Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3234302e3234342e302f32322d3234203d3e203432333636.roa
File: 3138352e3234302e3234342e302f32322d3234203d3e203432333636.roa (raw, json)
Hash identifier: gRjGafxOqT1zIX3NpBHevA+yjBwxlRh+S8w8CnIvXAU=
Subject key identifier: F2:BC:A4:3A:AC:89:B0:62:15:B4:2A:24:C0:55:A0:97:C8:F4:4F:E5
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 78B38E9D7B5E999DF7D151997A65AFA3E7BA2CAD
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3234302e3234342e302f32322d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:21:20 +0000
ROA not before: Mon 17 Apr 2023 11:16:20 +0000
ROA not after: Mon 15 Apr 2024 11:21:20 +0000
asID: 42366
IP address blocks: 185.240.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:b3:8e:9d:7b:5e:99:9d:f7:d1:51:99:7a:65:af:a3:e7:ba:2c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:16:20 2023 GMT
Not After : Apr 15 11:21:20 2024 GMT
Subject: CN=F2BCA43AAC89B06215B42A24C055A097C8F44FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:8b:b1:dc:67:55:5e:3f:97:a2:82:c5:2f:
f4:1d:64:02:f6:6b:0f:ce:2f:95:0a:4f:09:9b:9e:
21:2a:cb:a0:6f:8b:4b:56:e8:00:b2:94:e3:17:bd:
54:b3:8e:43:c6:09:28:8c:be:98:d7:7e:5f:e9:b7:
56:db:5b:ed:53:86:55:c9:b7:f4:82:95:a1:78:67:
0e:e3:d1:ce:33:6a:a0:bf:c0:8e:40:23:0b:24:90:
e3:57:3d:e0:c6:4d:f7:70:d3:78:c7:c4:3c:ae:e2:
5f:17:0c:6d:29:b5:73:3d:7b:d3:0d:99:4a:3d:d3:
b5:a8:86:65:b2:9d:03:97:23:f4:7c:5f:cb:61:11:
17:b2:f9:37:1e:ea:09:67:06:17:cb:71:17:8d:93:
e8:d8:2d:a0:35:00:95:60:58:a8:aa:62:99:6f:3d:
95:ca:0b:cc:4b:7f:68:26:b6:b9:ee:b1:f4:4b:08:
25:a9:f4:d3:dc:e0:bb:cd:3b:3f:a5:51:0f:d2:62:
bd:68:33:41:f4:7d:59:4a:01:a1:80:6f:81:c1:a5:
2e:7e:fd:7b:3f:7d:72:51:c8:28:5b:81:e5:73:19:
ee:9d:d7:0e:f4:81:1a:05:12:8d:96:c1:cd:d6:ca:
6c:6a:40:47:27:b3:b2:f9:67:16:60:db:b1:5d:41:
9d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BC:A4:3A:AC:89:B0:62:15:B4:2A:24:C0:55:A0:97:C8:F4:4F:E5
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3234302e3234342e302f32322d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.244.0/22
Signature Algorithm: sha256WithRSAEncryption
69:c0:cd:13:19:ad:c2:d7:46:88:f3:94:d3:ab:3f:3c:c4:fd:
f5:5d:0e:bc:93:e5:92:3d:6e:a3:20:8a:d7:d2:34:65:2b:de:
ca:ca:eb:07:20:eb:39:c9:54:28:f7:98:f7:10:52:4c:9b:e3:
40:99:93:68:42:dd:c8:f3:1e:02:ab:13:07:6f:62:a1:c9:44:
75:46:bb:fb:57:0b:0a:6a:62:0e:c5:4f:a3:df:d0:87:36:b9:
1c:75:99:a4:aa:2b:d5:42:27:1e:98:04:5a:57:e7:71:c9:3a:
c0:e2:da:a8:1b:6d:62:bc:96:0e:dd:aa:8e:d3:7a:31:78:16:
ab:ee:6c:dc:0d:d5:17:bd:0c:f4:f6:c1:9c:fe:28:fd:ae:1c:
9d:bf:de:c9:91:9f:e5:36:b2:bf:f8:1a:12:73:8d:fa:ba:89:
99:57:81:83:7d:ca:63:b5:3f:b1:1a:41:79:2b:2b:c9:cd:11:
5c:93:9a:c8:77:7b:49:11:3c:48:f8:e9:f4:14:70:10:4e:8e:
ea:e2:2e:a5:65:58:3f:b9:06:bb:ce:d3:70:38:13:a2:dc:6d:
fa:b3:65:9f:d8:65:6d:0a:63:f4:b3:ae:17:23:af:50:85:67:
b2:a8:4d:c7:79:6f:d8:5e:f8:98:d6:1c:71:30:7c:b8:ba:71:
88:a4:96:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org