Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393230303a3a2f34302d3438203d3e203437323732.roa
File: 326130353a646663313a393230303a3a2f34302d3438203d3e203437323732.roa (raw, json)
Hash identifier: vnknIODpQZfXpF0VYKvrjB6RwgJ9ZOSQEsw+ZwqFdts=
Subject key identifier: B7:E8:D0:A8:A2:B8:49:29:E2:52:74:25:83:F2:BE:CC:9E:D3:C1:9D
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 435BF69A12537AE9280E5AE5CD80252F89EA66CB
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393230303a3a2f34302d3438203d3e203437323732.roa
Signing time: Sat 02 Dec 2023 10:30:05 +0000
ROA not before: Sat 02 Dec 2023 10:25:05 +0000
ROA not after: Sat 30 Nov 2024 10:30:05 +0000
asID: 47272
IP address blocks: 2a05:dfc1:9200::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:5b:f6:9a:12:53:7a:e9:28:0e:5a:e5:cd:80:25:2f:89:ea:66:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Dec 2 10:25:05 2023 GMT
Not After : Nov 30 10:30:05 2024 GMT
Subject: CN=B7E8D0A8A2B84929E252742583F2BECC9ED3C19D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:22:79:33:24:89:8e:63:fe:13:50:7f:66:
55:41:e1:e8:fc:e8:92:c0:32:05:a6:fb:a2:da:7e:
a2:ba:74:7f:57:2f:39:b5:6c:5f:8a:e7:ef:67:89:
72:e6:34:5a:47:eb:93:45:a2:0b:e8:8b:82:d3:61:
da:0c:56:ca:77:48:d1:a3:07:6c:a8:f6:d9:9c:36:
c2:70:15:a7:7f:9e:4d:c6:0a:75:62:96:c7:25:7a:
fd:b5:16:88:84:98:95:59:c4:9a:c6:3d:22:b0:55:
1e:6c:58:89:d8:8e:2d:2d:67:43:d9:a6:f8:40:b5:
af:a4:18:aa:0f:b0:54:bf:55:c2:8e:e5:76:c4:e8:
ac:7f:b1:39:19:0a:ab:eb:40:0c:41:66:cb:b2:48:
7d:8d:5a:88:9a:79:cc:30:52:1b:cd:82:fa:27:0f:
67:3b:e0:a6:ed:6b:b1:d8:de:3c:af:02:d9:f3:5e:
de:c4:52:6b:e8:94:66:f6:be:76:7a:43:31:47:a4:
83:20:c9:4e:d3:db:b1:3b:6c:ed:8a:cf:43:77:24:
b0:51:7e:32:a0:48:7a:74:98:98:f4:ed:1a:06:9c:
37:58:62:ca:b7:72:4d:44:3c:29:1f:8b:69:27:04:
ad:68:5e:b6:2d:3a:a1:dd:20:75:b4:ac:22:a2:ed:
48:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E8:D0:A8:A2:B8:49:29:E2:52:74:25:83:F2:BE:CC:9E:D3:C1:9D
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393230303a3a2f34302d3438203d3e203437323732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9200::/40
Signature Algorithm: sha256WithRSAEncryption
53:5d:58:2e:9e:b6:4c:65:35:8e:a8:66:fd:0a:7e:a5:98:48:
56:d2:11:3f:a0:f1:5e:4f:89:a6:30:0d:8b:21:33:67:4f:e2:
8d:80:c2:e0:09:d0:9a:85:50:df:d0:ed:a4:6d:7c:78:18:79:
76:65:69:dd:c4:e6:72:5c:85:e2:e9:12:89:ab:ba:b0:67:d7:
2d:d6:df:ae:44:3b:86:54:14:20:bb:44:cb:53:76:3a:96:fd:
01:0c:18:59:2f:da:d4:c8:98:a8:1b:dd:99:53:d5:51:fd:49:
67:ff:4e:18:1c:51:bc:41:db:8b:9e:34:b1:b3:6f:1f:73:f9:
71:63:81:92:e2:88:cc:d0:50:73:75:d3:dd:21:a6:6a:8e:c6:
d2:61:a4:b5:df:1e:8c:47:7c:8c:f4:fe:34:0d:86:7e:63:4e:
9c:c7:84:52:59:91:cf:c7:92:8b:e0:cf:0a:4c:74:91:97:5a:
f6:e1:d5:75:df:6e:9f:a7:d3:1e:a4:6b:f0:1e:f9:52:54:ae:
9f:66:2e:d7:e2:80:27:7e:b1:40:b0:8e:6b:a3:22:d6:bc:85:
81:7b:82:3d:b8:68:f2:77:c9:61:9f:55:ba:f1:01:44:2a:06:
27:b4:ba:d2:e9:73:cd:bd:a0:f7:1c:a3:7f:21:d7:21:4b:ed:
1b:2b:98:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:45 2025 by rpki-client