Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162393a3a2f34382d3438203d3e20323030333531.roa
File: 326130353a646663313a393162393a3a2f34382d3438203d3e20323030333531.roa (raw, json)
Hash identifier: vuBiYPJlzZ0gabfZJp5a06+euZW9F5HMRSCUGZeYVlA=
Subject key identifier: 05:66:C3:B0:38:A4:86:D3:DE:7E:8E:E3:3F:FA:34:EF:0E:49:F2:2C
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 07176419280118EC15FFD2411CADE565ACC57907
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162393a3a2f34382d3438203d3e20323030333531.roa
Signing time: Sun 26 Nov 2023 11:08:44 +0000
ROA not before: Sun 26 Nov 2023 11:03:44 +0000
ROA not after: Sun 24 Nov 2024 11:08:44 +0000
asID: 200351
IP address blocks: 2a05:dfc1:91b9::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:17:64:19:28:01:18:ec:15:ff:d2:41:1c:ad:e5:65:ac:c5:79:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Nov 26 11:03:44 2023 GMT
Not After : Nov 24 11:08:44 2024 GMT
Subject: CN=0566C3B038A486D3DE7E8EE33FFA34EF0E49F22C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:74:82:25:c5:98:fd:cc:6f:7e:91:4a:21:e1:
56:d8:72:1a:5e:73:0d:0b:cb:ff:b2:1d:90:e5:08:
c5:9e:8c:1f:77:96:36:72:2d:cd:75:33:c1:ba:27:
83:92:71:95:31:96:e3:b0:1f:3f:7d:9a:fd:1d:fd:
f2:2e:70:94:66:b0:7c:f1:ea:2d:fa:d0:c0:8e:db:
5b:87:06:0e:75:fb:30:e2:b0:f9:b5:15:59:d2:b6:
01:e9:f5:d8:50:a1:af:9c:b6:0c:8f:89:7d:d1:5f:
9d:82:93:a5:ba:7b:32:0f:df:2e:3f:e1:d3:9a:f2:
74:a3:8b:db:d3:be:a7:48:6d:13:7c:ed:78:93:f7:
a5:bc:26:7e:20:5d:f7:47:2a:19:8e:3d:a0:6a:01:
3c:92:8f:37:6a:60:9b:5b:08:2c:f8:44:8c:3b:25:
5a:9f:52:03:c0:19:d1:6f:43:99:2e:cf:56:01:81:
9e:54:f1:93:d3:6d:9b:ef:a6:73:db:5f:2e:0f:fa:
01:bb:65:47:6b:d3:6e:40:86:f6:2e:02:0b:b7:80:
d9:9c:a9:f9:07:7f:f4:ef:e6:b1:06:5d:f6:53:8f:
bc:21:7e:56:6f:00:ec:19:50:1b:24:e4:52:4b:c9:
6a:91:44:21:32:95:36:ff:f9:69:01:91:3c:d7:15:
53:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:66:C3:B0:38:A4:86:D3:DE:7E:8E:E3:3F:FA:34:EF:0E:49:F2:2C
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393162393a3a2f34382d3438203d3e20323030333531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:91b9::/48
Signature Algorithm: sha256WithRSAEncryption
63:bc:a7:d5:40:eb:ff:7f:7b:aa:75:ac:49:56:09:98:28:25:
00:c4:d4:d1:c8:bd:7e:52:60:ec:0b:67:2b:e6:e6:74:2d:f7:
1a:f7:1f:65:41:21:ee:d0:44:b0:15:88:f0:52:57:f2:99:41:
5e:0f:44:37:30:d4:0c:24:c5:9c:91:4b:25:5f:80:27:1a:65:
c9:26:c9:8e:d2:df:00:26:fd:cf:51:12:de:88:0f:70:ed:be:
98:58:84:55:13:d1:e1:0c:c7:98:09:76:10:8a:a5:14:ab:9f:
c4:50:0b:cb:c8:f0:f4:2d:e8:17:02:e5:37:0a:67:cc:a1:86:
8a:c7:91:a8:39:0f:d7:ea:d2:85:20:9f:54:84:00:3f:e8:dd:
6e:56:03:19:ee:0b:73:c8:3a:fd:3c:fa:52:20:07:ee:45:ca:
f3:bc:1a:82:80:08:f6:2f:32:0d:bd:4d:5c:f5:89:94:38:5c:
67:0a:e8:4c:64:07:78:47:6c:18:79:9b:c3:0d:f7:77:72:7f:
d3:45:b0:ec:93:df:73:1b:45:d5:2c:50:8d:fc:90:32:9e:7b:
69:0c:53:91:10:65:8d:58:fe:4a:6a:06:4e:b4:d6:bb:44:33:
a5:80:09:57:0f:32:be:c6:22:5e:de:c6:f8:b6:c3:4a:9e:96:
78:88:b2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:44 2025 by rpki-client