Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e203632323430.roa
File: 3231332e3133392e37342e302f32332d3234203d3e203632323430.roa (raw, json)
Hash identifier: bVRa1lHz1OMKDNxTPbOBUWvL8BP/oURzdlCJhWftzZ4=
Subject key identifier: 26:53:A7:C0:9E:D6:66:D9:ED:B8:55:C5:29:9E:41:10:CB:80:3C:22
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 6511DA574561D5A8F691433E9FBCB48358496007
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e203632323430.roa
Signing time: Wed 25 Jan 2023 13:02:42 +0000
ROA not before: Wed 25 Jan 2023 12:57:42 +0000
ROA not after: Wed 24 Jan 2024 13:02:42 +0000
asID: 62240
IP address blocks: 213.139.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:11:da:57:45:61:d5:a8:f6:91:43:3e:9f:bc:b4:83:58:49:60:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Jan 25 12:57:42 2023 GMT
Not After : Jan 24 13:02:42 2024 GMT
Subject: CN=2653A7C09ED666D9EDB855C5299E4110CB803C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a5:a1:ec:1e:88:6c:e2:60:b0:23:eb:f1:df:
6d:37:e2:0a:9f:17:a0:ba:9c:81:56:aa:b7:a7:19:
15:d6:13:fa:18:63:85:ba:52:09:4d:a4:1d:c8:f0:
8d:bf:ea:4a:d8:48:1e:ae:4e:db:66:9a:46:98:0d:
9b:4c:95:fe:5c:5f:6c:93:65:e5:36:08:1b:4c:d7:
9d:84:a8:d6:e7:31:56:30:64:af:42:88:91:14:49:
97:06:ea:cc:85:de:f0:aa:da:72:4f:48:be:20:52:
b2:d1:c5:82:80:f3:ae:18:94:32:54:49:ba:d8:df:
b9:8a:4e:a3:c9:be:00:28:64:92:fe:39:bd:c1:3b:
40:19:9e:33:54:80:c5:d9:be:18:e9:c2:93:32:d6:
c2:cd:24:fd:56:b3:6d:01:0d:50:88:8b:70:27:60:
2f:82:1e:88:b0:bc:66:de:60:ab:0e:10:d6:27:d1:
8b:1d:01:d3:86:92:af:6c:db:62:6c:db:fa:e3:36:
a9:83:1f:4a:eb:9d:e7:18:e1:73:2a:73:a5:cb:df:
fe:26:a4:48:ac:0f:8f:9f:8a:96:99:53:00:4b:52:
c1:42:71:87:48:0f:23:c3:12:02:0b:6d:94:5b:cd:
af:cd:90:f1:db:00:22:d3:f0:0e:12:1d:18:58:06:
2c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:53:A7:C0:9E:D6:66:D9:ED:B8:55:C5:29:9E:41:10:CB:80:3C:22
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.74.0/23
Signature Algorithm: sha256WithRSAEncryption
29:eb:ae:22:c1:4c:dc:f2:34:6a:a9:f8:b0:94:43:48:86:b5:
2f:dd:1c:76:ea:2d:4e:9c:77:7d:76:77:ee:0e:fd:65:b9:fb:
99:b0:6d:74:87:22:d0:bf:d2:86:af:a5:2f:70:5c:3c:df:25:
eb:7f:cc:01:56:ed:13:e0:85:c5:de:d5:cf:7e:f0:c5:e0:08:
71:48:30:95:1f:98:23:21:81:10:38:01:06:55:db:ea:10:d2:
6a:86:66:ec:c5:27:a1:98:ca:fb:8b:b4:bd:65:93:d1:9b:00:
88:2d:c1:9a:ec:8b:a9:8d:12:cb:53:b2:10:c1:12:45:de:a6:
fe:4a:33:ca:8d:92:28:e5:a0:6e:57:98:ab:10:8b:06:06:b5:
9c:81:0a:ea:e1:b4:c5:14:e3:f3:4a:c1:15:a1:b9:1c:68:22:
2c:4d:c7:0a:c2:f3:c3:ce:fc:3d:15:5b:e0:6b:ec:ef:0e:2e:
59:36:d4:f8:ff:01:02:96:49:99:de:cd:c3:16:de:a4:10:c4:
48:b2:07:08:ae:05:8c:59:c8:0f:a4:62:23:fa:e8:99:43:a0:
2e:6a:f2:4b:fc:57:1d:82:5e:03:50:36:53:af:77:d1:4b:e0:
a4:02:c7:7c:d5:f8:76:10:02:13:01:4d:7a:57:8c:32:ba:61:
2b:57:a2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:48:42 2025 by rpki-client