Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3137203d3e203134363138.roa
File: 3134382e3133352e3132382e302f31372d3137203d3e203134363138.roa (raw, json)
Hash identifier: os2VTb5+I8UAOEnPTQsug4MiR1rz7CxYLV6fkZWhIQY=
Subject key identifier: CA:6B:AA:8E:60:2C:23:55:61:9F:D7:AA:96:20:01:A4:96:A9:DD:27
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 62FE3A563937525C55DADD2D5812BA81AC795B80
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3137203d3e203134363138.roa
Signing time: Wed 01 Feb 2023 20:52:15 +0000
ROA not before: Wed 01 Feb 2023 20:47:15 +0000
ROA not after: Wed 31 Jan 2024 20:52:15 +0000
asID: 14618
IP address blocks: 148.135.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:fe:3a:56:39:37:52:5c:55:da:dd:2d:58:12:ba:81:ac:79:5b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 1 20:47:15 2023 GMT
Not After : Jan 31 20:52:15 2024 GMT
Subject: CN=CA6BAA8E602C2355619FD7AA962001A496A9DD27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:41:b4:92:6f:4d:4f:cc:e1:45:d0:1c:44:
e3:bd:75:65:7a:ef:40:4b:20:68:03:9f:4d:08:72:
d3:95:6b:ae:7a:aa:f5:2a:a7:10:6a:92:df:59:b3:
6b:61:ec:26:67:3e:5f:29:f0:53:a8:4d:b2:b9:52:
53:fa:4d:01:12:59:f7:c9:5a:45:87:88:30:ee:32:
74:cb:5c:21:c5:fc:c4:76:2b:e0:1d:d1:07:01:f5:
86:0c:a3:9d:04:fa:0c:2d:24:f2:7f:8b:2d:4d:8b:
b5:e8:d5:dd:c2:4f:2b:89:20:25:35:ba:84:ff:8a:
39:80:3a:65:c2:93:dc:35:a9:4f:9d:84:80:81:37:
02:dd:49:a4:27:d8:c3:ca:a0:11:28:78:41:70:d2:
04:ec:66:f8:d5:c8:9f:a6:bd:2d:54:5b:c6:1a:6a:
17:0d:cb:0d:a0:2b:3d:4c:a4:49:67:a8:cd:5f:13:
00:59:e5:dd:82:8c:ba:23:f1:63:c5:1b:72:ef:1e:
9f:34:1a:f0:d6:1a:99:1f:c2:3e:86:bf:81:37:bf:
a8:ee:73:38:a4:19:49:8c:9e:11:c7:74:fa:c3:ba:
40:0d:dc:bb:03:17:40:b5:a8:3d:f9:3c:e7:15:43:
fd:ca:f9:02:f8:5f:28:ea:11:a2:a0:7f:ae:ab:06:
7d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6B:AA:8E:60:2C:23:55:61:9F:D7:AA:96:20:01:A4:96:A9:DD:27
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3137203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.135.128.0/17
Signature Algorithm: sha256WithRSAEncryption
82:b9:a6:51:29:be:94:7e:12:d2:a8:09:c7:60:9f:ba:3a:6a:
5e:a0:c0:20:58:47:1c:dc:29:91:23:47:26:ac:a3:2b:c5:e4:
73:31:7b:6a:26:94:5a:66:3a:69:89:25:96:ff:75:7c:25:1e:
fe:27:c2:4d:39:5a:44:7c:7d:84:fc:a1:06:e6:2f:69:dc:16:
78:74:32:5b:56:9f:6b:76:5f:23:e7:e6:14:1d:4d:f0:73:09:
15:46:e9:44:65:08:2b:9e:a3:18:29:62:51:30:5e:07:ad:bb:
f1:e0:53:3e:e7:71:b8:61:04:e6:4d:20:6f:40:52:99:57:a5:
22:94:d9:28:dd:eb:e5:f6:a0:73:ed:eb:56:09:49:95:37:56:
07:65:1b:1a:b0:3f:13:d1:4a:4f:80:b4:3a:63:38:24:a9:11:
86:26:3f:f0:5e:21:ee:a9:9d:ce:a9:d5:84:97:cb:1a:39:e1:
e1:f4:74:31:46:1d:0f:3e:dd:3a:a1:a8:75:1d:62:66:e9:36:
2d:fd:cd:f6:2a:be:b8:3f:f4:fc:7a:af:c4:cd:69:19:08:95:
6b:b0:d7:a4:fc:3e:6b:54:1a:94:f3:8f:e3:49:77:8e:64:4c:
02:5f:f0:f2:1f:91:ee:e4:5d:5b:56:a2:db:68:ea:01:38:d1:
5b:80:d9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org