Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3232203d3e203134363138.roa
File: 3134302e3135302e3233322e302f32322d3232203d3e203134363138.roa (raw, json)
Hash identifier: seuSqsrnWMhWGecDwZ7rTnDLBzpCpauSYDY8NEoTTKY=
Subject key identifier: 24:29:A6:8D:83:88:64:A2:8E:4E:48:BF:77:FD:4F:5E:89:55:68:F5
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0E64A16CC949D29C0A7FA5B6D46B7FA57D3820A0
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3232203d3e203134363138.roa
Signing time: Mon 29 May 2023 14:39:49 +0000
ROA not before: Mon 29 May 2023 14:34:49 +0000
ROA not after: Mon 27 May 2024 14:39:49 +0000
asID: 14618
IP address blocks: 140.150.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:64:a1:6c:c9:49:d2:9c:0a:7f:a5:b6:d4:6b:7f:a5:7d:38:20:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 29 14:34:49 2023 GMT
Not After : May 27 14:39:49 2024 GMT
Subject: CN=2429A68D838864A28E4E48BF77FD4F5E895568F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:eb:66:a1:5c:51:13:4f:28:48:0d:f2:48:67:
71:78:a0:01:3f:86:b8:a9:37:92:e3:f5:e8:8b:ba:
47:89:53:80:b0:8e:b9:16:26:41:45:ff:cb:2a:b7:
0e:92:88:29:6f:48:ba:0d:2f:14:f9:31:6e:1b:31:
73:77:ed:9f:9d:99:a3:12:87:b2:1f:f5:46:eb:90:
cb:c1:33:c5:85:ae:58:ae:94:20:52:4d:92:ed:6e:
01:7e:c9:bf:8c:82:a3:cf:2d:3a:0e:ae:73:75:64:
6c:24:d9:8d:26:6d:7b:05:3d:65:92:a6:3f:c7:ca:
41:c6:b6:30:b9:25:af:1f:4d:83:c1:f7:d9:ae:7c:
69:26:b6:a6:9e:25:49:d2:bf:c0:33:88:54:ed:f2:
1e:46:e1:00:89:54:49:8d:f4:fa:be:4b:b5:66:3d:
d8:25:52:f5:3f:75:36:45:98:fd:41:e6:6d:61:b2:
f3:32:ef:47:6c:67:a7:b7:e4:52:a6:df:e9:13:d5:
f4:60:d9:91:ea:36:23:63:78:f0:6d:18:5a:38:d4:
7a:62:c3:ae:22:aa:69:24:51:97:42:95:3c:cb:db:
43:bb:15:b6:37:ec:77:29:60:17:e9:55:d7:90:49:
3c:ac:f9:95:c5:a9:8c:21:4e:6a:35:01:0b:de:81:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:29:A6:8D:83:88:64:A2:8E:4E:48:BF:77:FD:4F:5E:89:55:68:F5
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3232203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.232.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:dc:0e:fc:61:ee:3b:fc:d3:07:30:11:69:99:1f:34:e9:1b:
fd:3f:8d:31:d1:69:1e:2e:7a:a1:0c:d5:b9:85:29:19:a0:32:
d3:93:a4:0c:47:8d:9e:ce:49:b1:86:4f:73:ba:a8:6e:c3:21:
2f:00:04:0c:91:45:99:44:e5:f0:a8:3b:13:22:f3:f2:fc:21:
49:8b:cc:d2:dc:96:3c:32:99:37:ff:98:ff:5f:f5:30:a6:28:
6d:9e:ff:9d:46:fb:ac:a7:d3:63:1d:3d:06:6d:e0:6b:9c:63:
49:7f:0d:e9:9a:37:43:c4:b8:a3:63:eb:6b:b2:b6:7e:3b:45:
03:11:9c:a5:a6:7e:a5:0a:31:2a:e9:73:ca:86:99:e6:c3:21:
8e:a3:d7:3a:b2:f8:0a:26:92:83:d6:ce:29:7b:c9:67:65:fc:
9c:97:8b:40:15:4d:cd:bb:8a:bd:b5:fb:7c:4a:ae:0b:93:c6:
16:ad:dc:65:be:bc:62:13:bc:5a:64:75:9e:32:c1:e0:97:5a:
af:d6:97:ad:9b:82:49:b4:de:c9:d9:61:fe:fb:1e:48:40:11:
93:3b:38:f6:cb:cb:0a:a9:a6:61:f4:b9:3d:ed:b5:a3:68:a5:
90:29:8d:32:61:ba:51:cb:94:b2:0c:4a:58:45:41:f5:41:6c:
0a:fb:02:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org