Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa
File: 326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa (raw, json)
Hash identifier: svzimzhdqlclmvG7IJ8vvWQ0kGTSIwK/8yxPFMHQftw=
Subject key identifier: 70:A8:88:3A:0D:66:E3:36:0E:0C:E0:55:B3:C0:D1:BB:6D:3A:ED:C8
Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Certificate serial: 12AB0CB10DCD8287AE5707CFFC0DD485BE87113B
Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa
Signing time: Tue 06 May 2025 08:50:51 +0000
ROA not before: Tue 06 May 2025 08:45:51 +0000
ROA not after: Tue 05 May 2026 08:50:51 +0000
asID: 58339
IP address blocks: 2a05:dfc1:5f10::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:ab:0c:b1:0d:cd:82:87:ae:57:07:cf:fc:0d:d4:85:be:87:11:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Validity
Not Before: May 6 08:45:51 2025 GMT
Not After : May 5 08:50:51 2026 GMT
Subject: CN=70A8883A0D66E3360E0CE055B3C0D1BB6D3AEDC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:99:f8:0c:39:a7:8d:62:28:46:94:74:2e:04:
3c:c1:3a:15:e2:c9:3b:85:8b:b5:8a:86:c3:5c:67:
22:bf:f1:51:29:7b:46:5d:2b:d4:5f:34:fe:8d:50:
b0:d8:10:20:46:4d:31:3a:9c:9e:a9:76:ff:b5:8b:
73:53:ba:a2:ca:20:70:fc:5e:78:f6:a1:27:1f:f6:
fe:35:ab:21:0c:cd:22:78:ed:cd:56:38:dc:a6:36:
81:77:ad:31:7d:52:d5:d6:e7:aa:4e:32:10:d1:9b:
a5:7d:89:52:b8:61:4d:f4:6b:00:7c:f6:fb:b9:47:
67:af:94:8e:2d:35:91:8a:c4:4d:d7:0a:fa:2f:07:
b4:da:24:ce:3e:96:c5:52:45:63:ec:35:f7:0c:5c:
57:86:19:e0:9f:f9:e3:13:3c:a3:6b:5f:15:39:5a:
0c:f4:48:a9:15:8b:cc:1d:e1:f5:b2:a9:3d:7f:a8:
4c:6d:fa:cb:38:a4:d0:b2:22:39:05:af:79:90:68:
f8:96:e7:62:5b:5d:61:07:e3:2c:e2:cc:ef:79:31:
82:e5:87:82:b2:5f:5c:19:ef:ee:52:f9:83:eb:93:
26:a8:63:c0:2c:01:bc:f8:7f:1f:9d:e9:0a:cf:ce:
c5:80:ed:4d:b0:86:a0:3f:d2:4a:3e:e4:35:8d:2b:
a0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A8:88:3A:0D:66:E3:36:0E:0C:E0:55:B3:C0:D1:BB:6D:3A:ED:C8
X509v3 Authority Key Identifier:
keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:5f10::/48
Signature Algorithm: sha256WithRSAEncryption
0f:3d:e5:d7:04:2f:98:59:87:59:ad:12:1c:96:3a:b4:45:96:
a8:a6:23:53:9a:66:38:22:52:12:35:2a:ea:fc:97:c9:78:e0:
10:c0:a7:f9:34:0e:0f:ad:21:bc:a8:00:8b:a5:13:70:12:56:
ae:18:55:c3:b8:87:47:33:91:c6:e0:b5:d9:ed:80:0c:5e:37:
67:3a:d1:fa:9f:96:3e:a9:90:26:f0:e3:1a:9c:30:f2:bc:b5:
72:bb:4c:ab:9c:3d:1c:c2:e2:b0:a2:58:07:e4:97:ce:35:87:
6b:fd:f1:4e:0e:37:03:bf:61:5a:ad:a5:80:72:6c:41:ce:b2:
b8:2a:30:8c:ea:f9:aa:c4:a5:30:70:b7:54:fc:38:7c:c8:0e:
3b:26:ed:89:4a:77:18:fd:bf:54:a9:54:2a:57:7c:61:38:69:
34:6f:2e:97:1e:24:c1:4b:4f:79:48:6a:15:b8:5f:ca:f4:b3:
49:32:2a:1e:2b:ff:e1:42:f8:16:d4:6e:b3:94:32:6c:49:5d:
92:46:87:91:68:9b:df:c2:bd:5b:2d:a9:25:23:61:1a:62:9b:
48:bb:59:f1:91:fd:fa:b9:b5:ac:10:13:50:c4:a2:9f:75:50:
e0:0f:41:f5:72:a7:b9:b6:0f:a6:75:0f:09:c0:7f:c5:8e:47:
1c:cc:8e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 08:50:50 2025 by rpki-client