Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e20313430313535.roa
File: 3138382e3136342e3135352e302f32342d3234203d3e20313430313535.roa (raw, json)
Hash identifier: jc5js2VI3BMms6DTx6gc+hXozFqUbR23qWwEb9di2YQ=
Subject key identifier: 9A:F9:39:5C:A4:59:E7:7B:53:B9:59:B8:18:45:A2:47:D1:46:43:A3
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 4924C8985FB4BDA9AB82DB21D66B521FB19FBE38
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e20313430313535.roa
Signing time: Thu 25 May 2023 13:07:12 +0000
ROA not before: Thu 25 May 2023 13:02:12 +0000
ROA not after: Thu 23 May 2024 13:07:12 +0000
asID: 140155
IP address blocks: 188.164.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:24:c8:98:5f:b4:bd:a9:ab:82:db:21:d6:6b:52:1f:b1:9f:be:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: May 25 13:02:12 2023 GMT
Not After : May 23 13:07:12 2024 GMT
Subject: CN=9AF9395CA459E77B53B959B81845A247D14643A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:23:c5:68:b7:36:e4:7e:24:f3:51:67:ec:36:
05:c9:19:04:1e:2d:e3:a1:6f:dd:a5:96:27:ff:a8:
1b:94:f9:ac:c6:b4:cf:2b:8c:b4:25:b7:44:0e:58:
31:38:c1:1d:15:60:a3:19:cf:dd:93:a6:4c:e9:18:
4f:aa:28:7f:a6:c8:07:dd:4c:cc:f7:57:c3:bb:44:
17:fd:c6:48:f6:9b:64:85:ac:b0:dd:39:ca:bd:d8:
c3:50:f5:7c:a1:30:c2:1a:8e:66:07:25:ce:ba:ad:
a4:26:9c:85:1f:cf:56:2b:05:6d:5e:68:63:11:3b:
ac:09:86:51:21:c5:29:9f:cb:04:3f:44:16:93:2e:
fc:1f:0d:d4:59:5a:b9:f7:3f:ec:15:5a:d0:f6:86:
ea:e0:9a:22:a3:b0:36:76:e1:36:57:b2:5d:21:2b:
b8:ce:6f:93:76:4e:58:fa:2a:19:9c:3e:0f:fe:6d:
fb:9a:ec:c1:37:68:72:a8:83:04:72:fe:2d:4d:b9:
b4:26:58:ed:26:25:38:9c:7a:c8:28:9e:54:f8:e4:
4d:3e:47:8e:f0:48:eb:f4:f7:b4:6b:21:3d:c2:3e:
9e:46:26:3a:1e:cd:dd:c0:ff:ee:55:63:84:a3:24:
84:c9:f7:78:8f:54:ce:31:9b:0d:62:e2:4e:fc:9d:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F9:39:5C:A4:59:E7:7B:53:B9:59:B8:18:45:A2:47:D1:46:43:A3
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e20313430313535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.155.0/24
Signature Algorithm: sha256WithRSAEncryption
20:54:72:62:ec:95:a9:35:dd:17:dd:47:00:2b:9d:f4:3a:5d:
ba:fd:69:85:15:41:a0:68:e5:62:a6:a4:2d:22:dd:e8:b6:07:
41:3b:9c:a2:8a:15:e8:a5:7d:df:76:51:fd:d3:28:6f:42:31:
4d:5a:9c:20:10:50:d8:14:04:ec:53:27:0e:1d:15:59:e9:dc:
b8:35:03:c5:78:fe:22:b1:70:7c:f2:cd:be:6b:81:b2:68:e8:
05:9d:10:17:ff:54:f9:d9:84:ca:80:f4:ab:be:71:10:22:8e:
56:c6:c8:39:fe:d1:b1:fa:52:39:5f:00:87:08:e8:51:73:9d:
18:17:57:67:a3:e0:0a:3d:b3:62:c9:1e:7c:16:29:e0:2e:6d:
f9:fa:e1:a8:22:fd:64:4a:af:f1:fa:4c:1c:77:67:90:75:d2:
d8:78:cc:41:97:11:1c:79:40:31:ca:c5:b0:6a:a4:d2:08:27:
f6:f6:c0:ea:46:20:0c:cd:1c:7f:74:ed:73:f4:9b:85:f4:b6:
9e:bf:dd:85:45:e5:e5:e3:9f:fb:71:c1:f2:fb:0f:e5:7f:dd:
e1:8c:0f:4d:1f:64:62:ff:43:0c:e7:8e:ee:bc:8e:92:6f:91:
bd:08:fa:53:8c:da:ae:4a:42:2a:1c:fc:b6:64:99:7b:6f:19:
5d:95:09:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org