Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234352e3235352e302f32342d3234203d3e203537313732.roa
File: 3138352e3234352e3235352e302f32342d3234203d3e203537313732.roa (raw, json)
Hash identifier: koaRLv3xZwxQYA1SBxUECTVb9jkab99/tEbVzjeQZIU=
Subject key identifier: E2:63:17:8E:68:C8:D4:81:2F:DE:4F:F6:AF:53:EC:BF:19:74:84:59
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 1954EB26C60DB696CAEB6FA72EDD1381BC3595D4
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234352e3235352e302f32342d3234203d3e203537313732.roa
Signing time: Mon 27 Mar 2023 08:27:44 +0000
ROA not before: Mon 27 Mar 2023 08:22:44 +0000
ROA not after: Mon 25 Mar 2024 08:27:44 +0000
asID: 57172
IP address blocks: 185.245.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:54:eb:26:c6:0d:b6:96:ca:eb:6f:a7:2e:dd:13:81:bc:35:95:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Mar 27 08:22:44 2023 GMT
Not After : Mar 25 08:27:44 2024 GMT
Subject: CN=E263178E68C8D4812FDE4FF6AF53ECBF19748459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ea:a0:08:92:c9:7e:8a:c1:42:15:1c:8c:87:
f5:18:95:a0:ad:2c:88:21:3c:b7:0b:49:e7:4b:ab:
9c:1b:62:ff:2c:b8:aa:92:32:d1:04:26:13:97:9c:
4c:e4:17:bb:7e:55:f6:d1:df:35:6e:a8:78:9d:13:
b2:fb:65:03:36:61:e6:5f:de:83:48:5c:f9:4e:15:
f6:8f:4b:2f:1e:cd:32:99:43:f7:78:a2:a3:99:ef:
78:16:92:2d:a6:b8:1d:91:a8:4f:cc:a4:1a:b4:84:
b8:c5:51:e8:3b:43:21:18:d3:05:2d:f6:98:18:0a:
c7:74:7a:ac:67:56:14:b3:d9:61:0f:cc:de:a1:28:
71:2c:d0:63:3c:8f:71:92:2a:75:50:7b:96:17:36:
76:04:a5:a2:5c:2f:49:e7:a9:3f:ba:8c:e5:1c:54:
73:cd:fd:3e:e2:10:57:14:e8:d4:d5:e8:11:95:2b:
3e:ae:e9:84:02:7a:e4:25:02:96:f6:95:a8:a5:da:
39:ea:9b:0a:39:d5:90:4a:57:d2:d2:50:3b:ca:b2:
75:eb:8e:bc:8e:8d:09:3b:f8:25:42:4d:42:d7:c4:
6c:8a:8f:82:36:13:37:27:f9:4a:17:39:78:e4:ef:
5e:e9:aa:0a:f3:e3:c9:19:85:08:cd:4e:73:81:21:
5d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:63:17:8E:68:C8:D4:81:2F:DE:4F:F6:AF:53:EC:BF:19:74:84:59
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234352e3235352e302f32342d3234203d3e203537313732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.255.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5e:6e:86:a8:3b:36:34:30:c1:2e:b0:5c:fd:6f:c8:ed:d3:
c3:f5:ce:0f:45:19:a9:1d:d1:72:db:73:40:c8:12:a0:a4:fc:
b0:e5:05:92:9a:ac:3d:31:fd:23:1b:a0:22:71:3f:39:e3:b6:
c1:a6:9b:6b:17:0d:42:e4:38:a7:fd:31:ae:44:85:34:2b:38:
2e:d5:0b:8c:9c:7d:b1:b6:7a:2e:0e:5f:c4:68:9f:00:e3:0a:
86:ed:1a:63:5d:e3:d0:4d:94:83:85:a9:79:ea:ff:aa:e0:42:
bd:83:5a:30:62:d2:85:3d:c7:e3:fe:c6:5f:90:f1:e2:7c:10:
cd:63:b9:9e:16:ac:43:c2:9e:3b:78:e9:54:0a:e3:66:89:d8:
fb:79:95:c1:97:6d:7d:bd:dd:0a:a1:19:2d:43:dd:9c:2a:23:
5a:9f:6d:d4:4d:01:be:e0:3a:3f:78:cd:5f:45:f9:89:99:3b:
3b:6e:3c:db:c3:78:84:22:d2:5c:b7:78:4d:9d:64:bd:27:f8:
99:e3:5f:b4:f0:d5:57:28:6d:44:92:e8:62:2b:ce:4e:4e:d7:
bb:56:7b:6a:ee:e1:58:9b:15:16:6f:cd:cf:f4:63:be:c3:fe:
a4:fb:60:fe:d9:34:80:b6:50:f6:b3:04:08:30:01:b4:78:8e:
17:74:d6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org