Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3234203d3e203339353231.roa
File: 3134302e3135302e3137362e302f32312d3234203d3e203339353231.roa (raw, json)
Hash identifier: wL38OA0LD22Ed/YRvpI1CXLYo4sv+R7DgO2uzm7e1yQ=
Subject key identifier: E4:5F:42:1B:DC:C5:90:F4:16:0B:A6:2B:13:94:F7:6D:73:71:C5:D8
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 576F8E4BB70A1EA6B152A027A0EC85CCD9F81B5F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3234203d3e203339353231.roa
Signing time: Fri 17 Mar 2023 19:06:55 +0000
ROA not before: Fri 17 Mar 2023 19:01:55 +0000
ROA not after: Fri 15 Mar 2024 19:06:55 +0000
asID: 39521
IP address blocks: 140.150.176.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:6f:8e:4b:b7:0a:1e:a6:b1:52:a0:27:a0:ec:85:cc:d9:f8:1b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 17 19:01:55 2023 GMT
Not After : Mar 15 19:06:55 2024 GMT
Subject: CN=E45F421BDCC590F4160BA62B1394F76D7371C5D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:95:7b:a6:2d:34:eb:5c:c5:ee:09:6c:3f:11:
a9:df:6e:d3:67:ea:6b:eb:1e:58:ce:c8:9b:14:61:
54:f2:0e:77:76:79:91:a9:b9:1d:79:99:01:71:7a:
2e:bd:d6:32:55:1d:c3:5a:b5:3b:31:bd:97:8a:20:
c5:b5:4e:9b:d5:db:f3:9d:aa:35:fb:e8:46:21:50:
9b:54:c8:40:d8:65:32:14:a8:38:0b:26:78:91:1d:
f3:cd:06:bb:48:00:e6:a2:4d:8c:99:e0:41:a4:e7:
54:a7:a0:c1:17:5f:d3:cb:ac:18:53:2d:41:ff:51:
5c:5c:60:34:24:30:cb:45:49:bd:4c:d2:9d:c1:ff:
53:f1:fa:82:77:4d:3f:64:f3:d9:26:5e:57:9e:9d:
e7:81:0a:4f:6f:20:a7:ff:95:11:f8:6b:2f:de:a5:
98:35:a1:7a:25:e0:b7:fc:43:41:8d:2d:b9:f1:13:
15:40:71:cb:01:d2:5b:2e:9e:a6:6d:1c:6b:5b:c6:
a6:ef:97:dd:70:2c:e2:5e:74:3e:b7:c9:08:71:9d:
45:42:a8:0f:27:5c:a2:dc:aa:c3:a4:e2:0a:68:c7:
57:9e:37:45:7e:e2:b4:da:4b:eb:0a:27:d0:f4:d7:
bb:37:72:41:81:4a:82:11:95:ea:41:da:a0:76:f6:
2a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:42:1B:DC:C5:90:F4:16:0B:A6:2B:13:94:F7:6D:73:71:C5:D8
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3234203d3e203339353231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.176.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:d0:ca:77:46:f1:d5:d7:da:a6:7c:09:f2:f1:95:52:ba:22:
86:d6:4b:29:53:2b:c1:de:ad:1c:14:c9:c9:9d:20:55:e5:09:
c3:f6:23:4c:c7:9d:d0:88:bb:c9:39:de:0a:2e:a7:ef:fc:98:
3d:b1:49:e7:f4:c6:35:1e:72:19:d5:5c:c7:71:48:e1:7e:51:
85:c6:2a:16:cc:91:08:de:89:34:30:10:56:94:87:19:c6:b9:
9d:7a:6c:6a:87:f4:1a:56:4c:f8:17:f7:08:a1:39:07:b8:9d:
51:a2:21:d5:6a:c8:d0:95:49:2d:f3:34:85:6c:ee:bf:f9:32:
1a:99:99:3a:e2:5f:79:0a:38:93:88:b2:82:d8:4b:7d:e0:ea:
d2:e2:85:22:1a:3e:6c:25:5a:ad:c6:54:78:1f:bb:6a:9a:12:
cf:d6:ba:fd:a6:84:9b:c9:b7:c4:eb:89:d9:d8:4c:03:65:22:
1c:2d:de:ab:42:76:13:6b:88:5f:49:13:58:29:e1:d8:37:92:
6e:75:bd:bf:64:e2:1e:12:aa:77:77:de:bd:f6:99:97:c0:c5:
83:c8:77:94:30:fc:9b:68:8e:17:17:1b:31:37:6d:ed:4e:68:
d7:30:b3:f4:0c:6d:d8:29:b0:a4:64:ea:04:5e:2d:47:98:c1:
7e:8e:6a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org