Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e20323031333634.roa
File: 34352e3135352e3135382e302f32342d3234203d3e20323031333634.roa (raw, json)
Hash identifier: JQ4SLJUb53FkC/ShCxV2b13ZTo+LUNkEctMAVEEZoNU=
Subject key identifier: B5:F4:89:CA:0C:4E:76:ED:EE:05:42:C1:3C:6F:4E:0D:26:52:CF:71
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 414BF319B639598D3AD0D4E7A54AF5D8D0593284
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e20323031333634.roa
Signing time: Wed 24 May 2023 17:25:03 +0000
ROA not before: Wed 24 May 2023 17:20:03 +0000
ROA not after: Wed 22 May 2024 17:25:03 +0000
asID: 201364
IP address blocks: 45.155.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:4b:f3:19:b6:39:59:8d:3a:d0:d4:e7:a5:4a:f5:d8:d0:59:32:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: May 24 17:20:03 2023 GMT
Not After : May 22 17:25:03 2024 GMT
Subject: CN=B5F489CA0C4E76EDEE0542C13C6F4E0D2652CF71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:0c:13:38:c9:67:63:df:c4:c6:c8:3f:98:
0b:c1:52:2a:81:e9:8c:e8:74:33:1f:f4:ca:f2:f7:
9a:de:ef:0b:51:f3:43:15:9b:93:a6:43:b6:e7:18:
69:93:30:9d:76:ec:42:3c:0a:3c:f8:23:1d:33:88:
25:0e:c8:bc:a3:5d:31:4d:1a:2c:ee:58:a6:63:e2:
a1:a4:ed:5f:a7:68:f9:88:dc:3d:00:8a:7a:74:60:
cf:fa:2e:9e:9e:ee:b5:89:a7:39:6b:a9:c8:da:99:
17:9a:5e:62:a4:3d:d7:ce:06:47:7d:e5:33:ff:50:
6e:c5:12:eb:50:2b:4c:65:29:60:04:66:48:2f:ad:
23:f5:fb:f4:e6:e3:46:9e:2d:12:cc:0c:1a:21:6d:
3d:c8:41:8c:9f:80:2c:88:34:76:d4:1a:da:fc:af:
71:67:8e:a3:ab:24:29:8b:a5:36:2d:95:30:d0:ae:
dc:8d:78:8c:dd:e4:5b:81:6e:86:51:11:48:b3:f0:
c6:1e:3c:1f:41:b1:cc:9a:47:8c:72:9c:be:47:fa:
59:e9:3f:22:3d:88:2e:e7:ac:f1:c2:c8:d0:81:67:
7b:a5:00:5d:c9:c2:88:4c:3a:ac:61:71:12:68:b2:
69:31:80:f0:1a:65:6f:c6:aa:09:cf:11:87:6b:9e:
b6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F4:89:CA:0C:4E:76:ED:EE:05:42:C1:3C:6F:4E:0D:26:52:CF:71
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e20323031333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.158.0/24
Signature Algorithm: sha256WithRSAEncryption
35:0d:1a:4e:68:57:aa:68:33:b6:f3:af:86:97:89:0d:e2:3d:
80:6b:8d:d7:cf:60:02:82:2a:11:19:b4:3d:5c:0f:6a:bf:fd:
51:c3:cd:4d:ee:79:f1:49:f1:db:af:bc:47:cc:1d:30:c0:1b:
05:36:42:84:16:6e:73:dd:d4:79:36:39:2b:1d:61:15:e5:93:
80:01:4d:c4:0d:57:a8:b3:37:8e:2b:bf:9f:13:82:17:e4:55:
d5:a9:ec:ff:54:80:12:26:b9:fe:34:b1:43:6b:ef:4f:55:e6:
eb:6f:16:bc:ae:dd:fb:63:1e:0f:19:38:f5:86:12:4a:f0:e0:
df:01:da:9a:33:8e:f2:01:3d:6c:9d:7a:32:e9:5f:04:01:20:
fb:d6:bb:15:c9:a2:81:b4:71:e5:08:95:2f:ce:eb:65:fc:e8:
79:f5:44:cf:25:ca:46:b7:ef:7f:0b:d7:f9:c1:34:77:6c:10:
1d:0b:24:65:7a:86:56:9a:82:69:e8:b0:1b:8f:fb:61:19:20:
bf:eb:76:80:3e:f5:6d:c3:8b:3c:19:d4:8a:ae:33:d7:3e:17:
e0:60:75:1d:75:e4:3f:4b:7a:1e:76:55:91:46:9a:0c:2d:8d:
6e:29:5c:aa:4d:15:30:cd:89:08:16:48:ea:2a:4a:8c:ac:6c:
88:cc:58:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:13 2024 by rpki-client on console-fra.rpki-client.org