Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3230303a3a2f34302d3438203d3e20323136303036.roa
File: 326131333a656534303a3230303a3a2f34302d3438203d3e20323136303036.roa (raw, json)
Hash identifier: YOkj/OJsiATTxZ4AtWUBXqkH+HVaLvt1M+Z1ZWZ6U+8=
Subject key identifier: 71:CD:A1:52:2A:A3:6F:FC:57:03:A9:58:5B:8A:5E:DD:6C:8A:F3:B7
Certificate issuer: /CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Certificate serial: 68FB88ED1549EA8340E95C1EB5E4BB5B4050F35A
Authority key identifier: 9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3230303a3a2f34302d3438203d3e20323136303036.roa
Signing time: Mon 22 Jan 2024 16:30:56 +0000
ROA not before: Mon 22 Jan 2024 16:25:56 +0000
ROA not after: Mon 20 Jan 2025 16:30:56 +0000
asID: 216006
IP address blocks: 2a13:ee40:200::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:fb:88:ed:15:49:ea:83:40:e9:5c:1e:b5:e4:bb:5b:40:50:f3:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da23cc2cf88ae4585cf8aaf9a714a9ad2e6f198
Validity
Not Before: Jan 22 16:25:56 2024 GMT
Not After : Jan 20 16:30:56 2025 GMT
Subject: CN=71CDA1522AA36FFC5703A9585B8A5EDD6C8AF3B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:3c:b1:ea:41:75:42:00:00:5b:1f:43:0f:
48:30:26:49:b1:ce:72:9c:74:89:7c:1b:00:d3:39:
73:3d:90:3c:30:41:95:0d:c7:61:21:17:d8:07:b1:
f1:2d:49:0b:a9:b1:26:c3:1f:4c:64:62:1d:10:92:
40:f6:13:cb:d9:49:5f:28:95:7d:ac:d8:7a:55:3e:
70:cf:15:12:15:fb:29:2f:a1:64:0a:55:5e:55:49:
71:31:50:a3:c1:e7:94:9e:71:20:f6:59:01:4a:b7:
7c:f7:13:46:77:0e:47:f4:b6:b5:2a:a6:9d:08:d5:
19:da:34:4f:0a:76:e1:91:73:d9:8c:32:fb:8e:e5:
dc:0d:50:bf:75:43:dd:e2:60:49:3e:0e:ed:5a:d0:
43:60:40:40:58:42:3e:b6:c3:81:ed:92:8f:8e:41:
51:fc:80:4e:17:45:7c:7a:58:2b:24:d3:44:ad:1d:
f8:5c:b6:7e:6a:aa:3a:3b:16:92:e8:cf:04:a1:df:
9a:ae:1b:43:e3:4a:03:b9:48:6e:63:b9:06:ad:4d:
a0:27:db:b0:fd:88:a5:f6:de:d1:de:e4:a9:6a:37:
25:d5:1e:f2:e0:77:10:75:d1:69:8e:1b:50:ce:5c:
96:ee:e3:99:ab:20:2f:26:4c:f9:4c:4d:ae:7e:d8:
c4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CD:A1:52:2A:A3:6F:FC:57:03:A9:58:5B:8A:5E:DD:6C:8A:F3:B7
X509v3 Authority Key Identifier:
keyid:9D:A2:3C:C2:CF:88:AE:45:85:CF:8A:AF:9A:71:4A:9A:D2:E6:F1:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/9DA23CC2CF88AE4585CF8AAF9A714A9AD2E6F198.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naI8ws-IrkWFz4qvmnFKmtLm8Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a4c6bdc5-eb4e-4b6e-95f6-62790e57f3be/0/326131333a656534303a3230303a3a2f34302d3438203d3e20323136303036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ee40:200::/40
Signature Algorithm: sha256WithRSAEncryption
1b:76:99:dc:60:27:d0:a3:7e:bd:ba:79:0b:86:0d:ab:84:9c:
a9:9f:d2:2e:9f:33:6d:7c:94:14:9d:61:b2:0c:27:28:b4:a7:
df:55:1b:30:6b:a9:6e:c6:85:4f:b7:4e:e1:26:da:12:db:72:
66:a4:b5:67:7e:2c:e5:74:52:27:87:1d:b4:c5:ff:5e:a6:09:
55:42:7f:fc:ad:3a:50:74:82:94:70:1c:66:ad:80:fa:41:fd:
f0:c1:2b:17:84:58:b7:86:23:12:be:43:49:8d:7a:d5:79:7f:
36:ba:05:07:02:f0:cc:12:c9:e9:6c:3a:90:82:7d:21:ed:29:
47:0a:75:86:51:dc:ad:94:e3:b1:51:bb:ff:9b:37:39:ab:45:
58:ae:e6:c9:38:fe:46:0f:c4:60:9e:4b:38:a8:86:13:a0:45:
2a:02:c1:b8:94:f1:a8:4b:a7:77:36:f4:82:9f:56:02:f8:2c:
27:d6:c8:33:cb:79:1a:58:8a:6e:e9:2f:be:1e:6e:1a:e2:f0:
07:c2:e5:7d:82:fb:87:8b:fb:40:02:ad:f0:72:d6:20:b9:df:
84:92:e4:96:d9:bc:66:b4:01:64:2d:ec:89:36:ed:94:2f:61:
06:74:1e:7e:05:69:fe:cf:23:df:db:86:66:9a:1c:37:ab:86:
ea:ca:82:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:46 2025 by rpki-client