Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32382e302f32342d3234203d3e203631313338.roa
File: 34362e3138332e32382e302f32342d3234203d3e203631313338.roa (raw, json)
Hash identifier: I6dz4uh+xTgM47gKgN+e89vOPOF6CwewrVw23CSiVOg=
Subject key identifier: B8:0E:4A:E0:1C:71:EF:EC:1D:5A:E0:BC:55:DB:73:54:6D:24:19:8E
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 4CA95BC7038C30664FCCB9D873CE501F5A9FF65E
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32382e302f32342d3234203d3e203631313338.roa
Signing time: Sun 04 Jun 2023 10:28:16 +0000
ROA not before: Sun 04 Jun 2023 10:23:16 +0000
ROA not after: Sun 02 Jun 2024 10:28:16 +0000
asID: 61138
IP address blocks: 46.183.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:a9:5b:c7:03:8c:30:66:4f:cc:b9:d8:73:ce:50:1f:5a:9f:f6:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Jun 4 10:23:16 2023 GMT
Not After : Jun 2 10:28:16 2024 GMT
Subject: CN=B80E4AE01C71EFEC1D5AE0BC55DB73546D24198E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:9b:53:f9:64:02:2b:ce:ec:66:09:ba:38:
13:7b:39:f6:0d:20:ec:2f:3f:e9:37:3f:b7:14:b9:
70:1a:4b:a9:9d:cc:78:bd:b1:60:60:34:0b:07:8c:
fc:4d:dc:af:b6:76:c4:41:0d:e2:69:78:d7:2f:9d:
ef:5f:61:17:95:78:21:74:a5:95:90:8e:e3:d8:fd:
bb:c5:85:39:74:48:0f:b8:b8:22:f1:f0:ea:b6:23:
d0:15:d5:b5:5c:a9:b0:46:7d:42:0e:56:30:3c:47:
be:c8:70:9b:64:a8:32:24:f1:17:94:9d:db:62:ef:
1d:9e:bc:af:6e:4a:91:bc:1e:fb:33:2d:30:4d:19:
6c:4c:9c:ff:75:3c:b0:29:af:e9:28:af:46:1a:ad:
52:b3:8a:06:86:12:da:f1:aa:be:eb:fd:ab:6b:cf:
7f:af:b8:5a:f5:ae:91:57:ee:ee:ac:3b:9e:87:dc:
21:18:b6:88:2b:ad:ee:e8:13:cf:17:f4:9b:dc:e9:
86:93:c0:b4:77:3f:e2:ec:d2:98:b6:62:fa:05:11:
e0:19:a8:96:f9:58:30:a3:f9:e8:f9:8d:12:2b:aa:
56:21:4e:15:bb:5a:8e:c9:32:96:fb:f1:fb:96:2c:
11:5d:c5:2a:e2:45:6c:74:ac:97:9d:ca:9b:4b:a5:
cc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:0E:4A:E0:1C:71:EF:EC:1D:5A:E0:BC:55:DB:73:54:6D:24:19:8E
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32382e302f32342d3234203d3e203631313338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.28.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:fe:1c:0f:85:2d:60:12:46:d3:87:35:5b:cf:f1:23:33:8a:
fb:3e:77:c5:a0:6b:fb:54:ae:74:d4:f8:c2:61:b7:20:b8:98:
c9:d0:b5:75:27:76:b4:53:cf:e6:e3:eb:bc:49:8c:cf:4b:f8:
70:e6:1c:45:6c:b7:6e:80:bb:65:a5:44:1c:7b:90:24:5f:b3:
63:87:d6:c3:2c:fa:43:c9:cf:53:31:9d:89:95:99:9b:6c:61:
c5:6a:c8:f0:1f:b2:e8:42:18:fb:fd:9b:44:a2:a7:e9:5e:f0:
a2:83:ce:65:3a:39:34:a2:c8:9a:6b:09:1a:07:f4:0e:40:3f:
ac:78:42:6a:07:3c:cc:a1:4f:62:63:66:b5:62:04:a5:be:76:
82:ce:ea:8d:c8:37:59:3d:cc:3d:01:e7:bb:f3:96:8e:8f:d8:
5d:03:9d:5f:68:e8:78:cb:83:89:86:3c:ea:67:bd:5b:54:f8:
c5:57:d0:57:30:87:a0:13:6f:02:6b:2a:2b:a9:66:de:ae:af:
bd:03:e6:ab:93:4d:9c:c6:d8:96:f7:4e:a4:bb:1b:db:8c:7b:
ab:ca:33:a3:f4:88:21:62:5c:be:34:b5:ee:a8:81:14:49:e5:
1b:4a:17:41:2c:e2:c4:73:30:0e:3d:f8:e1:97:91:0c:33:6b:
51:2e:62:c8
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUTKlbxwOMMGZPzLnYc85QH1qf9l4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj
YzY3N2IwMDAeFw0yMzA2MDQxMDIzMTZaFw0yNDA2MDIxMDI4MTZaMDMxMTAvBgNV
BAMTKEI4MEU0QUUwMUM3MUVGRUMxRDVBRTBCQzU1REI3MzU0NkQyNDE5OEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYM5tT+WQCK87sZgm6OBN7OfYN
IOwvP+k3P7cUuXAaS6mdzHi9sWBgNAsHjPxN3K+2dsRBDeJpeNcvne9fYReVeCF0
pZWQjuPY/bvFhTl0SA+4uCLx8Oq2I9AV1bVcqbBGfUIOVjA8R77IcJtkqDIk8ReU
ndti7x2evK9uSpG8HvszLTBNGWxMnP91PLApr+kor0YarVKzigaGEtrxqr7r/atr
z3+vuFr1rpFX7u6sO56H3CEYtogrre7oE88X9Jvc6YaTwLR3P+Ls0pi2YvoFEeAZ
qJb5WDCj+ej5jRIrqlYhThW7Wo7JMpb78fuWLBFdxSriRWx0rJedyptLpcyTAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUuA5K4Bxx7+wdWuC8VdtzVG0kGY4wHwYDVR0j
BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0
Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4
bmV3QS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAt
NmQxZS00YWU0LTkxNzctZDkzOGU5ODA0Mzk1LzAvMzQzNjJlMzEzODMzMmUzMjM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTMxMzMzOC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC63
HDANBgkqhkiG9w0BAQsFAAOCAQEAK/4cD4UtYBJG04c1W8/xIzOK+z53xaBr+1Su
dNT4wmG3ILiYydC1dSd2tFPP5uPrvEmMz0v4cOYcRWy3boC7ZaVEHHuQJF+zY4fW
wyz6Q8nPUzGdiZWZm2xhxWrI8B+y6EIY+/2bRKKn6V7wooPOZTo5NKLImmsJGgf0
DkA/rHhCagc8zKFPYmNmtWIEpb52gs7qjcg3WT3MPQHnu/OWjo/YXQOdX2joeMuD
iYY86me9W1T4xVfQVzCHoBNvAmsqK6lm3q6vvQPmq5NNnMbYlvdOpLsb24x7q8oz
o/SIIWJcvjS17qiBFEnlG0oXQSzixHMwDj344ZeRDDNrUS5iyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:55 2024 by rpki-client on console-ams.rpki-client.org