Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20323131383236.roa
File: 3231332e3133392e36362e302f32342d3234203d3e20323131383236.roa (raw, json)
Hash identifier: 4VXdB33JUZ6Qozk6xjDKDbSvubo+oRTI4vd//EMsbnc=
Subject key identifier: 27:77:53:2B:C3:99:DF:3B:F6:32:C2:F9:3D:05:14:52:DF:5C:97:F9
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 7928CFA68C98D909C368F073C64C3B9A69DD16EF
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20323131383236.roa
Signing time: Wed 08 Mar 2023 15:30:14 +0000
ROA not before: Wed 08 Mar 2023 15:25:14 +0000
ROA not after: Wed 06 Mar 2024 15:30:14 +0000
asID: 211826
IP address blocks: 213.139.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:28:cf:a6:8c:98:d9:09:c3:68:f0:73:c6:4c:3b:9a:69:dd:16:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 8 15:25:14 2023 GMT
Not After : Mar 6 15:30:14 2024 GMT
Subject: CN=2777532BC399DF3BF632C2F93D051452DF5C97F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:fb:72:5c:0c:a1:d6:ff:a3:87:9f:c9:5b:
b5:02:1a:dc:76:63:23:03:9a:dc:ae:6c:a9:d6:a8:
5c:b6:38:15:51:fc:5c:5e:a8:cd:01:ba:6b:5b:92:
50:80:7a:58:ea:ae:27:47:22:ca:a6:0c:35:03:92:
af:19:5f:0c:5a:f9:80:66:7c:24:87:89:c3:46:a9:
8a:a8:1d:95:65:96:7d:be:a7:f7:da:bf:92:bd:62:
f1:e1:9d:da:12:6f:fa:ee:2b:c0:e3:70:4e:38:bf:
c9:11:d2:e9:5b:36:25:25:58:c2:1c:a8:42:9b:9c:
da:07:a3:6c:77:6a:68:b8:00:35:65:8d:bd:ef:1a:
99:f4:23:30:83:b3:3d:4a:6a:7c:88:6f:f4:d5:ce:
e2:e8:67:f9:0a:07:b2:fe:c9:0a:b4:e0:51:67:4f:
da:1e:ec:db:72:a5:78:f6:38:34:5f:a6:c0:f0:fd:
68:84:b7:01:fc:35:ea:f2:f1:9c:8d:67:6e:08:5a:
e9:e3:6b:0d:d4:44:91:a4:c1:fc:97:78:ef:61:1e:
d8:7c:40:a1:4f:69:f6:8e:1e:6c:f9:5e:35:b4:af:
c5:d1:dd:51:5d:2b:d4:d1:96:94:d5:99:e4:6e:98:
22:e9:eb:e6:0d:05:19:94:9f:19:da:5f:d4:dc:45:
e3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:77:53:2B:C3:99:DF:3B:F6:32:C2:F9:3D:05:14:52:DF:5C:97:F9
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20323131383236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.66.0/24
Signature Algorithm: sha256WithRSAEncryption
21:1b:46:80:19:83:79:de:a0:b2:0d:57:f9:c3:b6:1f:e0:7d:
11:30:af:7c:d8:f5:cb:7b:0a:77:be:0f:7f:79:5c:30:5a:6c:
6e:c7:d7:d3:99:17:81:1d:4f:1c:3f:15:34:db:7e:ae:50:32:
2d:f6:71:c2:c7:fd:5b:eb:c4:c5:93:72:82:8b:5a:f8:a6:72:
f8:4d:e6:30:65:ca:d5:7e:bf:a2:e3:67:a6:0f:ee:de:26:a7:
9d:3a:2f:23:2e:fa:71:44:41:cc:ae:49:53:69:8d:fc:a1:af:
7e:1e:e6:dc:67:69:7f:08:c9:21:e4:53:71:4e:c5:e4:81:3b:
41:5b:11:98:24:6d:5c:f3:9f:9b:ac:5c:a6:48:06:a0:67:0e:
43:67:ee:d6:93:f4:c8:83:07:34:a5:c5:ed:3f:55:2c:2d:55:
59:0a:7d:2d:1a:db:f6:53:e6:2d:05:70:51:69:eb:50:73:06:
38:a7:83:0a:71:7e:9e:14:b5:fe:ed:61:ee:2a:2b:41:ea:ab:
75:ec:35:51:fa:71:2f:84:d9:4f:69:45:6c:d4:48:37:4e:8a:
5f:aa:66:05:a5:5d:05:00:3e:a8:f3:c5:16:62:ee:34:f8:12:
55:fa:a1:17:4b:f4:18:f7:02:dc:30:15:41:f1:16:06:51:39:
40:c0:9e:2b
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUeSjPpoyY2QnDaPBzxkw7mmndFu8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yMzAzMDgxNTI1MTRaFw0yNDAzMDYxNTMwMTRaMDMxMTAvBgNV
BAMTKDI3Nzc1MzJCQzM5OURGM0JGNjMyQzJGOTNEMDUxNDUyREY1Qzk3RjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmdPtyXAyh1v+jh5/JW7UCGtx2
YyMDmtyubKnWqFy2OBVR/FxeqM0BumtbklCAeljqridHIsqmDDUDkq8ZXwxa+YBm
fCSHicNGqYqoHZVlln2+p/fav5K9YvHhndoSb/ruK8DjcE44v8kR0ulbNiUlWMIc
qEKbnNoHo2x3ami4ADVljb3vGpn0IzCDsz1KanyIb/TVzuLoZ/kKB7L+yQq04FFn
T9oe7NtypXj2ODRfpsDw/WiEtwH8Nery8ZyNZ24IWunjaw3URJGkwfyXeO9hHth8
QKFPafaOHmz5XjW0r8XR3VFdK9TRlpTVmeRumCLp6+YNBRmUnxnaX9TcRePNAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUJ3dTK8OZ3zv2MsL5PQUUUt9cl/kwHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM2
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzEzODMyMzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADVi0IwDQYJKoZIhvcNAQELBQADggEBACEbRoAZg3neoLINV/nDth/gfREwr3zY
9ct7Cne+D395XDBabG7H19OZF4EdTxw/FTTbfq5QMi32ccLH/VvrxMWTcoKLWvim
cvhN5jBlytV+v6LjZ6YP7t4mp506LyMu+nFEQcyuSVNpjfyhr34e5txnaX8IySHk
U3FOxeSBO0FbEZgkbVzzn5usXKZIBqBnDkNn7taT9MiDBzSlxe0/VSwtVVkKfS0a
2/ZT5i0FcFFp61BzBjingwpxfp4Utf7tYe4qK0Hqq3XsNVH6cS+E2U9pRWzUSDdO
il+qZgWlXQUAPqjzxRZi7jT4ElX6oRdL9Bj3AtwwFUHxFgZROUDAnis=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:19 2025 by rpki-client