Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32332e302f32342d3234203d3e203432333636.roa
File: 3138352e3232302e32332e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: jFbBQbOs7AfUBC0a7n2lU/uaMqYLTsVjjYfHevSUSTM=
Subject key identifier: 75:12:CD:1A:39:F7:A0:19:AB:27:9B:80:6F:BC:76:3E:28:8D:51:6A
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 77D60C9B2A36F9D77B3642EA4542BF4DE6CE5F89
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32332e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 May 2023 15:42:23 +0000
ROA not before: Sun 07 May 2023 15:37:23 +0000
ROA not after: Sun 05 May 2024 15:42:23 +0000
asID: 42366
IP address blocks: 185.220.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:d6:0c:9b:2a:36:f9:d7:7b:36:42:ea:45:42:bf:4d:e6:ce:5f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: May 7 15:37:23 2023 GMT
Not After : May 5 15:42:23 2024 GMT
Subject: CN=7512CD1A39F7A019AB279B806FBC763E288D516A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b7:89:48:f9:8b:3f:df:35:5c:d8:32:59:73:
3c:da:e5:59:82:d2:d1:c1:a5:44:cd:c3:a4:bb:ac:
0b:65:7e:a5:ea:10:a9:cc:02:e1:47:03:7c:be:b8:
ac:8d:cc:7d:b0:8b:83:d0:c7:e3:e3:7e:fd:35:9e:
cf:5d:5d:46:2e:d7:b1:10:b4:14:0b:a6:f1:33:cf:
b9:c9:6b:1b:27:54:64:a2:8b:bc:29:0c:ce:4a:c2:
04:74:68:88:bc:31:84:4d:48:9d:fc:19:2f:d5:1a:
46:c7:8a:79:64:35:ec:6e:6f:ab:03:5e:88:4e:6a:
30:3c:27:74:90:d7:57:76:62:41:ef:15:96:3b:95:
11:18:e7:39:68:7f:55:30:0f:76:1b:f2:4f:59:b2:
4f:e9:39:79:a8:69:92:c2:d7:de:3a:81:a6:63:52:
75:b5:59:98:7e:7c:0e:4c:95:31:23:d0:b1:2f:d4:
d9:80:52:69:01:29:d7:e5:25:dd:ab:61:d0:92:be:
9a:03:f5:f5:6e:e2:9b:7a:bc:b2:2c:b8:20:a0:76:
79:9e:9c:7d:1c:16:8a:0c:e7:e8:e7:9a:b1:83:ed:
ae:c1:c7:98:04:6e:c2:ba:02:5f:80:18:11:f6:f2:
19:ed:ca:bc:98:1e:b5:6f:6e:0a:d8:3b:92:76:b9:
71:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:12:CD:1A:39:F7:A0:19:AB:27:9B:80:6F:BC:76:3E:28:8D:51:6A
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32332e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2c:0b:38:87:64:5b:17:35:bf:11:4d:56:bd:2c:38:e1:93:
35:e8:7d:a4:20:6c:1e:ef:2c:83:d3:6c:54:94:28:d1:73:2a:
0d:af:fe:c8:57:86:ed:32:09:1f:87:4b:79:7c:90:b7:b5:ad:
4f:b2:1c:1e:a0:a9:08:1c:48:9d:62:74:98:08:0c:a9:90:14:
71:68:a7:70:03:4f:52:c5:e1:34:5f:9c:a4:3b:dd:a4:43:36:
16:29:d5:a7:b3:89:c3:da:81:cf:7e:d7:8f:f0:a5:cf:26:b7:
4e:ae:eb:79:5f:04:44:56:26:d4:e4:b4:14:e5:24:f3:b7:fa:
cc:28:97:a4:39:71:ee:a5:ba:1a:f7:f4:4a:69:7e:82:3a:78:
11:f3:8a:e7:fa:df:23:f6:1a:22:58:47:00:4b:ee:fa:f5:01:
51:8d:ee:48:6a:3c:a7:b2:f7:4c:72:cd:03:b0:22:d6:a6:25:
a2:40:19:53:b8:d1:8f:15:81:42:18:97:e5:02:ed:c6:6b:9f:
ca:af:54:df:5f:60:bd:d5:58:5e:6e:ee:cb:29:32:34:00:c7:
ba:5b:12:3b:3f:9f:67:9e:ae:2a:53:68:6d:45:c5:50:f8:52:
fb:12:cf:41:04:80:53:3b:19:c3:38:49:bd:16:12:06:e5:7b:
2b:70:0e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org