Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32332d3234203d3e20383334.roa
File: 3231332e3133392e37382e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: SR+fjNlIAHFXusGNyL1Lwv0l8mKLiusjSNCq1XjRQU8=
Subject key identifier: 17:54:BD:7F:9E:5A:3B:AA:54:9A:1C:B9:78:DF:62:41:25:96:C9:88
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 145D53C82088A133CFDFA679086DCBA4F854ECD3
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32332d3234203d3e20383334.roa
Signing time: Sun 31 Dec 2023 00:00:05 +0000
ROA not before: Sat 30 Dec 2023 23:55:05 +0000
ROA not after: Sun 29 Dec 2024 00:00:05 +0000
asID: 834
IP address blocks: 213.139.78.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:5d:53:c8:20:88:a1:33:cf:df:a6:79:08:6d:cb:a4:f8:54:ec:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Dec 30 23:55:05 2023 GMT
Not After : Dec 29 00:00:05 2024 GMT
Subject: CN=1754BD7F9E5A3BAA549A1CB978DF62412596C988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:40:1c:20:ed:ce:70:bf:40:0d:3b:00:dc:6d:
a3:9b:70:33:f2:19:10:64:a1:4f:38:56:c7:bd:d8:
83:36:96:88:9c:8d:54:b1:96:9e:c2:13:00:09:dd:
ab:8b:76:e4:e5:94:0c:9c:d4:f2:c2:18:6f:31:87:
81:7f:54:ed:bc:14:cd:2f:fa:9e:01:9e:3c:69:6b:
65:d6:71:11:b3:e5:0d:a6:6f:7f:7e:6e:d4:99:a7:
50:f4:0f:1e:5e:f3:4e:40:a8:4e:de:c8:eb:9a:23:
47:e1:ab:d6:30:4d:61:0a:5e:f4:09:87:4e:3f:14:
68:07:ec:16:05:4c:0f:29:fe:ce:85:40:e3:85:00:
aa:6a:e7:82:8c:6e:16:61:64:a9:92:17:e9:df:27:
7c:99:d3:d8:6b:f5:8a:19:eb:12:1e:6e:1b:b1:d7:
6c:ad:c4:6f:29:ef:de:73:25:73:71:60:f5:06:38:
c2:e9:55:be:f9:51:f9:92:69:74:6b:55:a3:a8:95:
16:d0:d6:59:4a:a4:16:fb:24:53:57:37:e3:a4:5e:
76:a5:f7:fd:ea:5e:0a:ff:ef:92:c8:aa:3c:2f:7b:
73:f0:f6:cf:9f:be:69:44:0b:25:8c:f0:96:a9:a7:
c3:d4:7d:5b:58:13:e3:a0:3d:03:9a:af:60:e9:6b:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:54:BD:7F:9E:5A:3B:AA:54:9A:1C:B9:78:DF:62:41:25:96:C9:88
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.78.0/23
Signature Algorithm: sha256WithRSAEncryption
91:26:37:95:68:15:c8:a8:63:6e:11:ba:99:b0:8e:f1:fa:7a:
19:ab:10:30:7f:5e:16:de:e3:4c:ac:2f:c7:f3:9e:7e:fe:ce:
22:08:3c:a9:fa:18:ef:09:c5:8c:98:1d:06:aa:e9:e4:67:7a:
1d:88:e5:5f:61:fd:74:46:e5:0e:4c:a4:1e:63:37:ef:46:78:
a1:11:83:35:55:cc:40:25:86:23:95:17:93:60:2e:22:2c:3c:
0e:70:64:02:8e:8b:0d:c2:5e:1f:4d:3c:27:07:fa:8e:8a:06:
a8:a9:8b:e7:53:9b:ac:ea:51:4f:9e:fa:cf:14:c8:57:b3:0d:
d9:71:b5:9b:37:13:77:9e:5c:ae:a2:f9:0a:ac:85:5f:4a:f6:
09:97:9c:6f:8f:ce:26:ba:f4:91:6e:9f:52:db:67:2a:88:c5:
7c:4e:dc:53:60:35:69:c6:f9:cc:99:dd:0d:82:e1:47:73:75:
e7:a8:44:1f:93:29:5f:a8:41:86:d9:ac:59:60:d4:c5:02:75:
b2:9e:b6:26:4b:7a:f4:7f:13:34:fa:81:1d:5d:00:dd:00:0d:
74:a8:8b:d6:c4:ab:b4:86:fb:d0:68:8e:74:39:f3:a7:d3:ba:
96:6e:0b:df:1e:0c:7c:b0:df:82:8b:24:95:ba:39:c2:ae:93:
89:68:8c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:42:49 2025 by rpki-client