Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138302e302f32332d3234203d3e20313336373837.roa
File: 3138352e3138332e3138302e302f32332d3234203d3e20313336373837.roa (raw, json)
Hash identifier: B+oXuDfxSZUU7wN2UZLO8H28408tUIyHKQvl4YxciVM=
Subject key identifier: 4D:85:3B:DA:3D:FD:F1:50:1B:F1:14:4D:B8:95:68:E6:AF:E7:F5:0D
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 16E34EBE912FF2E14805BAB413F488627DD4C43A
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138302e302f32332d3234203d3e20313336373837.roa
Signing time: Mon 27 Mar 2023 08:27:42 +0000
ROA not before: Mon 27 Mar 2023 08:22:42 +0000
ROA not after: Mon 25 Mar 2024 08:27:42 +0000
asID: 136787
IP address blocks: 185.183.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e3:4e:be:91:2f:f2:e1:48:05:ba:b4:13:f4:88:62:7d:d4:c4:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Mar 27 08:22:42 2023 GMT
Not After : Mar 25 08:27:42 2024 GMT
Subject: CN=4D853BDA3DFDF1501BF1144DB89568E6AFE7F50D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:24:53:f3:d8:8d:7e:1f:9f:23:f2:30:84:
d1:ab:87:28:f3:4f:a4:5b:d8:41:47:66:ec:42:83:
30:c8:ea:f9:77:1a:85:1d:9f:06:a8:ba:b4:ac:7d:
5e:49:55:6e:78:0d:31:d6:5c:65:e3:c3:70:22:f5:
2c:d0:4e:9a:0f:2e:cf:1d:69:d0:14:d6:d3:41:ec:
81:c5:56:ce:64:9f:cc:0e:c8:ad:99:5d:3c:4e:ba:
ac:cf:29:6c:c4:ee:27:c8:a0:ce:f9:8f:dc:29:22:
07:b2:27:d5:e8:3c:90:0d:aa:82:b7:f5:cc:66:ee:
06:fd:d7:30:58:eb:12:48:44:9b:18:96:50:b1:4f:
de:e2:91:c1:c4:3f:d0:6a:7d:44:c1:21:98:9e:09:
f2:88:26:a5:66:fe:89:84:0f:77:28:3a:e4:a4:72:
b6:95:57:95:bd:34:76:f9:c1:92:d2:5e:bd:a3:31:
72:18:b7:80:1e:8f:71:a1:ac:c3:da:29:4d:5f:2d:
43:22:4f:75:79:6a:c4:9c:1e:56:42:d8:fa:bd:fa:
3a:57:cb:ef:11:77:05:32:4e:b7:0c:38:10:3d:d7:
26:f9:6b:97:31:a7:76:a9:5e:b5:06:7a:9d:95:92:
3d:f5:a2:20:32:62:bc:96:5f:c4:ac:4d:1e:2b:01:
b5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:85:3B:DA:3D:FD:F1:50:1B:F1:14:4D:B8:95:68:E6:AF:E7:F5:0D
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138302e302f32332d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.180.0/23
Signature Algorithm: sha256WithRSAEncryption
36:e0:d2:6b:61:23:bf:a5:10:1b:c4:d2:22:84:38:1e:b1:a9:
4a:05:a3:2e:76:9f:42:67:2a:e3:91:13:92:f7:e9:ea:79:87:
06:1e:1f:68:e2:3a:70:4c:2d:60:93:94:b9:6f:8e:ed:38:d3:
c7:5c:6e:64:93:4a:3c:a2:11:dc:73:f4:cb:5c:33:cb:0d:f3:
fe:f0:c4:58:c7:fb:4b:69:6f:17:7e:80:bc:f5:7f:26:fa:1a:
74:12:72:43:6b:15:fb:ab:d1:52:52:f0:dc:e5:a3:34:6b:2f:
78:74:34:76:f0:a5:ee:00:93:0b:28:59:32:ec:a9:b0:30:9b:
37:b5:be:62:fe:a5:ab:d7:48:01:bb:91:0d:c7:79:b7:4f:fc:
d9:24:8f:f9:23:90:6b:f7:ae:22:fd:f9:03:a2:fa:2a:4b:91:
75:62:e1:93:aa:03:7a:13:33:9e:24:11:8c:b4:03:02:be:94:
49:9a:1f:e0:7d:43:2e:d1:12:02:7d:19:2f:bf:b8:46:bf:8b:
13:62:79:9d:07:2c:c2:8d:bf:f8:4c:1e:e4:51:a3:6c:57:53:
30:cf:ed:ea:8b:0d:f7:f8:0c:04:f4:66:f0:44:1c:19:3b:cc:
98:2e:b9:e3:e8:69:dd:65:cc:cd:8b:cd:04:e2:3c:aa:9e:58:
dc:fc:2b:4c
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUFuNOvpEv8uFIBbq0E/SIYn3UxDowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yMzAzMjcwODIyNDJaFw0yNDAzMjUwODI3NDJaMDMxMTAvBgNV
BAMTKDREODUzQkRBM0RGREYxNTAxQkYxMTQ0REI4OTU2OEU2QUZFN0Y1MEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO4iRT89iNfh+fI/IwhNGrhyjz
T6Rb2EFHZuxCgzDI6vl3GoUdnwaourSsfV5JVW54DTHWXGXjw3Ai9SzQTpoPLs8d
adAU1tNB7IHFVs5kn8wOyK2ZXTxOuqzPKWzE7ifIoM75j9wpIgeyJ9XoPJANqoK3
9cxm7gb91zBY6xJIRJsYllCxT97ikcHEP9BqfUTBIZieCfKIJqVm/omED3coOuSk
craVV5W9NHb5wZLSXr2jMXIYt4Aej3GhrMPaKU1fLUMiT3V5asScHlZC2Pq9+jpX
y+8RdwUyTrcMOBA91yb5a5cxp3apXrUGep2Vkj31oiAyYryWX8SsTR4rAbXXAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUTYU72j398VAb8RRNuJVo5q/n9Q0wHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMTM4MzMyZTMx
MzgzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAbm3tDANBgkqhkiG9w0BAQsFAAOCAQEANuDSa2Ejv6UQG8TSIoQ4HrGpSgWj
LnafQmcq45ETkvfp6nmHBh4faOI6cEwtYJOUuW+O7TjTx1xuZJNKPKIR3HP0y1wz
yw3z/vDEWMf7S2lvF36AvPV/JvoadBJyQ2sV+6vRUlLw3OWjNGsveHQ0dvCl7gCT
CyhZMuypsDCbN7W+Yv6lq9dIAbuRDcd5t0/82SSP+SOQa/euIv35A6L6KkuRdWLh
k6oDehMzniQRjLQDAr6USZof4H1DLtESAn0ZL7+4Rr+LE2J5nQcswo2/+Ewe5FGj
bFdTMM/t6osN9/gMBPRm8EQcGTvMmC654+hp3WXMzYvNBOI8qp5Y3PwrTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org