Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161383a3a2f34382d3438203d3e20323135313931.roa
File: 326130353a646663313a393161383a3a2f34382d3438203d3e20323135313931.roa (raw, json)
Hash identifier: MSv/LlMK4uUic+VfHNlJUA6fFD4GUl2im3TQd5m04yc=
Subject key identifier: D7:30:85:05:BC:0D:29:E6:18:15:ED:43:5B:3B:7B:2D:AB:CB:59:2F
Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Certificate serial: 4E802437B678465068EF82998857E5763A75822F
Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161383a3a2f34382d3438203d3e20323135313931.roa
Signing time: Mon 08 Apr 2024 19:17:06 +0000
ROA not before: Mon 08 Apr 2024 19:12:06 +0000
ROA not after: Mon 07 Apr 2025 19:17:06 +0000
asID: 215191
IP address blocks: 2a05:dfc1:91a8::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:80:24:37:b6:78:46:50:68:ef:82:99:88:57:e5:76:3a:75:82:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76
Validity
Not Before: Apr 8 19:12:06 2024 GMT
Not After : Apr 7 19:17:06 2025 GMT
Subject: CN=D7308505BC0D29E61815ED435B3B7B2DABCB592F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:04:0a:cf:fa:c8:69:72:ac:4a:64:25:eb:
7c:7e:ec:b8:72:7a:ea:9a:9e:89:2f:51:90:70:80:
83:e0:a0:ce:dd:cd:1b:9f:a7:31:ff:2d:4a:4b:ea:
05:ab:1e:48:a7:03:28:a1:3e:ba:e0:d7:0b:35:8d:
ec:1d:8f:89:03:ae:2b:6d:54:ad:a5:21:44:ad:ad:
f6:f6:16:cc:84:48:13:80:36:a4:b1:0c:d0:9d:e7:
37:2b:f0:e8:ef:43:99:d6:ef:91:f8:17:b2:f3:60:
ab:c7:66:d5:1e:88:66:26:9d:76:fc:51:21:f9:da:
59:22:a3:a3:c2:f6:37:df:d2:ba:17:66:45:6b:a4:
a7:e3:28:ff:4b:fa:6e:2c:20:dd:18:cf:86:0c:28:
4a:e3:6f:c8:85:ed:64:30:89:ef:43:bd:d7:85:3b:
a5:a2:9d:f3:a0:fb:d3:d3:97:25:88:0a:ef:43:69:
45:ec:15:e2:c4:41:6d:c7:f7:91:11:60:a1:e2:3b:
ff:65:5a:db:7c:89:86:fa:68:08:00:ac:08:94:88:
e1:f2:ae:e3:c5:6b:12:49:78:d7:dd:78:0b:03:ca:
3c:f3:7b:09:a4:95:b7:61:89:f9:35:d4:86:c9:71:
65:d6:01:49:75:b4:93:d3:e9:d1:34:dc:43:4d:cb:
da:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:30:85:05:BC:0D:29:E6:18:15:ED:43:5B:3B:7B:2D:AB:CB:59:2F
X509v3 Authority Key Identifier:
keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161383a3a2f34382d3438203d3e20323135313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:91a8::/48
Signature Algorithm: sha256WithRSAEncryption
3b:e6:d0:e5:fd:3b:6f:16:cc:c2:3b:ea:66:5f:3e:d5:69:a1:
de:25:31:07:df:8b:b6:d5:64:b1:11:03:50:0d:3a:e6:85:da:
7f:4a:52:81:bb:87:b9:3f:a7:9e:3f:b7:e9:9e:52:04:16:39:
76:c8:08:56:17:5b:b9:5b:3c:28:a7:de:3e:4f:bf:52:4a:c7:
7e:ad:ae:a4:61:14:66:73:74:cf:3e:f4:ec:a4:ee:3e:71:61:
df:d6:ab:b2:db:8e:77:b7:fb:c0:96:d8:a0:5e:f0:80:e6:7c:
00:00:a1:01:2d:79:71:65:8f:25:75:78:94:91:52:74:b8:69:
11:f1:be:c0:51:7d:99:74:d0:e6:f6:3e:70:a6:36:de:cb:99:
5a:84:02:e3:66:b7:c9:93:a9:4e:39:d7:b8:aa:56:7f:fc:aa:
c5:7f:50:aa:9f:78:e7:35:49:37:eb:41:71:8e:ae:6d:b6:f6:
39:91:dd:d3:e9:1d:09:9f:2b:a4:9b:f9:20:34:a8:d3:6a:0d:
ef:03:27:d0:fa:30:c1:2b:da:9c:33:33:81:0f:2e:16:a6:87:
a6:5c:d7:61:94:12:da:72:ec:42:e8:70:73:26:0d:5c:60:28:
a4:c3:15:7e:bf:68:82:25:91:c0:3a:4b:a2:f1:d5:f3:dd:78:
66:f2:26:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:09:31 2025 by rpki-client