Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393138323a3a2f34382d3438203d3e20323135383230.roa
File: 326130353a646663313a393138323a3a2f34382d3438203d3e20323135383230.roa (raw, json)
Hash identifier: DUjgr+6wBjPFZD8/IBAGgatAyEJLlmtD4xW2+OxK0T4=
Subject key identifier: 0A:35:59:12:CA:00:38:B3:F4:65:AF:55:E9:60:29:6E:13:43:FD:75
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 2ECBA08E466A4610B27607A832DE135752A26CFB
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393138323a3a2f34382d3438203d3e20323135383230.roa
Signing time: Wed 20 Dec 2023 18:25:24 +0000
ROA not before: Wed 20 Dec 2023 18:20:24 +0000
ROA not after: Wed 18 Dec 2024 18:25:24 +0000
asID: 215820
IP address blocks: 2a05:dfc1:9182::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:cb:a0:8e:46:6a:46:10:b2:76:07:a8:32:de:13:57:52:a2:6c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Dec 20 18:20:24 2023 GMT
Not After : Dec 18 18:25:24 2024 GMT
Subject: CN=0A355912CA0038B3F465AF55E960296E1343FD75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:fd:b6:cb:40:9c:a5:43:3b:ea:fc:d9:db:
d0:dc:4d:74:32:50:ea:b9:1d:a4:dc:31:8c:93:6e:
1e:19:52:d2:c4:66:76:e8:d3:2c:97:81:36:35:ba:
81:57:e6:b8:84:2a:13:b9:af:71:79:0e:97:66:94:
05:84:76:0e:0d:fb:7b:c9:4f:06:ca:ee:54:6e:6e:
7a:36:aa:05:7f:1a:e1:d0:f1:a9:22:16:67:99:0c:
43:df:dc:a3:b3:ef:98:24:6d:dc:1d:a3:e5:db:8d:
61:d9:55:30:ba:24:01:bb:b1:87:d3:35:d1:55:b0:
0f:ef:0d:57:9d:12:fc:80:6c:f6:eb:42:72:eb:eb:
48:3b:2b:3c:a5:c5:59:07:36:55:74:4d:ad:c8:9e:
f4:d7:9a:60:3c:09:fe:d0:5c:86:dc:28:22:5a:6b:
e4:6d:2d:aa:48:cd:ad:f8:12:3f:30:15:3a:04:06:
88:be:d6:7b:d0:2c:44:4c:e4:f7:56:e4:ee:05:2e:
2d:e3:40:2f:97:24:cf:5e:53:dc:ce:10:e9:95:68:
c9:6d:a8:af:50:f5:c4:c3:ab:d6:44:40:67:d0:5f:
c4:8f:ea:f5:a0:18:0e:e4:54:35:c1:51:77:3f:c0:
b8:aa:35:d1:1b:b4:9d:da:30:87:86:7b:c3:cc:fb:
9c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:35:59:12:CA:00:38:B3:F4:65:AF:55:E9:60:29:6E:13:43:FD:75
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393138323a3a2f34382d3438203d3e20323135383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9182::/48
Signature Algorithm: sha256WithRSAEncryption
93:23:98:a2:02:99:2d:6d:b2:0b:08:14:a3:4f:20:7d:44:80:
6b:d1:40:83:1e:ff:45:e6:f3:39:b6:b3:11:7e:26:ed:17:ad:
53:5c:b1:3c:b2:04:7d:ef:4c:91:66:6b:d1:cb:57:2b:59:5f:
11:8f:23:56:37:f0:04:bc:00:85:b8:73:96:ac:be:f5:b6:31:
2f:5b:d2:eb:02:51:cf:a6:bf:af:32:94:7c:c7:78:9a:8b:e5:
13:2c:09:cf:7b:76:28:d5:e3:41:d4:21:e9:71:f5:6f:ce:f3:
b9:76:c9:37:11:a5:19:09:95:5d:6c:4a:88:b2:5d:9a:16:ef:
6d:fd:a4:57:1a:77:4f:2c:d0:a8:2f:c9:68:bf:94:e7:10:03:
53:c6:a1:da:20:20:7e:aa:ce:23:d2:7f:2b:86:f2:e7:8b:9a:
cd:c2:d6:2e:74:33:ff:ba:d8:5a:9f:eb:9b:78:a3:54:2d:87:
e9:2d:f0:e6:bf:0b:93:ed:e4:4b:18:e8:1e:a1:88:49:34:59:
5f:2b:ff:de:e4:71:e1:e2:ec:b9:4b:45:fb:b6:50:4f:8c:27:
8b:94:0c:9b:c0:d6:3e:cb:79:68:7b:a6:51:be:8f:da:59:7e:
6a:ca:39:67:a7:2f:96:f0:fa:ad:1c:d3:e4:7f:9f:80:83:55:
e4:ae:a0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:46:04 2025 by rpki-client