Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e203539343332.roa
File: 3134302e3135302e3233362e302f32322d3234203d3e203539343332.roa (raw, json)
Hash identifier: YCTxA5T9ssTf9WeR3CzOP0Lp1ZkdrHzp39Ysn+Ahx44=
Subject key identifier: F5:7E:AB:14:3A:B1:B0:8C:30:83:B4:4E:60:58:DB:C2:BA:C7:64:70
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4D696FC0DDCAE8E544540FF4E9C8433914D97446
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e203539343332.roa
Signing time: Fri 24 Feb 2023 09:08:55 +0000
ROA not before: Fri 24 Feb 2023 09:03:55 +0000
ROA not after: Fri 23 Feb 2024 09:08:55 +0000
asID: 59432
IP address blocks: 140.150.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:69:6f:c0:dd:ca:e8:e5:44:54:0f:f4:e9:c8:43:39:14:d9:74:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 24 09:03:55 2023 GMT
Not After : Feb 23 09:08:55 2024 GMT
Subject: CN=F57EAB143AB1B08C3083B44E6058DBC2BAC76470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:19:47:2d:7f:da:7a:7f:ad:8a:17:0d:46:
22:f4:5b:0c:77:38:55:37:89:2d:9e:03:03:d3:81:
7b:47:5c:41:2b:f7:74:3a:39:28:eb:33:24:cb:ab:
b1:a0:52:37:3a:20:c6:28:da:a4:fb:c1:88:38:30:
89:f8:1c:d8:f4:d7:98:cd:22:45:43:66:ef:8e:0a:
d5:00:e2:43:11:d0:9e:8d:62:c0:ee:d1:e9:ce:b4:
28:4c:08:9d:0e:6d:9d:a8:61:60:2d:22:fb:03:be:
72:75:59:7e:bd:8f:60:b0:78:7e:2c:ee:78:0b:52:
cc:61:07:67:11:5f:74:f9:06:9a:6c:91:98:6c:e2:
e3:99:8f:5f:51:3a:f9:85:b8:ab:e4:45:73:7b:a0:
d5:97:d7:90:7c:d4:4a:27:bb:6f:e0:72:11:3c:2b:
f9:1a:01:05:38:e9:73:e2:5f:90:7f:6b:84:d7:bb:
e1:cf:8d:14:40:a0:b4:55:57:77:88:fa:dc:0c:26:
3f:1e:86:29:48:16:eb:ec:9b:bf:67:39:a3:70:99:
da:60:99:13:8c:2e:20:d0:22:05:4f:82:0a:09:f4:
e9:3a:32:40:3e:4e:35:aa:91:37:db:29:ad:9a:c2:
97:49:da:e4:3f:91:49:fe:cf:22:87:a2:19:69:35:
8f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7E:AB:14:3A:B1:B0:8C:30:83:B4:4E:60:58:DB:C2:BA:C7:64:70
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e203539343332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
15:a5:48:46:5b:9a:f8:c6:0f:04:b8:ca:42:ea:cd:6a:04:2c:
f1:48:1a:86:e0:a2:da:d4:52:ce:90:8a:bb:ec:62:e6:d3:32:
99:d4:9b:7b:59:b9:93:37:ad:b8:ab:0e:fb:7e:5c:52:27:e9:
71:bf:13:97:95:c2:2d:9c:20:62:e8:4d:bd:5f:ba:2e:ec:ef:
65:77:da:39:6d:bc:9c:62:84:b9:70:61:c9:bf:f0:c4:5e:23:
7e:17:ff:2f:fc:08:3b:81:f3:d6:1d:73:f8:a4:5b:71:cb:fa:
1e:e4:b7:da:81:b6:e7:a9:2a:b5:45:40:4f:61:53:0c:a1:3e:
58:4e:5a:42:1c:01:f5:0c:67:41:3b:50:74:47:df:94:05:38:
ae:74:29:d3:98:74:08:a7:d3:8b:10:78:67:96:d9:3b:a5:d2:
1e:27:9e:e5:14:0f:08:12:48:91:5e:94:8f:01:d5:e8:ba:eb:
bc:52:89:df:91:58:7e:a6:8c:b0:a1:7b:23:56:d1:2e:84:67:
2e:ad:85:7b:3b:5d:a7:7a:f6:89:60:01:dd:2f:a6:ed:19:33:
70:ad:97:f5:51:6f:38:b2:32:01:de:26:e3:47:76:70:2b:e0:
0d:91:00:ff:50:e8:2c:be:8e:52:8c:39:85:2f:60:0c:e6:d8:
29:18:e8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org