Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa
File: 326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa (raw, json)
Hash identifier: 33+HDQJRYCUNP7VOYDUKf/AXIlXW42EMGuHPk2qGIJo=
Subject key identifier: 02:A3:1F:C5:0D:2C:92:84:52:D7:87:FF:A2:DD:AC:0F:88:11:C4:40
Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Certificate serial: 2104DA0F09F6DDBC3781FBE4180C36D4A1690D2B
Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa
Signing time: Fri 06 Dec 2024 19:38:32 +0000
ROA not before: Fri 06 Dec 2024 19:33:32 +0000
ROA not after: Fri 05 Dec 2025 19:38:32 +0000
asID: 211431
IP address blocks: 2a05:dfc1:81f0::/44 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:04:da:0f:09:f6:dd:bc:37:81:fb:e4:18:0c:36:d4:a1:69:0d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2
Validity
Not Before: Dec 6 19:33:32 2024 GMT
Not After : Dec 5 19:38:32 2025 GMT
Subject: CN=02A31FC50D2C928452D787FFA2DDAC0F8811C440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:66:f0:1c:0b:93:c1:62:24:a8:7f:bb:77:70:
27:9c:18:ca:a2:a1:4a:41:c2:e8:93:c4:75:5e:17:
a0:0c:d8:6e:d6:45:e4:47:a7:27:0c:a0:1a:19:79:
bf:f3:74:73:87:2e:57:7b:9e:1f:91:66:4e:82:e2:
f3:d4:a9:f9:a0:27:ee:bd:ac:2a:fc:01:79:ee:ca:
07:c4:13:54:0b:0b:48:2e:9f:49:bd:71:c9:5e:e6:
6e:9f:bc:fc:36:59:db:40:04:35:3f:24:a0:5c:a8:
71:30:c5:de:54:13:68:4d:bb:67:ed:e3:5b:70:30:
ee:ec:1e:11:09:2a:4b:85:53:1d:67:ea:9f:29:e4:
68:f9:62:3a:bb:17:01:3d:4f:86:d8:3d:33:6f:ca:
ae:4e:88:fe:48:36:d3:33:9f:aa:ea:b5:0c:df:c0:
40:52:0d:28:d6:80:71:44:36:15:00:2e:ec:4d:f7:
0a:18:d2:73:13:6f:57:fe:a3:46:cd:fa:59:58:1d:
e4:0b:31:88:11:bf:60:e9:b4:77:02:b9:2c:00:38:
a4:43:af:ec:a9:7b:a0:96:c3:ab:35:f1:b4:34:68:
ff:cb:5f:78:b3:dd:a1:00:a6:ae:88:c9:51:ed:f4:
61:73:96:44:2d:5a:db:b4:fd:13:0e:3b:07:e7:06:
a1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A3:1F:C5:0D:2C:92:84:52:D7:87:FF:A2:DD:AC:0F:88:11:C4:40
X509v3 Authority Key Identifier:
keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:81f0::/44
Signature Algorithm: sha256WithRSAEncryption
ae:46:8d:20:b1:86:71:b7:b8:44:f9:f1:a2:e1:78:cf:13:69:
01:cb:1b:c6:f7:8c:dc:67:8c:1a:e6:ab:60:b8:d1:8f:95:09:
0d:7c:0c:40:da:b5:bd:3a:26:fd:e0:38:cf:01:4a:56:13:0d:
6d:7c:70:20:ad:0c:4e:89:56:71:d1:33:bb:5a:93:7c:74:f9:
5e:92:52:95:6b:ad:ca:5e:29:12:c3:70:0d:82:69:db:7f:37:
c1:ef:0c:d4:d4:61:37:45:2d:41:05:c2:65:58:e9:83:fd:b9:
11:6e:b5:f6:ea:42:59:c8:e7:f7:11:d5:63:4a:59:d5:a4:e1:
1f:fb:33:e5:a6:25:9d:6b:41:6d:97:ed:20:ca:b7:c3:51:7c:
4d:dd:5e:09:2e:71:2a:6b:7f:87:89:21:a8:90:dc:c6:f3:6f:
7e:ec:eb:27:e6:2a:3e:ea:c4:02:9d:65:bd:f3:2d:c9:c1:32:
c2:ea:b2:e7:c3:af:ac:0a:ff:d1:56:ed:30:e0:38:a3:53:4a:
fa:87:98:25:1a:b7:67:f9:5f:c3:fa:1b:33:be:2c:b2:f7:eb:
91:05:a0:15:31:3f:b1:3e:df:25:7c:61:d7:b3:b1:21:34:51:
00:11:7b:71:20:53:35:64:ad:b5:2c:58:b4:e1:de:77:36:b2:
8c:d1:b8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:09 2025 by rpki-client