Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa
File: 326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa (raw, json)
Hash identifier: q6g7NvOylKcoMKHIBFZ0Cue6q0bByY4gqgu482bGvYs=
Subject key identifier: 07:06:13:44:CF:28:51:EB:2E:20:6F:82:CE:5B:76:17:0D:D6:86:A7
Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79
Certificate serial: 4E2740779459AA77DD6A61841F2D136EE5DC447E
Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa
Signing time: Sun 04 May 2025 13:12:18 +0000
ROA not before: Sun 04 May 2025 13:07:18 +0000
ROA not after: Sun 03 May 2026 13:12:18 +0000
asID: 198025
IP address blocks: 2a14:7580:700::/40 maxlen: 40
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:27:40:77:94:59:aa:77:dd:6a:61:84:1f:2d:13:6e:e5:dc:44:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79
Validity
Not Before: May 4 13:07:18 2025 GMT
Not After : May 3 13:12:18 2026 GMT
Subject: CN=07061344CF2851EB2E206F82CE5B76170DD686A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:10:11:8c:66:36:78:87:c0:a5:9f:4a:c2:10:
b8:ff:f0:2d:4b:f6:8d:1b:45:7b:01:e6:55:f1:08:
3f:11:d6:58:62:a3:e3:d7:ac:52:7e:91:a6:0c:ee:
47:72:6d:5f:e2:1b:8b:15:fe:3d:9f:99:32:ef:3b:
d8:e7:b9:cc:75:88:a4:c7:44:ba:21:19:c0:b4:72:
ef:d2:63:31:34:96:d4:b2:88:f7:f5:24:1d:f4:8a:
29:69:8f:69:44:77:85:0b:c7:4d:d0:80:55:9f:f1:
eb:ae:e3:23:ab:9b:94:68:be:4b:dd:82:a5:7a:3f:
c1:25:5c:23:3f:ff:83:53:d1:69:47:2c:5a:8d:51:
91:b8:33:2c:b4:1e:45:11:a2:3a:3a:e1:2a:af:6a:
b1:f5:e4:26:58:bb:fa:87:a5:51:a0:bf:1f:88:93:
0f:32:e9:1d:e8:9c:56:29:94:70:65:c8:19:d1:d0:
dd:61:ae:a3:ad:8e:71:81:64:75:6a:db:99:95:eb:
5c:6a:5c:03:46:18:f0:c9:e1:e6:7b:51:48:60:db:
fa:b7:ad:bb:1e:ea:75:7c:e1:a7:96:e6:92:bd:b4:
9d:dd:69:86:00:b0:f1:bf:80:ab:ea:66:6d:14:5e:
a5:58:72:e0:8f:ed:cb:58:77:63:33:88:51:80:53:
e2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:06:13:44:CF:28:51:EB:2E:20:6F:82:CE:5B:76:17:0D:D6:86:A7
X509v3 Authority Key Identifier:
keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:700::/40
Signature Algorithm: sha256WithRSAEncryption
28:9b:8b:94:37:bc:14:b5:e2:98:b9:63:63:76:c0:ff:47:f1:
6e:52:58:c7:f9:95:13:01:43:ca:81:21:98:5c:6e:2a:9a:ab:
e0:2f:9c:5a:78:ce:91:f0:87:0c:98:d1:8c:a1:33:8a:24:65:
ad:d9:c9:2f:96:39:42:12:00:1b:6f:e9:87:e7:56:20:4f:46:
17:92:f9:f3:29:7d:ca:ef:00:07:85:a8:02:48:b8:43:1a:60:
51:e2:7f:22:59:35:18:35:90:56:b1:eb:ca:a1:05:07:08:c4:
99:cf:21:38:84:95:25:fa:a4:45:d7:fc:30:13:03:a5:18:b2:
5d:79:d2:33:30:98:04:02:0c:3a:0f:5e:72:b7:fa:16:fa:b9:
3a:d0:b1:c1:b7:b4:01:a2:fa:e1:0d:48:92:28:1e:49:26:3f:
8e:21:3f:be:b0:3d:3f:88:21:a2:a4:02:40:9a:cc:5b:d4:47:
67:98:23:d9:bb:3c:76:60:98:db:b9:e9:72:a1:85:ec:e1:90:
44:1d:ef:d3:bb:c2:22:84:dc:2e:5f:c8:61:8d:db:01:27:99:
ee:a8:1d:fa:ae:60:ed:ee:e9:9c:0c:38:d9:73:0a:17:5f:1e:
13:c3:95:43:b1:27:73:71:59:c8:34:0c:12:fa:1f:fb:1c:c0:
08:98:58:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 00:25:46 2025 by rpki-client