Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e203436383434.roa
File: 34362e3138332e32342e302f32342d3234203d3e203436383434.roa (raw, json)
Hash identifier: 6dQYyiJKVlS7El38lSQE5+hQH6UjCwxf87rb7gWo8jo=
Subject key identifier: 3A:0D:EF:77:4C:9B:8C:62:6F:74:C7:ED:1B:7E:54:EF:C4:D1:79:05
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 7F2B0BF0C7F3F905E182744232DB952FFADF6183
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e203436383434.roa
Signing time: Wed 10 Jan 2024 05:02:27 +0000
ROA not before: Wed 10 Jan 2024 04:57:27 +0000
ROA not after: Wed 08 Jan 2025 05:02:27 +0000
asID: 46844
IP address blocks: 46.183.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:2b:0b:f0:c7:f3:f9:05:e1:82:74:42:32:db:95:2f:fa:df:61:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Jan 10 04:57:27 2024 GMT
Not After : Jan 8 05:02:27 2025 GMT
Subject: CN=3A0DEF774C9B8C626F74C7ED1B7E54EFC4D17905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:13:98:e6:4c:2c:a6:84:77:8b:f6:fb:d8:52:
92:48:4a:ea:2d:0c:7c:6b:ea:4f:7a:57:d3:c0:5c:
4d:dd:f0:79:30:8b:f6:6f:e7:a0:01:6a:70:c3:92:
d7:7a:8c:3b:90:f8:22:99:60:87:85:72:13:59:d8:
72:4f:36:0a:38:56:bf:f7:e4:d3:84:e7:27:1d:73:
b3:32:8e:a9:5b:2a:79:94:27:d6:47:04:c3:f8:d8:
d6:6e:27:e3:83:71:45:1f:63:04:df:d6:6a:96:f0:
96:c2:1c:41:c5:b6:e5:e5:ff:30:2a:53:a1:6f:b2:
00:62:5f:f5:af:6f:8d:65:33:12:83:f0:5b:40:6a:
f4:44:ba:72:dd:55:4b:a8:16:46:e3:ac:be:b4:65:
5a:05:46:a7:b2:06:1f:72:5b:1c:cd:3c:a9:f2:10:
08:dc:9c:c9:18:cf:2a:6b:6a:b6:92:ad:e1:43:ff:
61:e5:90:0f:e4:3a:3a:4a:ca:1b:09:77:9c:15:68:
f6:e0:da:4f:18:c8:e9:5f:1f:88:7a:c0:7a:8e:a7:
6e:63:69:ca:97:f8:69:d4:83:cd:30:9a:7b:57:29:
86:8f:0c:df:ed:7e:76:a1:1b:a0:b8:9f:84:ab:e1:
89:90:a6:30:ba:22:e3:2c:21:2e:c5:78:42:3d:9f:
9e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:0D:EF:77:4C:9B:8C:62:6F:74:C7:ED:1B:7E:54:EF:C4:D1:79:05
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e203436383434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.24.0/24
Signature Algorithm: sha256WithRSAEncryption
76:6c:f3:fb:6e:e7:8d:89:3c:4a:c5:71:5f:4d:e6:5e:3c:69:
12:6f:8b:df:d4:13:07:21:f6:bc:de:90:9c:1d:e2:58:7f:1e:
a0:fd:42:e7:dc:1e:e3:03:3e:d3:06:32:1c:4b:9b:ff:24:e0:
56:85:e5:76:9e:7f:85:88:ff:b6:aa:b2:1f:31:8f:fa:3a:6b:
63:9b:a9:61:53:84:7a:d1:5c:38:08:ed:b2:51:3b:e0:47:b2:
11:d4:0c:df:b8:cb:50:81:8b:00:a0:a1:1d:b4:84:2a:5c:c9:
04:f5:82:48:b9:59:14:54:b9:e5:a3:54:51:49:99:8b:6b:44:
27:ac:48:61:85:a7:26:b4:c2:bb:81:09:d3:07:8f:7d:ba:c0:
8c:be:6f:fa:b6:bd:3d:d3:e3:fb:30:05:e6:be:88:35:23:31:
13:ab:f5:fd:4e:bc:35:06:79:d4:d9:8e:6d:65:fa:4f:ab:f2:
89:38:3f:c7:c5:98:9b:02:72:50:05:09:17:78:63:d3:a0:c3:
69:f2:a2:ae:c5:d8:6c:b1:4a:6e:66:b2:c0:d3:f4:38:c5:d2:
b4:7d:82:fd:8a:4b:9b:96:21:2a:72:14:89:23:df:fc:87:44:
9e:72:21:1f:0b:83:49:de:32:a9:4e:af:b5:ad:f7:33:c9:a3:
2b:bd:ec:60
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUfysL8Mfz+QXhgnRCMtuVL/rfYYMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj
YzY3N2IwMDAeFw0yNDAxMTAwNDU3MjdaFw0yNTAxMDgwNTAyMjdaMDMxMTAvBgNV
BAMTKDNBMERFRjc3NEM5QjhDNjI2Rjc0QzdFRDFCN0U1NEVGQzREMTc5MDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWE5jmTCymhHeL9vvYUpJISuot
DHxr6k96V9PAXE3d8Hkwi/Zv56ABanDDktd6jDuQ+CKZYIeFchNZ2HJPNgo4Vr/3
5NOE5ycdc7MyjqlbKnmUJ9ZHBMP42NZuJ+ODcUUfYwTf1mqW8JbCHEHFtuXl/zAq
U6FvsgBiX/Wvb41lMxKD8FtAavREunLdVUuoFkbjrL60ZVoFRqeyBh9yWxzNPKny
EAjcnMkYzypraraSreFD/2HlkA/kOjpKyhsJd5wVaPbg2k8YyOlfH4h6wHqOp25j
acqX+GnUg80wmntXKYaPDN/tfnahG6C4n4Sr4YmQpjC6IuMsIS7FeEI9n55tAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUOg3vd0ybjGJvdMftG35U78TReQUwHwYDVR0j
BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0
Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4
bmV3QS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAt
NmQxZS00YWU0LTkxNzctZDkzOGU5ODA0Mzk1LzAvMzQzNjJlMzEzODMzMmUzMjM0
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNjM4MzQzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC63
GDANBgkqhkiG9w0BAQsFAAOCAQEAdmzz+27njYk8SsVxX03mXjxpEm+L39QTByH2
vN6QnB3iWH8eoP1C59we4wM+0wYyHEub/yTgVoXldp5/hYj/tqqyHzGP+jprY5up
YVOEetFcOAjtslE74EeyEdQM37jLUIGLAKChHbSEKlzJBPWCSLlZFFS55aNUUUmZ
i2tEJ6xIYYWnJrTCu4EJ0wePfbrAjL5v+ra9PdPj+zAF5r6INSMxE6v1/U68NQZ5
1NmObWX6T6vyiTg/x8WYmwJyUAUJF3hj06DDafKirsXYbLFKbmaywNP0OMXStH2C
/YpLm5YhKnIUiSPf/IdEnnIhHwuDSd4yqU6vta33M8mjK73sYA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:31 2025 by rpki-client