Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e203632323430.roa
File: 3231332e3133392e37362e302f32332d3234203d3e203632323430.roa (raw, json)
Hash identifier: 6C7xW9p4ClprIIt8HkPxrWUmKZLkHPmzhb+N3qkRKb8=
Subject key identifier: B7:0B:BA:6E:D3:3D:23:82:59:A4:D3:0F:60:E6:80:7A:DE:17:37:2B
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 3B8C87F5CDF8211D76496A1D10EAB920140C7046
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e203632323430.roa
Signing time: Wed 25 Jan 2023 13:02:45 +0000
ROA not before: Wed 25 Jan 2023 12:57:45 +0000
ROA not after: Wed 24 Jan 2024 13:02:45 +0000
asID: 62240
IP address blocks: 213.139.76.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:8c:87:f5:cd:f8:21:1d:76:49:6a:1d:10:ea:b9:20:14:0c:70:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Jan 25 12:57:45 2023 GMT
Not After : Jan 24 13:02:45 2024 GMT
Subject: CN=B70BBA6ED33D238259A4D30F60E6807ADE17372B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:e4:1c:51:d5:da:b0:c0:9e:e0:e8:ca:0c:
c2:01:e9:19:69:d7:03:92:98:bf:e2:3b:4e:d5:7f:
f0:4b:13:96:59:a1:5f:7e:4f:f2:1e:09:60:97:24:
14:31:2e:b1:ca:87:e9:c1:86:72:99:84:b2:6a:17:
c6:a1:6c:82:ab:fa:dd:0e:04:26:73:df:3f:54:79:
c1:05:7c:ee:c5:75:55:ef:17:b6:ca:a5:d9:20:f8:
5e:43:89:03:65:e8:d5:20:34:01:46:c3:3b:61:b1:
7f:eb:2b:3a:30:0e:7e:e3:a6:df:1c:66:95:a6:9f:
ad:bd:14:67:83:31:b5:40:a9:e9:f4:5e:fa:ac:ed:
c4:b1:57:15:98:47:e1:82:f9:59:ce:b3:e6:58:4b:
1a:bd:63:bd:5e:09:4b:a5:28:44:b9:91:1e:79:39:
26:2c:00:6e:65:d8:62:fd:f7:84:24:ce:1d:ea:3e:
63:9d:88:ac:9d:9d:78:b1:29:5f:bf:48:38:f8:5a:
03:83:51:5d:ec:39:61:04:6f:3d:da:28:34:97:9f:
d8:ac:17:f7:e6:a1:e4:42:29:24:85:4a:a6:4a:82:
1a:54:00:27:4e:01:eb:81:75:54:43:31:6f:cf:55:
92:9a:8e:db:c9:60:94:c8:7e:5a:e6:9a:0d:de:d8:
1d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0B:BA:6E:D3:3D:23:82:59:A4:D3:0F:60:E6:80:7A:DE:17:37:2B
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.76.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:91:31:19:d7:33:38:fb:7b:34:0c:f9:5f:3c:40:65:36:4d:
c7:ef:f4:ef:20:d9:61:c3:e0:18:ff:1d:9a:87:7d:60:aa:e0:
a3:ad:5d:41:bf:03:18:99:44:59:b4:98:3d:f7:34:56:da:5b:
24:12:39:b9:14:e0:6d:51:30:58:1a:ca:ad:e6:cf:a1:64:f8:
a0:34:fd:dc:b4:6e:8e:58:c3:aa:18:35:d9:b1:d8:59:53:09:
20:db:9c:10:55:4d:1c:be:6f:ac:14:2c:61:0b:8b:f1:83:4d:
00:da:68:f2:5c:70:38:82:be:51:9e:6f:1c:a9:3a:a2:32:33:
7f:50:7a:d0:32:20:05:af:24:6d:51:e3:c6:d6:6d:1e:fb:bc:
9f:22:4d:c1:23:10:f3:1c:b6:2f:1e:02:74:68:87:ca:12:81:
c3:e8:9e:90:b5:89:00:06:2e:1d:6a:bc:84:b5:2f:8d:d7:3e:
90:db:25:a5:66:22:27:57:0e:ee:b5:d1:53:20:dc:a5:39:04:
d8:08:7c:43:dd:e6:bb:f0:bb:ae:92:e5:21:9b:94:75:73:1b:
02:81:21:52:12:15:7f:da:db:38:46:69:6e:cf:bf:f3:5e:7f:
b6:68:d6:f8:b3:29:a0:ff:49:26:e9:fd:76:7b:c6:13:0c:70:
4b:6e:f3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:53:58 2025 by rpki-client