f1:e1:c6:4e:82:46:77:a0:8c:b2:47:d8:ee:cf:
9c:0e:dc:e4:89:a1:5e:1a:69:33:bb:4c:fc:08:3f:ca:0e:48:
79:e0:ba:a5:79:1a:df:04:5e:ff:4c:cc:ab:8d:95:fd:aa:b0:
40:c8:17:d4:bc:71:61:ae:a3:12:bf:6c:de:4e:83:6c:8f:32:
5c:16:fa:4f:25:c7:81:d9:d4:e0:53:0e:31:ac:90:ea:c5:4f:
3c:52:0c:0b:4f:30:ee:6c:8d:77:ee:b5:b9:7e:ab:1a:6b:67:
44:15:5a:38:be:02:5c:f1:31:ca:61:d7:34:61:e8:13:f5:3c:
b3:7f:1d:bc:ce:1c:ed:3a:6e:3f:cf:6f:74:56:09:44:86:2a:
d4:54:82:37:9b:a9:b6:5f:b1:11:b5:ea:f7:05:77:d1:0b:28:
44:86:8a:c2:2a:ed:7b:a2:20:69:49:21:5a:77:84:5c:f6:75:
0e:56:42:00:64:14:b8:72:4d:c9:b6:92:79:64:66:fc:72:ee:
fc:a4:ed:ec
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgIUankTYzepWlZGL/XULU4EHer5ZgQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF
MDVFN0I3NjAeFw0yNDEyMjUyMjE0NThaFw0yNTEyMjQyMjE5NThaMDMxMTAvBgNV
BAMTKEJCMjNDMDU0Q0Q1QjdDNUIyNjg0NjVBRUM5RjA1NkMyMDA4RTY0QkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkm+a/OdxLdvFCmzzXfF9fwF10
aKb7/FMUZiU72wcpC2rxRGIFBm6k3L20O71n3xClYHVBwinhuStAr/M0DOXaeR4B
RCX+1aQVALqnNNzpVxey+DUu1HuIx0gqZO4aksWdZZrLtJ7Sq6qDLWM+s0UrGjim
qkW+gvofwRVRiiqIJN2898UEUSM8u8YQj6vNcidldNkJro4net7ctvDEBUYc9h2C
TKoM/o5yPpECBLS0YpvCMVEadW6N+7sScIWERebj4iliCsOGXpW41OA/7UFD4dfb
CoarSynKTwr5HM8zZJ/91Qq5pOawQ77r83KkG/9OBCbSHcZemI1aAiLfykKPAgMB
AAGjggJeMIICWjAdBgNVHQ4EFgQUuyPAVM1bfFsmhGWuyfBWwgCOZLowHwYDVR0j
BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE
RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG1BggrBgEFBQcBCwSBqDCB
pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3
ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTM3MzAzYTNhMmYzNDM4MmQzNDM4
MjAzZDNlMjAzNTMxMzIzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwZFwMA0GCSqGSIb3DQEB
CwUAA4IBAQBOqIe/8ADYfmj/cP85Vf+PNLu+JearLjfxmgeMZxgRvcX9RJNTNLI7
GYSEYsVUW2oyUX8QAygKcGS98eHGToJGd6CMskfY7s+cDtzkiaFeGmkzu0z8CD/K
Dkh54LqleRrfBF7/TMyrjZX9qrBAyBfUvHFhrqMSv2zeToNsjzJcFvpPJceB2dTg
Uw4xrJDqxU88UgwLTzDubI137rW5fqsaa2dEFVo4vgJc8THKYdc0YegT9Tyzfx28
zhztOm4/z290VglEhirUVII3m6m2X7ERter3BXfRCyhEhorCKu17oiBpSSFad4Rc
9nUOVkIAZBS4ck3JtpJ5ZGb8cu78pO3s
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:03 2025 by rpki-client