Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa
File: 326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa (raw, json)
Hash identifier: x3/BkeS8RGTLag2nwW0oagX7yQtUqucL3rZgnfV/WZ8=
Subject key identifier: F0:E1:1C:26:DF:F9:02:BA:D1:D1:32:88:DC:23:C5:A7:44:0D:9C:F9
Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Certificate serial: 55115B58D8F87DD24C43BE73C3E3DF16B150E4A0
Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa
Signing time: Fri 06 Dec 2024 10:38:23 +0000
ROA not before: Fri 06 Dec 2024 10:33:23 +0000
ROA not after: Fri 05 Dec 2025 10:38:23 +0000
asID: 211431
IP address blocks: 2a05:dfc1:8100::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:11:5b:58:d8:f8:7d:d2:4c:43:be:73:c3:e3:df:16:b1:50:e4:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Validity
Not Before: Dec 6 10:33:23 2024 GMT
Not After : Dec 5 10:38:23 2025 GMT
Subject: CN=F0E11C26DFF902BAD1D13288DC23C5A7440D9CF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ac:1d:0f:3e:b2:6d:cb:55:9e:c7:34:6d:3e:
e3:8d:b6:0b:40:6b:56:48:f6:3b:27:af:47:04:97:
0d:a6:00:eb:8d:9b:7a:83:cb:3b:a3:57:d7:48:2a:
de:75:73:e3:0b:e4:12:47:9c:77:5c:22:df:ea:a7:
7c:01:e3:ba:37:c1:0c:f7:dc:5c:64:2f:c6:7c:93:
90:be:c7:52:20:2a:a2:24:12:5d:74:22:c8:d1:ea:
4f:9c:ae:e7:e4:6c:80:70:82:80:74:e1:42:f3:17:
7a:f6:08:f0:ee:63:a3:1b:4e:2b:88:e1:7e:b4:46:
ba:2d:cd:1c:87:59:89:fc:e5:18:19:f8:19:b4:97:
e7:d6:e8:bb:cb:78:47:eb:9b:cc:18:ab:31:59:c7:
43:d9:ec:c0:bc:b0:a7:47:97:9f:66:22:05:db:77:
8f:69:9f:b8:de:2d:ba:d0:a9:29:95:80:ca:29:83:
d1:64:b8:23:5f:ff:a3:83:b1:15:98:eb:47:e4:63:
31:3a:9a:af:53:bb:c1:80:67:dd:ac:2b:ee:a4:81:
bc:b9:40:43:30:5d:fb:6d:da:08:2b:c4:37:1b:38:
e5:72:f0:b0:a4:7f:28:ee:cc:a3:f8:20:ed:49:f7:
26:61:1d:a3:45:82:ac:f4:97:10:30:e8:1a:fc:6e:
e2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E1:1C:26:DF:F9:02:BA:D1:D1:32:88:DC:23:C5:A7:44:0D:9C:F9
X509v3 Authority Key Identifier:
keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8100::/40
Signature Algorithm: sha256WithRSAEncryption
a7:19:af:72:32:f8:79:d6:83:bf:40:0c:38:ab:56:50:cc:10:
85:ff:e6:8b:9f:df:2f:f3:fd:03:a5:f3:ae:96:88:7f:9b:aa:
55:f9:5a:86:bf:a0:fd:5c:a5:17:8c:9b:11:63:66:05:5e:0d:
72:01:dc:3d:92:82:66:e5:ed:dd:5e:09:ea:6c:68:b8:e7:86:
27:6a:f8:d9:45:b8:7a:24:6c:c7:5f:36:d4:63:c0:c0:b3:d3:
ab:f6:06:3e:1c:ca:28:cf:ea:23:c7:97:6d:a2:e0:bc:94:52:
b2:97:e4:b5:8b:f1:90:9f:73:b5:93:c8:4b:9d:bb:be:78:9a:
a8:a6:86:fd:66:f3:c5:36:77:a5:2f:c2:66:a6:79:50:55:a1:
eb:a5:87:28:da:f0:60:c3:79:44:0c:ec:4b:44:ca:53:98:f0:
dc:9b:50:b8:17:fe:7b:a5:e0:a7:f9:d5:1a:ab:95:5d:90:b1:
e3:a6:2e:d2:c9:e0:3e:47:48:48:ed:01:48:3b:01:ff:98:67:
4f:71:c6:ee:25:99:1d:8b:51:3c:57:ae:b0:f6:62:a2:cc:b7:
03:9a:22:b8:66:7d:62:f7:a9:16:60:ef:ad:d6:ec:6b:97:63:
8d:45:4e:01:39:b5:6a:b3:af:cc:4c:a2:a0:29:e3:3c:a8:a1:
a1:fb:aa:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:13 2025 by rpki-client