Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138352e302f32342d3234203d3e203631333137.roa
File: 352e3138312e3138352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: rYl8cL7RaECJd4gMf7fkK788vRO9wTbbUbhzGbbNhDY=
Subject key identifier: E3:BF:1D:AF:BC:94:0E:EE:14:78:B9:AB:49:21:79:E1:4B:65:B7:77
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 3009723848C32562FD6D5FCD2F109CB5E9AA7F3B
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138352e302f32342d3234203d3e203631333137.roa
Signing time: Wed 08 Nov 2023 11:33:19 +0000
ROA not before: Wed 08 Nov 2023 11:28:19 +0000
ROA not after: Wed 06 Nov 2024 11:33:19 +0000
asID: 61317
IP address blocks: 5.181.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:09:72:38:48:c3:25:62:fd:6d:5f:cd:2f:10:9c:b5:e9:aa:7f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Nov 8 11:28:19 2023 GMT
Not After : Nov 6 11:33:19 2024 GMT
Subject: CN=E3BF1DAFBC940EEE1478B9AB492179E14B65B777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:13:15:b6:a0:72:b4:0d:96:88:ee:06:99:
31:ff:86:c4:50:2c:9a:bf:e3:ac:c0:6f:f0:cd:0c:
87:51:39:63:0c:ec:1d:6c:1b:dc:1b:b3:c6:cb:4d:
81:0f:c8:bf:c9:af:fd:4a:e7:03:ad:59:4a:a3:3d:
47:c4:28:c4:e4:6e:65:e8:6b:71:9c:94:21:ba:d5:
91:e3:cf:ea:86:b7:70:d0:61:cc:ee:8e:1f:b6:14:
bf:0f:85:90:3e:49:76:cd:3f:a0:94:e1:0b:7a:eb:
71:5f:73:5d:6c:65:b3:12:bd:d6:9e:31:4f:39:c9:
91:e4:0e:2a:40:1f:ba:44:30:28:ee:6f:aa:57:87:
23:fe:55:3e:a4:d5:9d:3e:8a:32:a5:18:ab:d2:36:
26:d2:ac:35:0b:8c:b2:94:63:18:f3:56:4c:fa:3d:
5c:38:51:26:37:5f:f9:24:37:9c:cc:a4:e4:3d:c4:
b6:24:59:7d:55:56:3e:8c:6a:ca:c7:bf:0c:fa:99:
f5:0b:a3:af:e0:cf:ab:83:97:b2:c2:af:cc:54:80:
24:d8:3e:60:4d:c1:99:92:14:da:df:f9:3c:09:c7:
f1:8d:06:fe:7f:48:3d:f1:e8:aa:12:84:82:ef:f9:
73:12:44:68:29:a8:4e:0d:52:03:cb:ca:fa:3f:b1:
f1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BF:1D:AF:BC:94:0E:EE:14:78:B9:AB:49:21:79:E1:4B:65:B7:77
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.185.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7e:f2:82:d5:f7:af:4c:56:b1:e8:e1:df:6a:3b:9c:10:76:
aa:34:41:cb:f6:2d:66:29:32:a6:2c:2a:0b:ea:70:3f:58:e0:
dc:de:22:b5:25:02:89:07:ca:ab:6a:01:f7:c3:ae:42:ab:c5:
84:ab:b4:2c:93:86:d0:0b:31:ad:4a:3d:9b:d4:9f:8b:06:30:
ee:b7:b6:0a:6f:b0:c4:93:0b:ab:4a:1a:13:63:af:f6:7a:eb:
80:5d:f0:d4:aa:b6:0a:d8:d1:e9:f0:ca:7e:1c:b1:a0:b2:19:
b0:06:2b:3f:0f:b0:d3:fe:95:a8:51:71:6c:56:a6:d4:ec:e4:
24:00:ef:f8:cd:02:01:1c:9e:c3:cd:69:04:06:68:31:d7:cf:
db:5e:50:95:0d:df:e6:a3:2a:0b:bd:3c:3d:a2:97:e1:1a:a4:
76:d3:0e:ab:1a:e6:12:19:87:5e:9c:16:1f:f5:84:33:44:93:
b0:5b:66:ec:4e:2d:19:ce:09:b6:6a:65:53:70:bf:ca:e5:64:
d8:0d:50:71:82:40:5e:5e:6a:8f:89:d4:dd:57:44:e9:3d:c4:
5f:2e:fd:c8:92:f7:da:08:c1:b5:09:23:32:d9:0f:28:3c:db:
cb:54:8d:36:3a:c1:05:25:b5:2b:01:df:1d:b4:6b:a9:a2:69:
c4:c5:81:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:34 2025 by rpki-client