Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20343030383130.roa
File: 34352e39352e3231322e302f32342d3234203d3e20343030383130.roa (raw, json)
Hash identifier: Up86Avxez7M9XqIta4gz2mBmR0WCJMJkCgDWijQZyyU=
Subject key identifier: 95:AC:66:8B:CF:7F:3E:B2:A3:21:02:E9:55:23:CA:6A:20:62:11:DD
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 60E9EB1E7ECD6045A921D5D29A590CBF41C30A2F
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20343030383130.roa
Signing time: Tue 07 Mar 2023 15:15:17 +0000
ROA not before: Tue 07 Mar 2023 15:10:17 +0000
ROA not after: Tue 05 Mar 2024 15:15:17 +0000
asID: 400810
IP address blocks: 45.95.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e9:eb:1e:7e:cd:60:45:a9:21:d5:d2:9a:59:0c:bf:41:c3:0a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Mar 7 15:10:17 2023 GMT
Not After : Mar 5 15:15:17 2024 GMT
Subject: CN=95AC668BCF7F3EB2A32102E95523CA6A206211DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:e1:8d:c4:62:fe:d7:22:8a:57:5f:cb:c0:
3f:8c:11:4d:0a:85:40:7d:79:7a:1d:33:6e:27:62:
88:5c:c1:97:1f:d9:3a:ed:37:7f:83:71:73:21:76:
14:73:ac:85:99:5b:33:5c:52:ed:21:ad:5a:cd:b8:
c2:3d:91:30:bb:a1:d5:f4:2f:9a:f1:ec:6f:d8:81:
27:8a:e5:f8:db:6b:65:92:d9:cc:ca:6a:5b:11:f9:
63:53:06:e6:94:92:22:b8:60:dc:f4:6e:1d:ff:91:
72:53:f6:54:df:9e:4e:a3:3f:e0:d1:06:e4:bf:3a:
74:97:40:05:76:49:a7:89:a9:4e:43:ca:71:a8:03:
00:90:af:2b:19:51:dd:83:a5:fd:94:62:de:1a:37:
6c:3d:81:fb:95:9b:99:64:6c:9c:83:66:eb:54:8c:
f9:14:86:77:6c:de:14:1f:f7:0b:5b:6c:4a:56:e5:
5b:f2:fe:e3:91:d2:49:91:38:f2:d5:1f:d1:c3:4b:
5b:ac:1a:76:e5:2e:36:99:df:3e:77:97:0e:76:fc:
bc:a8:c9:32:52:9b:10:bf:69:0a:a3:7a:3c:3b:f7:
59:3f:bc:73:7f:b2:2e:cc:90:e7:31:db:b6:9b:4c:
50:aa:fb:3d:0d:98:35:ed:6f:b2:69:2d:46:e1:c4:
4f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AC:66:8B:CF:7F:3E:B2:A3:21:02:E9:55:23:CA:6A:20:62:11:DD
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20343030383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:ae:29:0f:23:53:ab:d1:0c:a4:13:19:65:7d:4c:c9:26:83:
74:6c:3e:e7:00:23:43:06:c4:85:47:03:bf:34:af:c8:58:13:
1c:de:9f:ec:aa:f3:f8:a0:28:28:2a:38:60:af:52:f1:61:ee:
9f:10:9c:a4:d9:2e:28:04:94:ed:aa:20:b2:41:f5:b4:c5:84:
9f:63:e7:99:e8:bd:e7:99:62:fe:6c:d0:52:24:ec:f8:83:17:
d2:1b:98:0e:4d:1d:0f:d6:23:55:64:3e:40:7d:ef:fb:b4:90:
f8:00:02:39:03:31:c5:bd:e4:9f:8a:11:49:63:62:cd:63:a5:
ed:fa:3f:8d:0d:a1:b7:82:00:10:43:05:9d:e7:ec:b0:0b:5a:
c0:96:f0:2b:85:71:37:ea:82:59:34:fa:d9:d6:8b:28:0d:b7:
2b:e0:bf:d8:34:ae:5f:4a:9c:29:07:83:1a:b2:c6:41:bd:ef:
4c:63:61:3a:8d:c0:62:db:7f:75:39:07:28:6d:e5:ce:39:d6:
78:a4:75:1e:07:d1:1c:3c:5c:49:60:f5:17:88:87:0c:fb:c8:
e8:66:03:9c:72:a0:f8:bd:86:78:87:51:78:c1:5d:af:1c:18:
f0:f1:a2:e3:c3:66:fc:56:ad:52:29:34:16:e5:1f:fa:9d:93:
61:15:e1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:10 2024 by rpki-client on console-fra.rpki-client.org