Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e38302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: lF/KFJEwdn3rtk1Ip2bS9SsV3X5I+PwTiWSNgUhXS2s=
Subject key identifier: 8D:3E:B2:7F:B6:1E:FD:98:7B:40:3F:89:88:92:D0:F5:73:58:9C:12
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 7B30D4FF64501909AAE4383E80C0EE3B6F4DC8FF
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32342d3234203d3e20383334.roa
Signing time: Wed 25 Jan 2023 13:00:46 +0000
ROA not before: Wed 25 Jan 2023 12:55:46 +0000
ROA not after: Wed 24 Jan 2024 13:00:46 +0000
asID: 834
IP address blocks: 213.139.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:30:d4:ff:64:50:19:09:aa:e4:38:3e:80:c0:ee:3b:6f:4d:c8:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Jan 25 12:55:46 2023 GMT
Not After : Jan 24 13:00:46 2024 GMT
Subject: CN=8D3EB27FB61EFD987B403F898892D0F573589C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:60:3f:00:7a:eb:f2:05:09:f5:52:f5:d7:24:
fc:52:30:c5:17:92:f2:8d:9a:e9:0c:e2:e1:e3:bc:
0d:e3:6d:be:54:f2:92:bb:f7:8b:c7:2e:d4:4a:de:
9f:bd:2f:21:f5:ad:4f:fe:ed:98:19:2c:ef:54:c0:
a0:7a:b7:ff:95:f7:81:5d:68:8a:5e:bc:3c:a8:09:
05:1d:25:32:82:8e:21:7e:4c:03:78:1e:dd:12:6c:
32:48:28:0a:24:e5:6e:f7:23:15:32:1f:d9:02:79:
21:ea:72:f0:1f:ae:74:00:d5:37:39:14:29:0a:b9:
dd:bd:c7:95:eb:04:e6:2c:a6:bb:38:28:a3:8f:91:
c6:cf:f0:d8:8a:e3:1a:ca:3a:bb:b8:16:78:35:f7:
98:52:01:eb:ee:45:f0:38:b9:59:ae:fb:e9:5d:2b:
7d:08:32:b1:3f:bc:a5:63:a0:39:15:7b:4a:23:f4:
ce:a5:3c:9a:0f:8b:60:b7:d5:a6:f9:a9:18:1c:77:
2a:79:d6:59:a8:ad:af:70:3c:ad:89:02:a4:0a:45:
48:ba:c9:78:b7:17:f8:7a:01:f1:db:48:5d:a5:eb:
e8:e0:82:52:92:ac:cd:50:8b:64:fe:7c:5f:ba:ec:
e9:8b:8a:17:20:1c:d0:3d:d7:e5:56:0e:0f:94:a2:
85:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3E:B2:7F:B6:1E:FD:98:7B:40:3F:89:88:92:D0:F5:73:58:9C:12
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:9b:65:90:cf:49:6e:eb:7c:59:4e:7a:6b:99:0d:52:ac:9f:
a0:49:85:60:1e:54:8e:d2:a6:21:68:01:91:65:12:e5:39:1b:
bc:9c:7a:f1:c3:37:07:01:86:cb:fd:aa:6b:10:b7:4d:64:ee:
9a:d4:45:87:c8:ba:43:78:a6:a9:a0:c1:f2:54:e9:df:ce:50:
fb:b9:0b:cd:3b:a2:2e:14:5f:5a:02:f9:0a:f4:a6:20:f0:2a:
10:11:a5:6b:84:45:ac:0e:5c:7b:1b:bf:fb:75:85:9f:8d:88:
41:4e:a9:37:15:ff:47:63:5a:3f:a8:67:8c:61:8f:fd:20:20:
fe:3b:f5:af:10:e8:e5:bd:0e:db:65:2e:62:92:f5:11:59:e7:
ca:63:e3:bf:70:34:a4:04:38:5e:55:ba:3e:28:95:8a:8c:8f:
02:7b:0a:c5:60:cb:c6:18:7c:fe:53:a5:f7:63:1a:cc:c7:ae:
a8:1f:78:36:c9:0e:10:56:22:06:a6:50:d0:28:62:36:80:b9:
11:1a:79:20:b3:90:34:03:60:e9:27:d6:5a:a7:47:e0:1b:18:
00:f0:36:b1:12:89:c5:6a:f4:be:80:3f:f5:99:83:6b:66:1c:
5f:10:0a:c5:b3:4e:7e:79:a8:6f:7b:ab:a5:1d:21:59:40:ff:
1f:8f:2b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:53:56 2025 by rpki-client