Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233302e302f32342d3234203d3e203432333636.roa
File: 3138352e3231362e3233302e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: M2pEqmlqKiNEREaECVNoO50Gsul2z6ttlDK58BOjQxw=
Subject key identifier: F7:01:5C:EB:05:F3:C8:7C:8A:01:C7:44:23:03:16:AB:69:1D:D6:31
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 3E4F496E7B11C6BC196DD8DA0B2BB53B6BA0F667
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233302e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 May 2023 15:42:08 +0000
ROA not before: Sun 07 May 2023 15:37:08 +0000
ROA not after: Sun 05 May 2024 15:42:08 +0000
asID: 42366
IP address blocks: 185.216.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:4f:49:6e:7b:11:c6:bc:19:6d:d8:da:0b:2b:b5:3b:6b:a0:f6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: May 7 15:37:08 2023 GMT
Not After : May 5 15:42:08 2024 GMT
Subject: CN=F7015CEB05F3C87C8A01C744230316AB691DD631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:40:52:93:62:d9:fb:2a:9b:67:34:e2:b6:98:
4b:7b:47:a7:8a:57:22:48:6b:61:53:b3:bf:4d:cc:
ad:13:d8:5b:3c:10:cf:e5:ea:45:5b:e7:8a:cb:37:
bb:60:f9:a4:e8:ea:26:22:9d:9a:1e:47:5b:9c:d2:
f0:d7:7b:83:62:38:fa:bd:b3:57:71:43:02:11:6f:
ba:c3:54:02:b7:24:f2:03:38:9b:05:32:d3:7f:43:
bd:a6:58:63:ff:27:1b:dc:2d:64:0b:8c:fc:0e:5a:
26:9f:21:15:7a:71:2b:1b:49:08:30:4d:53:91:16:
47:de:ea:73:ac:11:9b:c4:48:0e:bf:10:1d:c9:f7:
c1:ba:bc:8e:92:63:f2:74:94:c3:4c:1c:18:66:7f:
e0:bb:74:31:73:38:7e:47:05:73:29:9b:4d:f5:12:
3a:6f:76:96:49:ba:b0:d3:dc:78:66:ef:25:22:c9:
8a:73:1a:f0:b7:b0:f1:49:06:ea:c5:d7:ac:44:13:
03:bc:58:2c:4f:0b:bb:8d:86:b5:82:ef:0e:f7:65:
b7:61:0e:e9:27:04:df:b3:59:52:e3:5d:1c:92:f1:
b5:7d:ea:da:6c:4d:bd:ef:aa:82:a4:44:be:04:c3:
c1:37:24:2f:42:37:50:de:a1:6a:6a:32:74:11:89:
b6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:01:5C:EB:05:F3:C8:7C:8A:01:C7:44:23:03:16:AB:69:1D:D6:31
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233302e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.230.0/24
Signature Algorithm: sha256WithRSAEncryption
52:9f:b8:00:19:d6:4e:00:d5:68:15:b4:72:1d:e8:ec:20:cb:
d4:5f:a8:e8:94:b9:b6:7d:33:2d:5e:a4:52:61:71:b6:e0:34:
25:2a:9b:0d:05:af:a8:1e:87:76:61:ff:a3:8d:24:75:84:57:
79:51:63:13:29:95:75:17:81:0e:4a:9a:57:3e:ec:7c:3b:2d:
80:8d:68:2a:b6:ca:66:42:47:ad:ea:aa:2f:ae:71:cf:ff:52:
cd:cd:bd:e8:a9:ba:28:da:b1:1e:51:79:48:78:81:a1:25:dc:
e5:fd:ce:1f:ee:f8:4c:29:3c:99:fe:82:9f:bc:40:ee:57:e1:
1f:47:10:74:9b:70:de:9a:06:c9:e6:f2:ce:e9:f2:49:fd:e1:
02:e2:76:c9:84:71:a3:56:e3:34:9d:9d:43:c0:ff:92:fc:1f:
9a:d6:74:42:19:58:4e:db:b2:bb:13:9b:f2:a5:fd:c7:1b:b8:
60:fc:ef:d2:7e:6d:05:5b:f3:be:00:6a:71:5a:c8:3e:d1:0d:
8a:45:2b:ea:f6:54:9b:ff:bb:33:08:ee:50:6e:7f:af:3a:c0:
8d:86:39:73:e0:bb:da:32:db:4a:7c:4b:53:f1:93:75:d7:f0:
ea:53:e5:07:4a:98:ec:3a:08:bc:a9:20:5c:55:41:40:c6:12:
1b:0f:23:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:11 2024 by rpki-client on console-ams.rpki-client.org