Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134382e3133362e302f32322d3234203d3e203432333636.roa
File: 34352e3134382e3133362e302f32322d3234203d3e203432333636.roa (raw, json)
Hash identifier: HePopiAhj6rRYJacT6hGn223N14R2WGoAL2u7dgz618=
Subject key identifier: 88:AF:EF:9C:2A:B1:08:16:F9:91:B8:20:02:04:71:4E:08:16:C4:35
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2C9A78225848987BEDE9B212C413044287F560D4
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134382e3133362e302f32322d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:24:59 +0000
ROA not before: Mon 17 Apr 2023 11:19:59 +0000
ROA not after: Mon 15 Apr 2024 11:24:59 +0000
asID: 42366
IP address blocks: 45.148.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:9a:78:22:58:48:98:7b:ed:e9:b2:12:c4:13:04:42:87:f5:60:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:19:59 2023 GMT
Not After : Apr 15 11:24:59 2024 GMT
Subject: CN=88AFEF9C2AB10816F991B8200204714E0816C435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:13:e7:84:4f:f4:17:ee:ca:31:e1:57:75:89:
0e:54:b1:0a:a5:47:ed:0a:cb:ab:bf:9a:e5:01:d5:
39:0d:05:5f:78:3e:65:dc:9b:0c:61:91:94:b4:10:
ee:b2:d9:c2:03:7a:f6:2e:8c:aa:da:e7:99:4d:ca:
99:43:cd:8b:98:94:5c:c2:31:ef:c5:39:ae:c2:da:
88:4f:1c:1c:cb:36:7b:8d:35:0a:cc:32:45:54:7c:
2d:3b:f8:2e:ce:cf:ff:88:4d:37:1f:4f:97:38:5a:
ec:f9:ac:a4:8e:3e:78:49:e8:55:38:b4:61:fc:d3:
38:a5:78:c2:57:eb:e0:37:a4:c3:37:3a:04:d9:23:
3d:7c:3a:83:07:3c:94:96:5d:52:7c:40:66:0c:1a:
25:6f:89:54:58:36:ee:2f:d3:c0:4a:d3:bd:8a:39:
01:98:1a:87:a4:c6:a8:bb:39:35:08:c5:92:d9:e9:
8f:67:21:d0:8f:ea:76:95:5f:2f:36:e8:c3:a1:a6:
ea:39:72:4f:6a:1f:f5:65:af:ed:fa:7b:10:d4:b9:
84:6f:d3:11:69:bf:04:71:51:43:01:6c:2a:d3:74:
3e:21:02:bb:74:9d:dd:15:a2:9b:0f:a6:7d:e9:0c:
4a:91:57:83:33:78:27:61:dc:48:50:1a:96:3f:04:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:AF:EF:9C:2A:B1:08:16:F9:91:B8:20:02:04:71:4E:08:16:C4:35
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134382e3133362e302f32322d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.136.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:72:5b:c8:1c:0a:5e:c4:42:ae:13:de:ca:53:3c:f7:9c:e1:
a8:d2:ec:da:6d:fb:e7:db:fe:8a:06:90:2c:14:e7:d1:0c:95:
78:d4:76:0f:22:36:91:47:56:a5:10:c6:a6:8a:f8:40:e4:9b:
22:18:6d:7d:9c:13:db:60:c5:e5:ae:c6:0b:ca:9d:0c:3e:87:
1e:7b:47:13:24:c1:60:6f:d6:53:59:cd:8d:9f:30:67:cb:d0:
6e:98:08:16:dd:0c:ea:e9:f1:5f:e6:70:43:8f:58:56:73:37:
b7:3c:8a:32:46:83:4a:4a:0e:20:e4:ea:06:68:8e:a9:f1:e6:
4b:3f:7a:1c:b2:20:9a:3f:cb:8f:4a:1f:1c:57:45:6d:ab:be:
af:60:69:4b:75:33:8c:4a:e7:8b:51:a7:ea:de:8d:78:2e:9d:
38:8c:a0:49:ba:ec:c1:8d:55:1c:29:01:30:dc:f9:44:79:9f:
3b:87:11:d6:a6:ab:19:c2:57:73:a0:ab:9f:47:34:3b:ba:dc:
ea:cf:ac:af:14:b1:1b:ca:ae:15:b0:ef:13:f6:b4:75:66:46:
35:9e:a3:e7:50:6d:e7:8c:f3:f7:65:e2:6b:b2:2a:71:49:bc:
35:b4:5f:0a:81:d0:22:59:2a:d6:66:73:19:28:24:06:8a:e0:
9d:9e:d2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org