Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa
File: 326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa (raw, json)
Hash identifier: naowDW6MLE3ANeaa1uHwumrZ/cU3griubbVpUvI8L9Y=
Subject key identifier: 27:D6:1F:ED:D6:FA:5C:F1:9E:5D:BE:9F:21:73:DD:E7:DF:8C:20:77
Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Certificate serial: 2D4A610B60BE1B34D71FEFE98589FF0A407FB556
Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa
Signing time: Tue 06 May 2025 08:50:49 +0000
ROA not before: Tue 06 May 2025 08:45:49 +0000
ROA not after: Tue 05 May 2026 08:50:49 +0000
asID: 138190
IP address blocks: 2a05:dfc1:5f85::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:4a:61:0b:60:be:1b:34:d7:1f:ef:e9:85:89:ff:0a:40:7f:b5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C
Validity
Not Before: May 6 08:45:49 2025 GMT
Not After : May 5 08:50:49 2026 GMT
Subject: CN=27D61FEDD6FA5CF19E5DBE9F2173DDE7DF8C2077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f7:6c:dc:7a:fe:63:9f:71:e1:9f:ac:d4:85:
03:48:ce:8b:d5:33:2d:da:dc:e4:87:0a:32:ab:06:
e0:0f:d1:d0:d2:fb:79:03:08:1e:5c:ca:15:2c:bc:
49:57:60:87:f2:86:03:71:06:f5:90:7c:52:4e:9b:
31:75:14:b2:60:fe:bc:45:7e:d5:17:62:19:55:42:
25:f8:a5:0f:e1:a5:6d:1a:73:cd:8e:c5:89:bb:b4:
06:10:9e:85:52:7e:3d:e3:cb:21:a3:fc:43:2c:27:
75:e9:b6:a4:04:ae:0b:b4:30:3e:9b:99:dd:0c:24:
db:68:3e:7c:bd:b5:1d:b4:2c:0e:eb:78:c3:08:32:
89:c2:2c:cf:d5:16:f1:33:a2:db:d0:fc:3b:17:b9:
18:e8:66:9a:6a:aa:78:f8:1d:83:24:01:45:be:f2:
2c:6e:2c:ae:d2:85:7c:b3:4f:7a:8c:45:dc:1b:99:
71:c4:5a:d4:60:34:09:66:4c:f4:f8:e1:51:6c:65:
f6:d9:8b:34:69:cb:4d:a4:5e:8a:05:48:03:8b:5f:
08:4f:3f:eb:47:14:44:3c:d4:ea:7c:3b:01:f0:ba:
90:c5:27:69:a1:a0:0e:15:56:2b:70:d5:46:76:42:
dd:5a:72:0c:85:93:97:41:bf:3f:16:17:c8:52:7d:
43:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D6:1F:ED:D6:FA:5C:F1:9E:5D:BE:9F:21:73:DD:E7:DF:8C:20:77
X509v3 Authority Key Identifier:
keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:5f85::/48
Signature Algorithm: sha256WithRSAEncryption
b0:e2:07:a3:98:af:cd:c8:f2:fc:1c:0a:5e:cd:56:ba:7e:52:
64:bd:5c:01:f3:4b:68:15:15:82:94:88:40:fc:fb:92:4d:ed:
9d:57:82:10:4c:73:1b:a6:d6:ad:9e:7b:d3:48:ee:89:01:57:
1f:33:2e:34:f9:1b:62:90:c2:d1:5a:84:a2:4d:af:1c:71:df:
2a:7d:13:32:1c:1d:50:7c:7b:53:5b:6b:04:96:30:ce:72:72:
26:b0:aa:ba:59:07:e7:94:ab:42:2e:67:7a:75:26:9c:24:1a:
e6:e0:19:9b:3e:3a:7e:0f:25:0e:3c:34:f4:2f:3b:47:3b:ed:
87:97:dc:f0:9d:e8:30:91:6a:aa:e2:da:c4:7f:c8:1b:e4:02:
8a:dc:85:46:3b:0e:a7:71:7d:ea:87:bd:6e:55:73:24:18:1d:
b2:5c:bc:73:ef:fd:b7:ea:8d:78:76:a1:5f:1d:27:35:80:f7:
d3:f0:a1:d0:be:da:1e:1f:87:3b:3e:fc:0e:2c:1d:83:b5:9d:
a2:0f:cd:c4:bd:c7:a7:f7:da:61:87:73:ba:44:ff:d3:b6:e0:
79:ad:03:50:7c:c1:6a:d6:b0:01:b2:8c:bc:97:4e:e3:90:03:
1a:65:55:c1:16:ce:8f:90:26:33:08:fe:c8:bb:d6:d5:d4:e3:
18:10:11:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 13:27:13 2025 by rpki-client