Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393139383a3a2f34382d3438203d3e20323136303536.roa
File: 326130353a646663313a393139383a3a2f34382d3438203d3e20323136303536.roa (raw, json)
Hash identifier: aa9XGBftcNlmtKzeqNL3uZy+/IQ3N59eKidekd9xQHI=
Subject key identifier: 9C:F6:23:9F:BD:BE:B4:75:83:52:B9:43:CF:71:BD:83:81:42:3A:86
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 670C22A15B1198483A76928421381F256265713E
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393139383a3a2f34382d3438203d3e20323136303536.roa
Signing time: Mon 01 Apr 2024 09:17:59 +0000
ROA not before: Mon 01 Apr 2024 09:12:59 +0000
ROA not after: Mon 31 Mar 2025 09:17:59 +0000
asID: 216056
IP address blocks: 2a05:dfc1:9198::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:0c:22:a1:5b:11:98:48:3a:76:92:84:21:38:1f:25:62:65:71:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Apr 1 09:12:59 2024 GMT
Not After : Mar 31 09:17:59 2025 GMT
Subject: CN=9CF6239FBDBEB4758352B943CF71BD8381423A86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:41:9a:fc:5d:7d:d9:c1:b0:59:ee:c8:a4:
0a:f2:23:2d:1a:a4:fa:ba:f0:2c:16:e4:df:84:59:
44:41:46:37:d2:e2:1e:6a:32:ca:e6:a1:c7:2d:6c:
b0:37:f2:bf:b5:0a:f0:94:35:37:3f:95:be:9f:95:
1a:92:c2:5e:d5:a1:0c:a0:a5:1f:fb:12:04:94:56:
b2:e5:c9:c0:2b:6c:af:8b:1d:ce:eb:c2:a2:2a:f6:
21:d5:12:86:bf:e8:49:be:cb:4f:ef:cf:59:f7:68:
ea:bc:c5:b2:35:fe:d5:0a:83:39:47:1b:47:88:71:
f7:f1:c8:17:db:02:2a:83:51:e0:2e:64:2a:28:13:
5c:f7:3f:c3:56:48:70:50:5a:bf:0c:7a:ed:f1:20:
6d:d7:ac:4d:36:c1:7c:56:0c:27:71:a6:d3:56:c3:
b1:8c:ff:a6:79:ee:bb:59:1b:2a:07:a7:10:a4:9d:
0d:45:77:64:4a:02:ea:7d:58:da:08:c5:2e:dd:cb:
b8:97:5b:0e:df:9a:99:2f:74:46:7a:81:ce:51:ce:
c7:c5:ca:d0:51:df:71:2f:90:5f:21:d2:a9:ff:c7:
6d:71:3e:1c:e3:5d:f5:e9:79:72:58:ef:41:cd:ec:
87:a4:49:02:ac:a1:75:32:1d:1c:20:7d:c9:c5:5c:
06:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F6:23:9F:BD:BE:B4:75:83:52:B9:43:CF:71:BD:83:81:42:3A:86
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393139383a3a2f34382d3438203d3e20323136303536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9198::/48
Signature Algorithm: sha256WithRSAEncryption
65:7f:ca:7e:a3:5f:dc:49:53:27:1b:db:f4:93:d9:74:0e:d9:
a5:38:04:76:42:57:fb:fd:7b:c4:38:66:a0:2e:e8:78:22:fa:
c3:00:2e:00:65:0a:16:92:ed:4c:a9:81:4f:78:25:a0:a4:90:
0e:39:27:33:5b:72:cf:9e:f6:48:e7:11:b3:29:e9:db:8f:e0:
9f:35:6b:c4:a9:61:3f:09:8e:73:75:c6:1a:21:c7:98:9c:bf:
a6:7d:b0:af:66:9e:7d:af:72:b5:bd:13:13:53:d4:2f:d1:f2:
f4:67:8b:40:29:2e:f4:a7:c2:d3:fe:15:96:39:83:f7:af:3e:
be:79:94:fe:5b:50:dc:a5:9f:14:2d:fc:23:3f:89:ab:d7:a4:
50:22:05:54:14:85:22:a0:b0:5d:2b:ca:90:de:83:f4:b3:23:
2e:7d:ae:2d:5c:58:b9:45:ef:02:b8:eb:ce:bb:ed:c6:7e:83:
44:35:30:01:60:72:08:19:c8:e5:69:2e:ed:c8:d4:bc:86:dc:
b1:1b:79:dd:c1:d9:e3:76:da:53:cd:cb:c2:59:ca:db:76:13:
24:00:44:7a:25:8c:9d:24:36:d8:4c:e9:ce:7d:dd:99:25:55:
15:eb:09:12:1d:d6:67:d1:83:97:88:5a:da:76:61:b6:34:eb:
ce:f0:2e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:33:11 2025 by rpki-client