Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa
File: 326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa (raw, json)
Hash identifier: NoAeiuJjhntRzSQanLAKQdb7Q/w94Y5I0Lyufrgc3CQ=
Subject key identifier: 77:36:CB:6C:BC:38:D2:53:9E:00:3E:9E:39:38:C9:E1:2C:24:2E:2E
Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Certificate serial: 5AF15B1627F8DB9C507E7ECE8124BBEC2F437834
Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa
Signing time: Tue 06 May 2025 08:50:50 +0000
ROA not before: Tue 06 May 2025 08:45:50 +0000
ROA not after: Tue 05 May 2026 08:50:50 +0000
asID: 58339
IP address blocks: 2a05:dfc1:5f60::/44 maxlen: 44
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:f1:5b:16:27:f8:db:9c:50:7e:7e:ce:81:24:bb:ec:2f:43:78:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Validity
Not Before: May 6 08:45:50 2025 GMT
Not After : May 5 08:50:50 2026 GMT
Subject: CN=7736CB6CBC38D2539E003E9E3938C9E12C242E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:ee:89:57:7e:6c:06:4a:1a:af:d1:9c:8b:
95:83:bc:05:f5:52:39:65:d6:c1:40:85:a4:9a:d3:
e1:96:6a:4f:9b:c9:20:44:62:56:04:54:93:d9:a7:
74:6e:7c:d2:b1:08:57:2a:d9:c8:6d:0c:60:c1:ed:
a5:73:5e:1b:bb:8d:06:20:c4:36:48:74:6d:d9:f1:
a9:de:6d:de:0e:1b:42:16:62:32:67:c5:95:dc:21:
3b:f1:50:2f:4d:a6:21:5c:ba:c4:4e:c3:e9:3b:a1:
3f:04:42:40:90:38:3b:18:08:aa:6f:67:6b:32:75:
95:a8:88:0b:4f:ea:c0:f9:f3:32:97:cb:cf:fb:bd:
ba:7f:5f:73:ee:cb:4e:80:fe:34:ac:a6:44:71:ae:
ea:bd:92:db:a8:0a:94:45:64:50:41:45:f2:91:c8:
5b:e8:4b:6d:f2:03:44:d4:45:50:cf:49:4b:df:21:
4f:b4:d3:36:2d:5c:92:62:c3:cb:ad:71:47:14:47:
3c:c8:dc:bd:87:b6:31:82:bb:ca:17:da:3d:a7:ea:
ba:39:0e:3a:c5:7f:f9:61:f5:11:1e:23:98:f6:24:
33:b0:f6:9c:d5:68:d8:dd:27:fd:0a:e2:0f:0f:6e:
7f:69:f6:b6:a9:57:71:5d:6d:16:9d:a5:2d:57:da:
96:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:36:CB:6C:BC:38:D2:53:9E:00:3E:9E:39:38:C9:E1:2C:24:2E:2E
X509v3 Authority Key Identifier:
keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:5f60::/44
Signature Algorithm: sha256WithRSAEncryption
3f:6e:22:54:8d:12:b8:0d:1c:9c:e6:46:fd:76:69:15:45:3e:
3f:31:c0:c4:de:7e:57:4c:c7:cc:08:95:2c:e7:cd:fc:26:f4:
0e:91:ff:c9:25:c5:f0:dd:e3:c3:f5:26:3a:de:f3:06:49:2e:
27:47:05:a6:39:86:f5:70:7a:c7:e6:1a:ca:01:6c:ba:27:83:
8c:a4:a3:25:b3:35:19:9b:d5:1b:25:a3:00:f1:69:e6:6e:12:
6f:45:e1:84:5e:fc:da:95:60:ee:e2:d7:71:cb:7a:29:8a:10:
32:8e:8d:00:7b:81:7d:d6:60:6f:53:de:af:c7:91:8e:69:ed:
80:ac:2d:fb:a0:73:11:6f:db:4e:e4:a9:5c:7d:11:cb:18:4c:
79:04:1e:8c:c8:bf:5b:a2:8d:f9:91:70:1e:54:15:81:f1:ac:
c3:79:3f:f0:f1:68:58:b6:79:e1:66:7a:2e:8c:84:a6:28:93:
7b:2d:30:1d:19:70:1e:fd:78:4f:d2:e2:26:16:02:07:7f:9f:
c4:bc:18:4a:ff:b3:de:46:b3:91:ee:7c:6f:5e:6a:de:7d:dc:
fe:7a:49:29:1d:17:99:d2:03:ce:c8:55:38:66:be:0a:83:bd:
b8:ec:01:57:41:64:4e:5b:3b:72:4a:fd:ae:5f:2d:ce:f3:4c:
5f:14:0a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 08:29:39 2025 by rpki-client