Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa
File: 326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa (raw, json)
Hash identifier: /X68JagauxWyaFcSb3BbJbw5DWqXyP6Pe5X7avcQNQs=
Subject key identifier: C0:03:69:4A:29:C1:16:30:1C:11:DD:E1:69:BC:4B:CA:EF:2B:57:44
Certificate issuer: /CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6
Certificate serial: 0823D5000D3C01CE2DF3AFC90F6A1C25893B2CF3
Authority key identifier: 0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6
Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa
Signing time: Wed 23 Jul 2025 20:07:05 +0000
ROA not before: Wed 23 Jul 2025 20:02:05 +0000
ROA not after: Wed 22 Jul 2026 20:07:05 +0000
asID: 213862
IP address blocks: 2a0b:4e07:1c02::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:23:d5:00:0d:3c:01:ce:2d:f3:af:c9:0f:6a:1c:25:89:3b:2c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6
Validity
Not Before: Jul 23 20:02:05 2025 GMT
Not After : Jul 22 20:07:05 2026 GMT
Subject: CN=C003694A29C116301C11DDE169BC4BCAEF2B5744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:d1:3a:18:f9:33:d8:c0:39:c4:d1:ff:ea:
09:47:1e:c0:61:de:97:f4:ce:2c:e5:b6:c7:cb:9a:
27:f5:9b:43:ab:1a:38:ab:af:c9:45:24:0c:4e:8e:
1d:e2:ee:94:9f:98:06:a5:e5:06:7c:84:47:25:e1:
dd:e6:3c:33:a8:10:3a:0c:62:8f:e4:64:b6:b3:83:
3f:09:02:56:e0:8c:5d:80:8a:fd:44:0b:7a:86:93:
24:ec:56:70:b7:52:ba:64:b8:7c:9f:40:27:1d:01:
7d:74:b5:f5:81:ff:73:bb:c0:64:19:db:d6:d0:41:
62:f8:63:cb:0c:f9:22:30:ed:ec:d5:65:43:06:1a:
52:2d:e9:05:08:17:b9:78:09:3a:d0:72:1d:7b:26:
2e:ed:2f:b1:9b:8f:be:ff:57:7f:10:e7:a9:35:b7:
99:03:b1:b0:e6:1a:48:1b:5a:12:e3:df:a3:9a:d5:
1a:8c:0c:61:48:d7:34:7a:37:70:6f:12:00:f5:80:
4d:d8:92:80:4e:04:98:7b:fc:65:f6:06:aa:89:a5:
9d:69:62:f6:ed:e1:2f:36:e4:02:98:c5:b6:00:62:
a3:07:bd:45:58:0b:79:f6:2e:54:00:91:28:1b:78:
f8:df:88:45:49:1b:75:77:9d:b5:1a:ed:19:3a:60:
39:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:03:69:4A:29:C1:16:30:1C:11:DD:E1:69:BC:4B:CA:EF:2B:57:44
X509v3 Authority Key Identifier:
keyid:0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4e07:1c02::/48
Signature Algorithm: sha256WithRSAEncryption
72:66:52:10:84:5f:79:bd:90:9b:ad:08:4b:5d:ec:7a:21:f3:
b9:59:6a:d6:3b:f8:f1:e3:5e:b2:9d:ff:2b:04:ce:23:d9:c4:
ca:05:41:bf:75:3e:ca:d5:79:1b:c8:a6:12:d3:be:68:68:82:
cc:12:50:cf:40:9c:89:ce:69:63:22:a8:c5:94:61:81:93:9f:
54:83:0e:27:35:9c:7c:9a:50:47:96:3b:64:e3:92:2b:d0:d7:
f6:1f:7d:fd:63:68:f6:93:f8:4f:5d:6e:6d:45:37:ba:75:24:
14:15:1a:16:81:db:38:15:01:d7:54:f5:70:67:85:2c:d2:98:
0a:88:52:00:93:4a:80:19:c4:dd:35:9f:ed:35:ff:72:9e:c0:
45:2b:c7:f6:e1:41:d5:7f:cc:c1:c0:cf:dc:6a:d7:58:a7:1c:
e0:de:b7:60:be:4b:a7:58:ff:4b:10:8a:85:52:ef:6b:ef:3a:
79:19:d7:d0:8e:a0:e3:32:30:64:88:d3:9b:05:75:0c:ef:c9:
30:8c:0f:83:84:3c:92:c4:9a:3f:53:b7:e5:c7:d4:86:7b:f8:
0c:0f:81:a2:57:59:9a:70:76:77:9a:7b:04:55:2c:8a:28:13:
62:d8:be:f1:e5:09:6b:e4:f0:87:d5:32:9c:89:62:1d:c4:53:
ac:4b:13:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:31:54 2025 by rpki-client