Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3234203d3e20323038393439.roa
File: 33312e362e32382e302f32332d3234203d3e20323038393439.roa (raw, json)
Hash identifier: S1E2jN9EsuUiL8LpAKHn+1dFGn4lwbEhL0WIqFTWkvc=
Subject key identifier: 66:36:B1:A5:20:0A:42:28:9B:AF:DC:49:F2:C1:CC:9A:FD:C9:21:45
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 011C17C52AAE3F67B9DD735CC7399B392559E78E
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3234203d3e20323038393439.roa
Signing time: Tue 05 Dec 2023 10:04:31 +0000
ROA not before: Tue 05 Dec 2023 09:59:31 +0000
ROA not after: Tue 03 Dec 2024 10:04:31 +0000
asID: 208949
IP address blocks: 31.6.28.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:1c:17:c5:2a:ae:3f:67:b9:dd:73:5c:c7:39:9b:39:25:59:e7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Dec 5 09:59:31 2023 GMT
Not After : Dec 3 10:04:31 2024 GMT
Subject: CN=6636B1A5200A42289BAFDC49F2C1CC9AFDC92145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4e:cc:15:67:48:03:37:1b:d0:a2:6b:77:d2:
d1:be:da:90:0d:89:49:d8:f8:33:6f:32:69:a4:76:
b4:73:92:38:2a:e0:72:1a:ae:7d:0d:aa:f9:87:cd:
47:44:d2:ca:b9:c7:22:c4:d7:8f:c2:9e:0f:e5:61:
39:8a:63:8c:06:48:5d:60:c8:ab:9d:ae:ce:d3:68:
de:1d:90:c2:7e:4d:54:67:70:2d:1d:10:f1:12:6a:
23:5d:bb:b9:6e:79:b0:95:7f:2b:7d:28:1e:40:15:
62:03:44:b9:42:d8:62:38:08:ca:cc:7c:03:6d:8e:
46:a8:da:b9:13:46:d0:e3:a9:12:b6:d5:40:24:59:
be:40:61:98:24:80:91:02:f3:b5:6d:11:b6:7a:32:
71:ac:2a:ec:b0:76:81:2e:a4:dd:26:ef:8f:87:65:
ff:e0:4b:c0:23:41:60:9f:96:51:7e:87:b6:bf:1e:
76:2e:bd:1d:2a:f1:0a:ff:3f:52:51:a0:a0:b6:51:
3b:e1:78:b1:5b:42:93:8e:75:80:08:59:2d:ef:b8:
e6:81:32:59:af:bf:16:30:f2:73:71:d2:e2:42:07:
e2:3e:c8:11:08:e6:b6:cf:14:e8:9f:21:5c:c1:e3:
e5:82:ba:c6:6e:7c:64:15:54:1c:8b:97:57:fb:ac:
c8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:36:B1:A5:20:0A:42:28:9B:AF:DC:49:F2:C1:CC:9A:FD:C9:21:45
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32382e302f32332d3234203d3e20323038393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.28.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:02:3f:fd:d2:07:e9:94:da:49:be:6e:65:5a:d6:83:bd:7b:
f2:c9:d7:d4:d6:b1:d5:bb:db:9a:ef:07:90:15:37:7f:37:39:
eb:ab:7a:80:ea:54:84:92:33:a3:a3:22:24:cf:e9:92:50:94:
aa:c1:17:de:4c:1d:0d:de:0c:1c:ec:c2:09:64:b2:da:b1:e3:
90:af:25:ce:54:3d:bc:df:91:d0:53:e8:11:1f:07:67:b6:55:
ba:c8:64:2f:e2:e0:ca:d5:02:05:d5:a1:27:9f:e2:1e:b7:37:
95:8d:96:47:7e:48:4a:a4:6b:07:0e:21:9c:3e:0b:3c:6e:f2:
33:94:09:f0:d2:0c:c8:a1:18:42:78:48:42:5d:22:d9:71:14:
14:61:da:2d:bb:5d:01:14:9c:b2:7c:3d:c6:09:de:39:f0:f1:
4d:96:e9:77:d3:5f:7a:16:58:78:c7:bf:7d:66:5c:a1:01:53:
28:1b:bf:20:07:2b:d0:33:69:8e:77:22:7d:ac:68:8f:62:df:
02:37:08:67:06:6c:fe:e2:f7:d3:93:6f:c9:97:a8:66:e5:fa:
3e:c2:97:ca:a8:90:85:ca:49:86:b1:c8:15:32:02:db:f2:c6:
e4:b8:2f:69:88:38:00:ec:8c:49:03:95:60:6b:c7:4c:1c:0f:
fa:24:62:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:27 2025 by rpki-client