Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Netiface/3/326131343a396530303a393230303a3a2f34302d3438203d3e203630323233.roa
File: 326131343a396530303a393230303a3a2f34302d3438203d3e203630323233.roa (raw, json)
Hash identifier: fxdZqdtAye+L0RTZG8aQuXn/fH66DPRWXyHXEJKMRxA=
Subject key identifier: 59:B2:68:78:C5:C8:7F:94:A7:88:18:30:04:FD:62:E4:85:6D:02:D4
Certificate issuer: /CN=a640aa61f1d62b9c940459804ae11be99ad43842
Certificate serial: 7537DBAD86745E2A6BA7E25493EDC2F93C4B4E78
Authority key identifier: A6:40:AA:61:F1:D6:2B:9C:94:04:59:80:4A:E1:1B:E9:9A:D4:38:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkCqYfHWK5yUBFmASuEb6ZrUOEI.cer
Subject info access: rsync://repo.rpki.space/repo/Netiface/3/326131343a396530303a393230303a3a2f34302d3438203d3e203630323233.roa
Signing time: Wed 14 May 2025 20:27:50 +0000
ROA not before: Wed 14 May 2025 20:22:50 +0000
ROA not after: Wed 13 May 2026 20:27:50 +0000
asID: 60223
IP address blocks: 2a14:9e00:9200::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:37:db:ad:86:74:5e:2a:6b:a7:e2:54:93:ed:c2:f9:3c:4b:4e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a640aa61f1d62b9c940459804ae11be99ad43842
Validity
Not Before: May 14 20:22:50 2025 GMT
Not After : May 13 20:27:50 2026 GMT
Subject: CN=59B26878C5C87F94A788183004FD62E4856D02D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:32:a4:ac:a1:a9:81:05:fc:4b:04:01:79:c8:
96:1e:46:dc:75:40:18:c9:bd:f1:b3:30:13:e7:98:
18:40:04:cd:b7:43:be:74:0f:d2:5d:a6:31:02:2d:
4f:f5:91:7d:84:fb:6b:b9:0b:ec:8b:a8:b5:2a:3a:
27:aa:95:77:21:bb:36:a2:d1:87:fe:ee:9d:2d:b6:
b1:96:53:da:1a:65:7d:45:a4:d3:a5:5e:46:27:6e:
8b:1e:af:99:4d:46:ac:bd:17:01:01:fe:00:8f:df:
2a:7c:8b:0b:e3:f8:e6:ad:90:0c:c9:53:75:ff:29:
be:c6:9b:db:48:86:3c:4e:c9:e9:81:41:6e:73:40:
1e:a9:85:d7:60:52:77:50:89:be:6b:a3:01:b3:c7:
83:e5:7f:4c:e6:e8:ce:81:a3:13:7d:32:d1:30:79:
b7:63:63:d6:16:a7:3c:64:c8:78:2b:1c:f9:3d:7b:
6d:5c:81:ae:fb:c3:96:35:99:f5:32:20:11:f1:f3:
e5:b8:0b:64:c2:64:ca:64:4e:db:71:d9:fd:b9:11:
d3:4a:29:d3:3a:17:1b:b8:24:45:26:da:45:64:cc:
b7:8a:78:80:e4:e1:f6:e7:f2:c9:8d:30:9b:bf:e1:
e9:96:54:2e:10:6d:3c:0c:0b:61:96:5c:ef:ca:b8:
6f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B2:68:78:C5:C8:7F:94:A7:88:18:30:04:FD:62:E4:85:6D:02:D4
X509v3 Authority Key Identifier:
keyid:A6:40:AA:61:F1:D6:2B:9C:94:04:59:80:4A:E1:1B:E9:9A:D4:38:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Netiface/3/A640AA61F1D62B9C940459804AE11BE99AD43842.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkCqYfHWK5yUBFmASuEb6ZrUOEI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Netiface/3/326131343a396530303a393230303a3a2f34302d3438203d3e203630323233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:9e00:9200::/40
Signature Algorithm: sha256WithRSAEncryption
2a:4c:0a:7d:4a:7b:11:94:ae:56:d4:13:90:e0:46:8a:03:40:
c9:a1:a5:82:6c:21:94:20:4b:c9:c9:71:74:2f:04:05:38:7a:
06:96:0a:ce:7a:d1:0f:37:a4:c8:3a:09:7f:f8:50:99:f0:b5:
6b:6f:0c:36:0f:b1:74:05:6c:b7:f9:d7:00:1b:56:3c:8e:4c:
07:6e:34:82:70:81:f6:17:fc:d6:9d:4c:8e:05:67:35:01:6d:
a1:c7:10:93:c0:84:ed:26:76:ac:04:6f:72:01:15:ba:fa:30:
37:8e:27:89:60:e4:1c:b7:bc:ed:f9:b2:6f:74:0a:f1:c3:7d:
a1:2f:7a:98:43:f2:75:12:3b:71:dd:c8:78:99:0d:a1:5e:d7:
9f:01:55:e0:d6:6c:05:1b:07:4c:42:2b:de:48:49:39:0a:34:
1e:35:cf:3c:a2:be:29:30:ec:4a:c6:90:6e:97:58:4a:a3:f1:
28:69:0b:64:6d:95:ba:70:dd:10:05:a8:21:e1:fc:b2:2a:44:
ee:43:f7:19:d3:d5:c7:c6:4f:3e:b0:5a:d9:da:97:6c:a7:20:
61:0d:72:64:e6:d5:bc:21:58:aa:9a:c0:e5:11:9c:9c:09:ce:
75:ff:df:be:18:3d:57:51:00:27:cb:00:d9:2e:6a:65:1e:48:
cd:4d:2b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:23:25 2025 by rpki-client