Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e203236303432.roa
File: 3231332e3133392e37392e302f32342d3234203d3e203236303432.roa (raw, json)
Hash identifier: 3X+DDiPARz+VDORhXejfitnHJgKI96I4wWxFVLhXGKw=
Subject key identifier: 74:6A:10:97:70:10:B2:59:B1:5A:25:77:46:8F:7B:34:70:BD:09:55
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 46DCC8F3C859B35FDB9BE922EC7F48DF0DE9EFAA
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e203236303432.roa
Signing time: Fri 05 Jan 2024 16:48:21 +0000
ROA not before: Fri 05 Jan 2024 16:43:21 +0000
ROA not after: Fri 03 Jan 2025 16:48:21 +0000
asID: 26042
IP address blocks: 213.139.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:dc:c8:f3:c8:59:b3:5f:db:9b:e9:22:ec:7f:48:df:0d:e9:ef:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Jan 5 16:43:21 2024 GMT
Not After : Jan 3 16:48:21 2025 GMT
Subject: CN=746A10977010B259B15A2577468F7B3470BD0955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f4:0f:70:4f:b0:ee:4e:cd:35:e0:b2:07:cd:
6e:30:7e:6f:d4:b9:f1:70:e4:d9:9a:e3:dd:ab:36:
39:ee:4c:ee:56:60:53:9b:be:a7:b3:cc:3b:3c:a8:
1b:71:e5:1c:3a:fd:ee:82:90:30:90:e0:c5:3c:cc:
49:d7:8f:c8:4a:61:ab:80:dd:8b:7d:70:12:49:b3:
1e:d0:61:44:62:4d:18:c7:9e:d1:ee:65:4a:7f:5d:
56:5e:ac:8c:d5:4c:9b:94:68:e0:ff:ac:11:df:45:
f9:a4:ec:e3:fc:6f:3f:24:46:58:de:e2:24:f4:2d:
0d:28:81:ef:d6:84:6f:0f:60:a5:48:f0:52:0c:48:
f8:8d:e0:01:a7:88:f9:d0:db:a0:29:ed:49:e7:39:
74:9c:ce:66:58:ac:d7:2f:d3:d1:00:1c:32:66:99:
e2:ba:4e:1e:7d:4e:81:87:5d:1f:b4:ef:84:2d:2a:
bc:f2:6d:16:c1:5f:e2:10:87:27:f9:3a:1f:d4:3e:
20:e2:d8:52:4e:db:2b:77:00:5c:da:81:8c:5d:86:
fe:ae:d9:77:37:f8:9a:b1:27:cd:71:21:eb:73:7b:
82:20:50:e5:f4:8b:ea:a3:6f:a3:ad:1b:dd:e4:f9:
e8:9c:62:d4:a3:b5:4e:bd:54:47:fd:0f:c6:b3:49:
ff:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6A:10:97:70:10:B2:59:B1:5A:25:77:46:8F:7B:34:70:BD:09:55
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e203236303432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.79.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:46:88:32:4f:e3:28:98:41:af:28:66:82:6f:cf:d3:5b:05:
e7:0a:a1:f9:ab:27:85:29:03:3b:12:7c:ac:fc:b3:ff:df:0a:
57:bd:d2:dc:c8:0b:8e:c8:26:f7:0d:e8:e2:5e:43:33:65:d6:
b1:ef:4f:e0:c7:ae:78:03:20:a2:52:fb:5e:c4:9c:f4:98:55:
b7:f5:cf:31:46:ae:e3:cb:67:05:07:90:8b:a3:83:6a:a7:a6:
c3:44:43:1c:d9:53:92:8e:9c:94:06:78:08:30:61:12:b6:92:
b2:77:11:7f:66:46:58:9a:5c:a6:c6:40:6d:4f:d0:c9:e7:f2:
dd:96:5e:37:a0:42:dc:5d:ef:16:de:9d:76:04:b4:f8:41:e2:
f6:33:fd:a5:2a:bc:1c:a6:ac:54:6e:24:0c:e1:38:85:ab:21:
38:d3:be:69:ee:b2:24:71:c3:6c:59:f5:80:51:59:4d:f4:c4:
95:7a:d8:b0:a7:07:5c:52:09:8d:5a:5a:9c:30:b4:e8:82:28:
5c:71:9b:2d:df:ec:ea:1b:2f:b7:61:ef:79:5e:44:ff:c0:92:
a8:a4:ad:cd:24:2c:6a:c6:8e:97:d9:55:02:1d:67:87:2f:34:
3a:cb:ee:b3:c7:c5:6e:58:95:50:76:7a:e2:e4:76:e2:ed:e3:
df:19:7c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:58:44 2025 by rpki-client