Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35362e302f32332d3234203d3e203432333636.roa
File: 3138352e3234332e35362e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: GcSKr0DLJgVvnKAnsp30HfVQ4e22kXpWg423U/0W+9I=
Subject key identifier: 54:8E:F0:90:80:DF:B1:0E:FD:B2:2F:46:0D:88:82:75:FC:81:3E:67
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 652815C881AE36D3E3C4E7171E9D66E45D01F731
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35362e302f32332d3234203d3e203432333636.roa
Signing time: Sun 07 May 2023 15:42:54 +0000
ROA not before: Sun 07 May 2023 15:37:54 +0000
ROA not after: Sun 05 May 2024 15:42:54 +0000
asID: 42366
IP address blocks: 185.243.56.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:28:15:c8:81:ae:36:d3:e3:c4:e7:17:1e:9d:66:e4:5d:01:f7:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: May 7 15:37:54 2023 GMT
Not After : May 5 15:42:54 2024 GMT
Subject: CN=548EF09080DFB10EFDB22F460D888275FC813E67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e4:22:92:44:89:87:a1:75:8e:75:97:09:0d:
4c:8c:4d:b0:f3:11:78:84:ad:ec:6a:ae:28:d9:42:
e8:b8:1c:d5:d8:3e:2f:92:65:ea:3d:c5:38:92:14:
32:23:fc:f0:db:85:e8:08:58:a9:60:b2:cf:78:84:
bb:5b:1e:ea:c0:d3:e1:0a:f2:e4:f0:e3:74:53:70:
83:c5:30:2a:f9:5e:15:d0:81:40:37:c3:66:e6:e1:
f5:6e:84:d0:20:80:e9:67:94:95:cb:c8:65:91:d6:
49:90:29:5e:56:ec:70:82:fc:1d:ed:c9:37:93:eb:
bf:26:69:bc:5f:47:b0:51:c5:61:97:2e:2d:29:16:
5f:6e:47:9f:91:44:56:ed:54:a5:5a:03:64:81:81:
3b:7d:69:43:51:06:46:58:38:56:e3:45:f3:3b:6c:
88:ca:a6:fb:e7:b9:39:4d:4a:2b:6c:58:38:50:f0:
b7:f5:6d:0d:94:0f:e6:07:de:ce:19:68:a1:99:bd:
cc:61:27:ac:b2:27:61:fa:77:d7:6e:c4:d3:3c:e6:
41:38:a4:46:4a:46:ac:bf:6f:bb:39:70:67:d2:99:
b1:91:d3:74:e3:93:44:05:3b:c6:cf:29:c8:1c:7b:
cf:ee:87:a4:df:09:e3:46:bb:8f:1a:d8:3e:ac:1a:
bd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8E:F0:90:80:DF:B1:0E:FD:B2:2F:46:0D:88:82:75:FC:81:3E:67
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35362e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.56.0/23
Signature Algorithm: sha256WithRSAEncryption
29:3f:e5:2f:9e:1d:2b:59:30:85:dc:54:44:5a:98:04:27:55:
a1:99:d3:1c:76:c8:31:ee:72:c7:6a:20:b7:c9:a8:62:82:c6:
3d:e2:16:85:42:9a:0d:0c:83:99:c5:50:13:4b:97:e6:94:cb:
76:7d:62:ba:02:e0:4a:97:0f:6a:a0:c8:9f:96:28:51:18:1f:
33:bb:e1:6e:2c:94:38:35:43:e3:6f:64:45:0a:85:6e:f2:94:
11:23:5c:49:96:0f:ee:59:d1:d4:6e:63:02:5a:6c:84:a0:2f:
b8:09:b3:5f:39:e2:1c:29:0b:0b:7a:ab:bf:06:8f:9f:ca:45:
d0:48:42:5e:61:07:64:5d:3b:b9:6a:df:6b:d8:d6:bd:84:4e:
6d:25:aa:f3:d8:7f:49:90:87:40:03:b3:cd:9a:8e:48:d4:7b:
7e:0f:15:3f:f4:be:9d:ba:16:ce:61:dd:1b:72:85:3a:e4:b5:
7b:64:f9:90:ff:9e:af:69:03:e1:03:83:43:cf:7f:dc:2f:23:
61:44:6c:92:10:c6:a5:f8:ed:00:84:ba:80:62:be:c3:cb:ba:
65:00:d1:39:21:59:2a:64:d1:f3:7c:f8:5a:1f:69:34:b0:5f:
a5:e9:fc:2c:57:f6:46:57:4a:bb:71:b1:65:48:e1:cf:10:87:
04:80:37:55
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZSgVyIGuNtPjxOcXHp1m5F0B9zEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yMzA1MDcxNTM3NTRaFw0yNDA1MDUxNTQyNTRaMDMxMTAvBgNV
BAMTKDU0OEVGMDkwODBERkIxMEVGREIyMkY0NjBEODg4Mjc1RkM4MTNFNjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK5CKSRImHoXWOdZcJDUyMTbDz
EXiErexqrijZQui4HNXYPi+SZeo9xTiSFDIj/PDbhegIWKlgss94hLtbHurA0+EK
8uTw43RTcIPFMCr5XhXQgUA3w2bm4fVuhNAggOlnlJXLyGWR1kmQKV5W7HCC/B3t
yTeT678mabxfR7BRxWGXLi0pFl9uR5+RRFbtVKVaA2SBgTt9aUNRBkZYOFbjRfM7
bIjKpvvnuTlNSitsWDhQ8Lf1bQ2UD+YH3s4ZaKGZvcxhJ6yyJ2H6d9duxNM85kE4
pEZKRqy/b7s5cGfSmbGR03Tjk0QFO8bPKcgce8/uh6TfCeNGu48a2D6sGr0fAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUVI7wkIDfsQ79si9GDYiCdfyBPmcwHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMjM0MzMyZTM1
MzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDMyMzMzNjM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
ufM4MA0GCSqGSIb3DQEBCwUAA4IBAQApP+Uvnh0rWTCF3FREWpgEJ1WhmdMcdsgx
7nLHaiC3yahigsY94haFQpoNDIOZxVATS5fmlMt2fWK6AuBKlw9qoMiflihRGB8z
u+FuLJQ4NUPjb2RFCoVu8pQRI1xJlg/uWdHUbmMCWmyEoC+4CbNfOeIcKQsLequ/
Bo+fykXQSEJeYQdkXTu5at9r2Na9hE5tJarz2H9JkIdAA7PNmo5I1Ht+DxU/9L6d
uhbOYd0bcoU65LV7ZPmQ/56vaQPhA4NDz3/cLyNhRGySEMal+O0AhLqAYr7Dy7pl
ANE5IVkqZNHzfPhaH2k0sF+l6fwsV/ZGV0q7cbFlSOHPEIcEgDdV
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org