Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa
File: 326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa (raw, json)
Hash identifier: pe/tp2bLBPulUkbhZe9b5ATBM6Rh5HMZWo4IJTXGPDU=
Subject key identifier: 81:FD:96:81:67:90:7D:AF:00:7C:77:52:A7:8D:23:2B:E7:A5:82:72
Certificate issuer: /CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65
Certificate serial: 56FDC32B6960E1E0E075B409827437AC700E5EA6
Authority key identifier: B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa
Signing time: Thu 03 Jul 2025 23:35:34 +0000
ROA not before: Thu 03 Jul 2025 23:30:34 +0000
ROA not after: Thu 02 Jul 2026 23:35:34 +0000
asID: 203069
IP address blocks: 2a05:dfc5:b00b::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:fd:c3:2b:69:60:e1:e0:e0:75:b4:09:82:74:37:ac:70:0e:5e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6479E0904B301975B19D2BFF42BE08DBFD68D65
Validity
Not Before: Jul 3 23:30:34 2025 GMT
Not After : Jul 2 23:35:34 2026 GMT
Subject: CN=81FD968167907DAF007C7752A78D232BE7A58272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:60:c5:5b:90:98:97:0e:73:4a:b0:fb:b4:34:
da:b4:44:3f:88:3c:27:89:7d:ba:bd:f7:a4:7c:ac:
45:87:0b:42:d1:df:4c:1d:59:0a:e6:3d:c5:e7:d5:
da:06:76:ba:8b:fe:06:55:01:8d:aa:58:0c:83:b9:
5e:0a:ec:71:3e:35:8d:2b:12:41:b3:6e:e5:b0:9d:
19:6c:47:6b:d9:1a:5e:b1:ca:fd:c5:45:40:50:78:
89:85:9b:73:28:af:56:e8:8d:dc:8d:8b:5a:f9:39:
24:6f:c1:c5:df:0d:57:7c:9f:70:81:82:c6:92:a9:
15:af:4a:f0:37:b4:77:e4:27:7d:4e:6f:76:5c:b9:
aa:11:53:07:52:56:00:96:98:b8:2c:22:c5:bf:14:
d0:49:b9:25:77:b5:d6:de:d7:d7:63:a8:6a:cb:e8:
35:ea:b0:db:af:7d:99:9a:41:38:3a:33:dd:2f:38:
21:b5:49:57:4e:d9:5a:25:cc:fb:92:ff:dc:11:bf:
7c:67:d4:ad:c3:3a:b7:65:53:80:55:bd:e9:c0:be:
9c:b2:56:59:29:0c:73:d1:57:5b:5f:90:9d:84:5b:
95:ab:8e:b4:da:26:4c:84:e1:3d:da:fc:34:ff:d0:
6f:10:79:d0:6f:9d:34:49:9f:e2:37:9d:7b:9d:d4:
bc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FD:96:81:67:90:7D:AF:00:7C:77:52:A7:8D:23:2B:E7:A5:82:72
X509v3 Authority Key Identifier:
keyid:B6:47:9E:09:04:B3:01:97:5B:19:D2:BF:F4:2B:E0:8D:BF:D6:8D:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/B6479E0904B301975B19D2BFF42BE08DBFD68D65.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B6479E0904B301975B19D2BFF42BE08DBFD68D65.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/9/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc5:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
33:8f:73:c8:82:aa:39:99:7b:df:fe:7a:3d:5e:c9:fb:44:a6:
