Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa
File: 326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa (raw, json)
Hash identifier: XPgjGBrZFVygJ4AAsGKRKtDhWyE6BnqilLsNV0wu2sQ=
Subject key identifier: 4F:91:24:CB:9B:77:56:6C:C3:36:6D:12:2D:6F:21:9F:02:01:28:14
Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Certificate serial: 0445F08B7C5204BAA5BC949586A566F5218A33FC
Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa
Signing time: Tue 06 May 2025 08:50:49 +0000
ROA not before: Tue 06 May 2025 08:45:49 +0000
ROA not after: Tue 05 May 2026 08:50:49 +0000
asID: 58339
IP address blocks: 2a05:dfc1:5f35::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:45:f0:8b:7c:52:04:ba:a5:bc:94:95:86:a5:66:f5:21:8a:33:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Validity
Not Before: May 6 08:45:49 2025 GMT
Not After : May 5 08:50:49 2026 GMT
Subject: CN=4F9124CB9B77566CC3366D122D6F219F02012814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:ce:ed:12:21:d7:3f:b1:71:9a:df:a4:29:
d3:04:a1:2e:72:ef:5a:8b:0f:99:a8:a4:4e:87:19:
e2:d0:b8:6f:5a:3d:19:b6:b1:96:bb:89:26:7c:8d:
08:f1:1a:bd:94:6b:d2:65:44:ca:b5:47:57:46:61:
53:87:2f:7d:b4:5f:13:2d:21:1a:85:29:e6:b9:8f:
d5:c4:0b:48:04:5a:6d:fc:33:6f:83:bb:6a:0f:30:
6c:47:33:29:b1:fb:26:69:32:bf:5b:fd:3d:de:54:
01:ce:92:cc:14:7c:56:56:74:b2:07:da:58:39:fc:
8d:98:f3:43:1d:6d:ae:89:17:d9:84:49:6e:cb:c5:
26:0f:a7:9a:ad:29:ca:d5:d9:95:f3:f3:be:41:da:
c2:90:a3:3a:ae:2e:aa:ef:98:95:76:80:17:2e:b1:
4d:c9:be:d4:ba:15:1d:e6:54:27:eb:db:08:35:4d:
22:1f:e6:17:d7:6d:cf:de:bd:1e:46:64:be:e6:3c:
c0:b6:af:6f:7d:91:7f:b1:cc:15:2f:0e:4d:21:44:
b7:fc:8e:fc:84:c5:5b:bc:d1:32:37:7d:6a:08:74:
e0:c3:03:f7:65:64:eb:b8:71:eb:80:4c:7c:fa:74:
5f:6d:70:cc:96:5d:9c:8c:ce:e4:8f:5a:61:43:49:
21:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:91:24:CB:9B:77:56:6C:C3:36:6D:12:2D:6F:21:9F:02:01:28:14
X509v3 Authority Key Identifier:
keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:5f35::/48
Signature Algorithm: sha256WithRSAEncryption
42:a3:42:61:b4:87:60:9e:d2:da:8b:99:0e:77:76:73:8f:2b:
9c:93:cd:a6:72:20:da:79:23:23:ab:84:3e:fb:38:56:7e:f3:
27:9e:1c:a9:4c:ee:4a:5e:37:33:a9:95:2f:11:fa:18:e7:67:
24:c0:8f:ea:d6:2e:ff:43:5d:ab:56:53:5f:7d:c0:e4:95:e7:
b7:7a:48:04:bb:8f:eb:89:5c:5c:fa:ce:70:52:4b:f0:1e:d9:
41:bb:47:1f:c7:06:c4:84:fc:23:b9:8c:9c:b4:a7:2f:7e:7c:
e1:4d:2b:19:f2:15:de:00:de:11:94:9b:52:9e:bf:c1:be:67:
9c:97:62:bb:cb:f4:17:24:4b:32:f5:13:f1:eb:53:08:68:14:
f7:1a:c8:77:e3:dd:e5:2a:85:27:8d:90:4c:b8:d7:5c:e2:d1:
fb:e0:1d:f0:ca:de:6c:73:a7:88:bb:5a:0d:d2:51:09:ee:f9:
61:51:99:84:11:0c:ed:0e:1c:bd:93:92:3e:be:bb:ab:86:d9:
49:9e:1e:ac:ff:d2:de:44:d9:9a:91:a8:11:6c:ae:6b:96:11:
59:aa:83:fd:32:d4:0a:b4:53:90:2a:fe:ad:2e:b1:2c:5c:32:
db:05:8c:0c:0a:1c:1c:ab:b7:37:b3:73:69:77:45:2c:b3:a1:
75:1d:6a:3e
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgIUBEXwi3xSBLqlvJSVhqVm9SGKM/wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1
NzU2QjE5QzAeFw0yNTA1MDYwODQ1NDlaFw0yNjA1MDUwODUwNDlaMDMxMTAvBgNV
BAMTKDRGOTEyNENCOUI3NzU2NkNDMzM2NkQxMjJENkYyMTlGMDIwMTI4MTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI787tEiHXP7Fxmt+kKdMEoS5y
71qLD5mopE6HGeLQuG9aPRm2sZa7iSZ8jQjxGr2Ua9JlRMq1R1dGYVOHL320XxMt
IRqFKea5j9XEC0gEWm38M2+Du2oPMGxHMymx+yZpMr9b/T3eVAHOkswUfFZWdLIH
2lg5/I2Y80Mdba6JF9mESW7LxSYPp5qtKcrV2ZXz875B2sKQozquLqrvmJV2gBcu
sU3JvtS6FR3mVCfr2wg1TSIf5hfXbc/evR5GZL7mPMC2r299kX+xzBUvDk0hRLf8
jvyExVu80TI3fWoIdODDA/dlZOu4ceuATHz6dF9tcMyWXZyMzuSPWmFDSSERAgMB
AAGjggJeMIICWjAdBgNVHQ4EFgQUT5Eky5t3VmzDNm0SLW8hnwIBKBQwHwYDVR0j
BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl
MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz
NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB
pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy
OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMzMzUzYTNhMmYzNDM4MmQzNDM4
MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV81MA0GCSqGSIb3DQEB
CwUAA4IBAQBCo0JhtIdgntLai5kOd3Zzjyuck82mciDaeSMjq4Q++zhWfvMnnhyp
TO5KXjczqZUvEfoY52ckwI/q1i7/Q12rVlNffcDklee3ekgEu4/riVxc+s5wUkvw
HtlBu0cfxwbEhPwjuYyctKcvfnzhTSsZ8hXeAN4RlJtSnr/Bvmecl2K7y/QXJEsy
9RPx61MIaBT3Gsh3493lKoUnjZBMuNdc4tH74B3wyt5sc6eIu1oN0lEJ7vlhUZmE
EQztDhy9k5I+vrurhtlJnh6s/9LeRNmakagRbK5rlhFZqoP9MtQKtFOQKv6tLrEs
XDLbBYwMChwcq7c3s3Npd0Uss6F1HWo+
-----END CERTIFICATE-----
Generated at Mon Jun 30 08:00:12 2025 by rpki-client