Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3132382e302f32302d3234203d3e203632323430.roa
File: 3134302e3135302e3132382e302f32302d3234203d3e203632323430.roa (raw, json)
Hash identifier: f6WRFcN+3Nl64gAdH8Ngw4Vt13b7zrQsRsCJNOiTwLY=
Subject key identifier: 6C:5E:94:84:BC:D9:58:59:53:04:A6:4D:B0:E9:B8:DC:9B:18:41:2E
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 665D1F6F4771EEC20A43F30886F51C6B4F0C94EF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3132382e302f32302d3234203d3e203632323430.roa
Signing time: Thu 09 Mar 2023 09:59:06 +0000
ROA not before: Thu 09 Mar 2023 09:54:06 +0000
ROA not after: Thu 07 Mar 2024 09:59:06 +0000
asID: 62240
IP address blocks: 140.150.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:5d:1f:6f:47:71:ee:c2:0a:43:f3:08:86:f5:1c:6b:4f:0c:94:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 9 09:54:06 2023 GMT
Not After : Mar 7 09:59:06 2024 GMT
Subject: CN=6C5E9484BCD958595304A64DB0E9B8DC9B18412E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:84:91:4f:a2:23:e4:10:a3:ed:3e:68:5b:50:
e8:fc:e3:0d:d0:35:92:c1:95:b1:ac:cd:d1:98:8d:
39:1b:e8:64:a0:3a:3b:7c:ec:be:b2:52:b3:9e:31:
56:ae:13:fe:9d:3b:57:52:b6:39:4c:9c:6d:69:3b:
85:aa:e4:aa:ac:89:b3:a3:bc:10:fe:9b:9c:4a:a9:
4a:c2:b6:0f:6a:00:ac:90:db:26:ac:17:c1:df:14:
ec:4b:7b:65:e5:11:6b:94:1e:8d:14:db:8d:99:bb:
be:9c:e0:95:2c:3e:5e:9d:b7:6a:4e:f0:ff:95:a6:
b2:99:8a:92:5a:c2:b4:5c:42:ab:74:c2:4d:a3:c5:
d0:51:45:9a:63:d9:40:8c:57:2e:20:fa:bb:4d:ca:
f5:50:5a:ba:7c:70:bd:7d:b9:6a:a2:4f:8d:9e:d9:
bd:2f:fa:d6:62:57:1e:44:aa:f0:ae:87:6e:93:8d:
3c:89:55:bd:d3:20:88:84:23:e8:65:b6:ec:6f:40:
79:05:34:d9:3d:7d:ef:48:2d:7a:d0:45:07:90:01:
ab:ea:df:a0:b0:1d:2c:c3:98:df:99:a2:55:3c:85:
fd:57:c7:0d:b1:d5:55:39:02:e4:55:46:74:58:e1:
e1:37:e5:d6:b6:a7:6e:9f:40:11:75:ed:dc:f1:27:
d6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5E:94:84:BC:D9:58:59:53:04:A6:4D:B0:E9:B8:DC:9B:18:41:2E
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3132382e302f32302d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.128.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:82:87:2a:69:25:7c:d5:4d:c5:68:17:3f:58:77:74:f5:e8:
17:36:20:44:60:52:52:a0:5f:15:9f:51:5f:51:81:c1:fa:5e:
2e:98:be:e2:f3:73:d9:7b:f4:ed:e6:70:3a:0f:11:68:8a:2d:
1e:1c:e2:52:1b:79:a2:15:29:e6:96:3f:da:df:38:30:55:18:
2d:37:7c:3b:9a:53:be:d5:30:3a:75:c7:84:d6:c8:7a:e9:dd:
2f:ab:fe:13:a5:f9:39:ee:97:13:d2:89:ef:17:67:35:0d:27:
44:d3:05:55:a6:79:db:3a:77:c7:f1:35:58:27:cf:44:ca:52:
49:20:36:26:6a:79:c8:f7:92:22:26:b8:62:da:f8:61:4b:86:
61:b0:b3:16:aa:63:88:61:30:46:0a:28:22:49:1f:3c:a3:9f:
0d:97:86:32:8b:03:3a:24:cd:e6:fd:2c:ac:20:9f:e4:08:36:
1e:bb:f8:c7:6a:2b:fc:52:b2:e2:2d:db:c6:5c:f1:1f:98:d1:
30:7f:09:e5:e0:41:a0:5a:fb:88:97:92:2f:1c:9f:e4:d8:be:
9c:2f:28:f3:d6:6c:77:1b:2f:4f:46:8a:44:01:56:92:b1:97:
ff:ad:ae:bf:3b:75:6f:a2:78:1b:ae:49:50:bc:b9:40:f1:83:
d4:c2:e8:cc
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUZl0fb0dx7sIKQ/MIhvUca08MlO8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yMzAzMDkwOTU0MDZaFw0yNDAzMDcwOTU5MDZaMDMxMTAvBgNV
BAMTKDZDNUU5NDg0QkNEOTU4NTk1MzA0QTY0REIwRTlCOERDOUIxODQxMkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIhJFPoiPkEKPtPmhbUOj84w3Q
NZLBlbGszdGYjTkb6GSgOjt87L6yUrOeMVauE/6dO1dStjlMnG1pO4Wq5KqsibOj
vBD+m5xKqUrCtg9qAKyQ2yasF8HfFOxLe2XlEWuUHo0U242Zu76c4JUsPl6dt2pO
8P+VprKZipJawrRcQqt0wk2jxdBRRZpj2UCMVy4g+rtNyvVQWrp8cL19uWqiT42e
2b0v+tZiVx5EqvCuh26TjTyJVb3TIIiEI+hltuxvQHkFNNk9fe9ILXrQRQeQAavq
36CwHSzDmN+ZolU8hf1Xxw2x1VU5AuRVRnRY4eE35da2p26fQBF17dzxJ9bHAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUbF6UhLzZWFlTBKZNsOm43JsYQS4wHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDMwMmUzMTM1MzAyZTMx
MzIzODJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDM2MzIzMjM0MzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BASMloAwDQYJKoZIhvcNAQELBQADggEBAH2ChyppJXzVTcVoFz9Yd3T16Bc2IERg
UlKgXxWfUV9RgcH6Xi6YvuLzc9l79O3mcDoPEWiKLR4c4lIbeaIVKeaWP9rfODBV
GC03fDuaU77VMDp1x4TWyHrp3S+r/hOl+TnulxPSie8XZzUNJ0TTBVWmeds6d8fx
NVgnz0TKUkkgNiZqecj3kiImuGLa+GFLhmGwsxaqY4hhMEYKKCJJHzyjnw2XhjKL
Azokzeb9LKwgn+QINh67+MdqK/xSsuIt28Zc8R+Y0TB/CeXgQaBa+4iXki8cn+TY
vpwvKPPWbHcbL09GikQBVpKxl/+trr87dW+ieBuuSVC8uUDxg9TC6Mw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org