Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
File: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (raw, json)
Hash identifier: qeaOlY52oQQWD5XZjaWGRHEbjpv+jkgNagBU1ZEkBfY=
Subject key identifier: 70:88:36:D6:61:A2:50:8A:C6:75:AA:3E:9A:40:1E:2C:CA:63:07:93
Certificate issuer: /CN=5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC
Certificate serial: 79E5245BE491EF0A513AE59BCCE736FF9C1553EA
Authority key identifier: 5E:B2:E5:DA:D0:C6:99:6D:0A:80:A7:B9:0F:3A:2A:A6:0F:B1:A7:AC
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
Signing time: Thu 08 Aug 2024 20:19:02 +0000
ROA not before: Thu 08 Aug 2024 20:14:02 +0000
ROA not after: Thu 07 Aug 2025 20:19:02 +0000
asID: 211431
IP address blocks: 2a13:9644:3000::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:e5:24:5b:e4:91:ef:0a:51:3a:e5:9b:cc:e7:36:ff:9c:15:53:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC
Validity
Not Before: Aug 8 20:14:02 2024 GMT
Not After : Aug 7 20:19:02 2025 GMT
Subject: CN=708836D661A2508AC675AA3E9A401E2CCA630793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:99:a5:81:d7:e4:0f:1d:70:9b:f7:fa:03:a1:
a8:2c:1c:e0:07:4a:42:ed:fd:f0:92:b8:a3:3a:72:
d1:77:fc:e3:ef:6a:aa:b6:f5:15:02:aa:f8:8a:5e:
7c:f3:47:56:83:63:c4:84:fa:5b:33:9d:65:6e:73:
8a:97:76:83:33:fa:09:03:f0:27:80:0e:f5:82:cb:
fb:07:e2:17:7e:b0:ca:4f:86:ea:0f:59:d7:e6:3e:
c0:56:5a:6a:12:01:65:c4:e6:0a:01:67:65:5e:99:
89:11:f5:e2:25:14:70:19:ba:6b:42:31:d6:69:27:
c0:c4:2e:3a:c3:40:23:d3:79:50:0c:31:ba:64:cc:
a1:06:59:5d:9b:72:ae:09:52:72:29:34:3b:b7:45:
c9:58:1d:21:cd:c8:52:41:7c:e7:a5:b4:de:7a:fa:
a5:62:76:ff:a7:37:ac:29:dd:3d:52:4a:65:3c:aa:
f2:b3:fb:58:28:c7:52:cd:97:d0:8b:f8:84:9b:62:
91:6d:b3:c0:53:0a:13:1d:9a:2a:f3:08:f5:61:3e:
55:6f:4d:a4:89:a1:0b:60:98:40:74:20:f1:fa:b6:
94:04:14:2d:f5:e3:7a:9e:e5:ae:9a:69:02:81:7f:
ab:69:55:f0:82:e8:5c:8b:bc:74:97:20:d8:68:de:
bc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:88:36:D6:61:A2:50:8A:C6:75:AA:3E:9A:40:1E:2C:CA:63:07:93
X509v3 Authority Key Identifier:
keyid:5E:B2:E5:DA:D0:C6:99:6D:0A:80:A7:B9:0F:3A:2A:A6:0F:B1:A7:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:3000::/40
Signature Algorithm: sha256WithRSAEncryption
7e:f1:38:1f:f8:46:d1:dd:c8:96:d2:bd:4a:cc:21:cf:c5:9c:
94:41:84:46:8c:43:11:ac:4c:d1:9d:00:14:87:09:8c:dc:8d:
67:d7:fb:25:ec:30:fb:ac:96:ec:8f:91:f3:d6:b9:38:da:b0:
52:45:7a:8c:8a:e8:2e:26:d1:48:c0:86:99:4c:01:a0:8c:f6:
ab:5e:ec:71:e1:d8:cb:14:cc:63:f6:80:34:47:8a:cc:cd:c3:
93:43:67:17:88:94:26:7d:93:5e:c4:b0:05:e1:c1:b0:96:2b:
4c:44:a6:3e:c6:ca:7b:e9:18:32:73:f5:53:34:58:d3:2c:ad:
0e:34:1a:c3:7c:35:02:e9:fa:67:f7:a6:d5:6b:d8:35:56:e0:
69:ad:dc:c2:82:af:39:e2:76:f2:13:bb:ef:db:a2:c2:d5:21:
60:1f:26:0a:64:d7:c1:3c:b4:39:6b:ca:cd:0e:8d:7c:df:d1:
fd:dc:66:06:35:1a:7c:30:a4:ba:ce:31:74:e4:f4:7d:fd:af:
b9:08:73:b5:35:43:53:02:75:7a:09:d3:95:6e:4a:82:ae:43:
f9:b0:67:bf:a7:20:3d:5d:b3:08:0b:45:ee:68:91:70:ef:5e:
31:1b:0a:82:7f:14:b4:2a:1f:f5:e2:d1:25:5a:76:74:b1:5a:
32:ed:32:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:00:02 2025 by rpki-client