Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e203631333137.roa
File: 34352e36352e3131392e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: lDnnhedZvwYU7kwKUvbhfC4DAmqELdclmiNUA2L6YN8=
Subject key identifier: 28:51:EC:B1:1B:39:ED:89:E2:02:1B:D5:B6:C4:0F:30:F8:67:83:4C
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 4CF77B2EE935D6AC3CE4630954B3A284C292A68A
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e203631333137.roa
Signing time: Mon 30 Oct 2023 17:17:46 +0000
ROA not before: Mon 30 Oct 2023 17:12:46 +0000
ROA not after: Mon 28 Oct 2024 17:17:46 +0000
asID: 61317
IP address blocks: 45.65.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:f7:7b:2e:e9:35:d6:ac:3c:e4:63:09:54:b3:a2:84:c2:92:a6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 30 17:12:46 2023 GMT
Not After : Oct 28 17:17:46 2024 GMT
Subject: CN=2851ECB11B39ED89E2021BD5B6C40F30F867834C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:97:e6:d6:18:a4:df:f8:aa:23:7c:cf:70:84:
a4:58:14:81:17:0a:11:63:c0:ce:2f:46:a0:b9:db:
74:44:83:0e:2a:c7:ef:a4:38:12:15:f3:e8:75:65:
fe:ad:8b:08:8b:5a:d9:2b:43:92:65:10:b2:e8:bc:
71:f4:c3:13:71:5c:e3:e5:ab:50:5c:63:ed:6a:cd:
cf:e5:e6:7a:29:65:eb:ee:aa:17:02:7b:d7:6a:bd:
71:38:91:9c:0b:e5:14:36:8e:0c:cb:9f:e7:35:0a:
82:63:67:f2:3c:b3:a7:59:b6:6f:d9:7f:d8:89:82:
51:7d:ed:00:ef:04:6a:5f:9b:fd:2b:c0:30:c9:1d:
ed:5a:77:18:e0:3f:dd:f5:9c:20:e4:e5:c5:a7:02:
3a:1e:c3:97:ff:b8:be:92:f2:18:6d:03:6e:51:4d:
93:31:c6:d3:ec:16:40:da:b2:95:30:90:85:96:a2:
23:47:0a:c4:3d:3a:08:10:f7:b8:e8:c0:f2:4c:9c:
cc:ee:ed:af:5a:5f:c9:36:50:de:03:4a:71:1f:b5:
6a:db:c4:27:4b:af:32:79:0d:7e:a1:5b:5f:8d:3a:
4a:e3:9a:d9:e7:0b:c4:38:15:88:df:c5:f2:18:d3:
d3:ba:34:da:42:8e:fa:ad:8d:0e:f8:d4:4a:cd:3d:
34:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:51:EC:B1:1B:39:ED:89:E2:02:1B:D5:B6:C4:0F:30:F8:67:83:4C
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:31:d5:7e:45:58:21:f7:20:04:20:2b:7b:74:06:87:9b:ee:
53:6d:de:9f:84:17:b2:3b:6f:8a:af:2f:ca:e9:fe:d1:d1:c9:
ad:07:ae:47:f6:07:80:7a:a9:5b:10:8d:42:a3:e3:ae:ff:a8:
b6:ce:93:4a:aa:98:95:c4:69:f6:a6:9f:4a:45:c6:68:83:d5:
d9:2c:16:8f:f6:4c:70:c6:d3:2d:03:bb:af:95:2e:fc:62:15:
c3:6b:01:2e:3a:7f:6b:b2:9e:14:eb:f8:d3:e3:49:2f:03:3c:
09:37:d6:94:19:53:39:46:10:37:ee:e4:6e:31:6b:bc:6a:6b:
c8:02:6d:14:cd:d2:0a:43:86:7a:46:3c:ea:39:2f:4d:de:5c:
ee:a7:2c:fe:99:6b:aa:4c:97:7d:47:4b:18:ef:09:c8:3f:17:
45:8d:02:d2:5f:93:5b:35:79:6c:b9:f0:a7:dd:45:07:c9:4b:
48:2c:2e:cb:81:7e:b7:93:a6:1b:42:f9:ed:70:da:79:c2:16:
0a:49:9c:36:ab:21:b2:7c:15:59:62:e4:3b:23:21:8b:13:f9:
ff:fc:e2:fc:fd:af:53:19:4e:bf:53:45:78:28:d5:ff:34:24:
7e:7f:01:59:c3:28:43:23:18:60:f4:b8:09:40:96:d5:75:0c:
92:0d:fa:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:57:52 2025 by rpki-client