09:0e:2d:2d:c8:a2:4f:62:83:6d:cd:af:21:f0:89:29:a0:25:
2c:1a:8a:3c:7f:e8:e0:7b:09:89:dc:4f:77:d8:27:60:54:e3:
c6:1d:ec:e1:ee:62:a5:26:a9:e0:ae:40:6d:73:5d:4e:37:e6:
aa:ed:c5:1e:43:96:1e:48:62:7b:b8:ef:4c:e0:5b:83:65:cc:
82:03:1d:62:2c:f1:a6:ce:26:6e:9e:b0:9d:33:b7:12:f4:39:
b7:ee:62:5c:1b:e1:9c:06:13:bd:45:be:af:61:dd:85:ae:0e:
8c:86:50:36:a6:a4:33:64:ce:57:ee:93:99:25:47:31:65:54:
f6:ee:5e:aa:f2:ba:61:be:55:72:8a:2a:84:e5:80:10:2b:e3:
79:fb:9d:94:e5:f3:4d:77:de:59:0b:65:19:0e:cf:ce:5c:70:
17:33:22:b5:52:a4:e6:7a:07:7e:79:80:d3:33:01:70:bd:92:
68:21:5f:2a:fd:d1:95:6b:62:1e:2e:f6:1a:6a:ab:16:67:27:
9a:6d:24:ae:55:bd:9f:71:ef:22:a7:4a:53:cb:62:c0:09:47:
d5:f8:f0:5c:b8:60:58:4d:84:8e:8c:74:b5:74:c5:94:8e:70:
bd:0c:4e:99
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIUVv3DK2lg4eDgdbQJgnQ3rHAOXqYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERC
RkQ2OEQ2NTAeFw0yNTA3MDMyMzMwMzRaFw0yNjA3MDIyMzM1MzRaMDMxMTAvBgNV
BAMTKDgxRkQ5NjgxNjc5MDdEQUYwMDdDNzc1MkE3OEQyMzJCRTdBNTgyNzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnYMVbkJiXDnNKsPu0NNq0RD+I
PCeJfbq996R8rEWHC0LR30wdWQrmPcXn1doGdrqL/gZVAY2qWAyDuV4K7HE+NY0r
EkGzbuWwnRlsR2vZGl6xyv3FRUBQeImFm3Mor1bojdyNi1r5OSRvwcXfDVd8n3CB
gsaSqRWvSvA3tHfkJ31Ob3ZcuaoRUwdSVgCWmLgsIsW/FNBJuSV3tdbe19djqGrL
6DXqsNuvfZmaQTg6M90vOCG1SVdO2VolzPuS/9wRv3xn1K3DOrdlU4BVvenAvpyy
VlkpDHPRV1tfkJ2EW5WrjrTaJkyE4T3a/DT/0G8QedBvnTRJn+I3nXud1Lx7AgMB
AAGjggJ6MIICdjAdBgNVHQ4EFgQUgf2WgWeQfa8AfHdSp40jK+elgnIwHwYDVR0j
BBgwFoAUtkeeCQSzAZdbGdK/9Cvgjb/WjWUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi
ZTRlLzkvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2OEQ2NS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzcvQjY0NzlFMDkwNEIzMDE5NzVCMTlEMkJGRjQyQkUwOERCRkQ2
OEQ2NS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct
NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzkvMzI2MTMwMzUzYTY0NjY2MzM1
M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMzMwMzYzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACoF38WwCzANBgkqhkiG9w0BAQsFAAOCAQEAM49zyIKqOZl73/56
PV7J+0SmCQ4tLciiT2KDbc2vIfCJKaAlLBqKPH/o4HsJidxPd9gnYFTjxh3s4e5i
pSap4K5AbXNdTjfmqu3FHkOWHkhie7jvTOBbg2XMggMdYizxps4mbp6wnTO3EvQ5
t+5iXBvhnAYTvUW+r2Hdha4OjIZQNqakM2TOV+6TmSVHMWVU9u5eqvK6Yb5Vcooq
hOWAECvjefudlOXzTXfeWQtlGQ7PzlxwFzMitVKk5noHfnmA0zMBcL2SaCFfKv3R
lWtiHi72GmqrFmcnmm0krlW9n3HvIqdKU8tiwAlH1fjwXLhgWE2Ejox0tXTFlI5w
vQxOmQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 03:14:44 2025 by rpki-client