Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e20323132383135.roa
File: 3139342e3135302e3231312e302f32342d3234203d3e20323132383135.roa (raw, json)
Hash identifier: iR4w7JDbqAWt2zy1jsllaLo+OvtjDgSow16lTeSXs1Q=
Subject key identifier: 88:D8:E5:99:6B:0B:E9:67:E4:8C:76:68:70:6B:F7:31:36:CB:4E:8E
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 28CE9F3CB7F246909D61C82C143F561C11518AD0
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e20323132383135.roa
Signing time: Mon 23 Oct 2023 09:41:45 +0000
ROA not before: Mon 23 Oct 2023 09:36:45 +0000
ROA not after: Mon 21 Oct 2024 09:41:45 +0000
asID: 212815
IP address blocks: 194.150.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:ce:9f:3c:b7:f2:46:90:9d:61:c8:2c:14:3f:56:1c:11:51:8a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 23 09:36:45 2023 GMT
Not After : Oct 21 09:41:45 2024 GMT
Subject: CN=88D8E5996B0BE967E48C7668706BF73136CB4E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:01:d8:7b:2d:88:fe:cb:6f:83:e8:b5:75:e3:
3e:ce:3c:1c:60:8b:e5:bf:a4:3c:ef:05:e5:16:ec:
5a:d2:47:62:ea:7d:fb:b5:d1:b8:05:61:8f:b1:51:
5e:2d:87:5a:17:b0:a3:e8:94:e4:86:58:10:45:e4:
cb:71:e2:b1:d1:10:c6:1c:c0:9a:04:2e:41:dd:f0:
b5:4a:57:58:1a:db:02:eb:33:85:54:09:c5:dc:fb:
94:c1:97:c6:3f:8a:3e:50:ec:0a:91:37:de:59:df:
3c:1e:30:18:ac:43:59:d3:2f:b4:39:5b:73:50:33:
da:9f:1d:fb:22:aa:5d:22:b2:3b:71:ff:22:7d:f0:
f4:6f:d0:c2:f7:7f:b4:7f:97:4b:0e:52:f4:30:23:
a9:c7:9d:0a:e5:06:0f:58:c0:04:49:e9:63:b3:af:
2a:3a:d5:20:3b:b1:06:14:dc:1c:6e:a1:cb:0e:0f:
73:bf:f4:dc:98:c3:0f:22:e2:e0:42:ee:62:20:ae:
8c:c5:c9:d6:b1:87:8b:f1:28:16:d5:f1:f1:ff:03:
1a:74:83:a6:8e:c2:85:ca:67:75:c1:80:c0:25:06:
72:de:3f:1b:6b:cf:70:df:ab:cd:d6:28:6c:18:00:
fc:ba:82:11:6f:92:1e:b5:48:12:b9:61:09:64:b7:
b6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D8:E5:99:6B:0B:E9:67:E4:8C:76:68:70:6B:F7:31:36:CB:4E:8E
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231312e302f32342d3234203d3e20323132383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.211.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:ac:2f:a1:a4:5f:3b:f9:68:dc:02:1f:59:94:18:1c:d1:46:
10:da:c8:73:36:26:72:b8:cf:75:60:1b:54:15:14:69:bc:e9:
bf:6a:99:57:89:d0:33:29:32:d2:49:7c:ff:95:17:81:ce:82:
38:92:4c:0c:11:60:cf:76:e0:d9:01:b6:c8:df:df:a0:19:f7:
ef:f2:df:3e:2f:94:be:95:2b:e2:52:ff:81:89:4a:0d:19:5b:
3b:78:8d:ab:b2:f4:fb:dd:c0:8b:4f:28:3b:eb:f2:7b:6b:e8:
d2:82:2f:28:96:ba:ae:a6:4c:f9:6a:ea:7c:2c:1c:aa:ee:bb:
03:f4:1e:fa:c7:a5:bd:61:e1:74:17:00:5c:19:b4:86:42:be:
8c:45:04:cd:a7:17:24:e1:39:16:ba:30:d0:d6:67:09:d2:0f:
f1:15:d2:a1:d2:4f:54:33:10:d1:2e:21:99:6c:1e:31:f1:62:
c5:dc:c8:91:18:18:82:75:5b:86:98:43:c2:3b:ab:d5:83:f9:
7a:19:68:96:1e:9d:c7:bf:15:be:5c:e1:eb:04:17:b8:9f:b3:
5b:13:83:ea:5c:c1:47:cf:70:bc:33:81:1f:0f:e4:5e:b2:78:
0c:de:c2:d5:76:de:54:34:b4:7f:51:ed:3e:b3:1c:b1:a2:a8:
c8:03:86:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:59:53 2025 by rpki-client