Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203232383232.roa
File: 3231332e3133392e39332e302f32342d3234203d3e203232383232.roa (raw, json)
Hash identifier: m9dSsHJIHRZIeNMuRl8Ma3QljoILg4pyuEnrI6U0NqA=
Subject key identifier: C2:93:4A:7D:AE:4C:14:74:EA:63:1A:27:75:92:4F:18:A0:C9:9D:D8
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 16D390A31F8BAAEAB38A33D43F8004D2C5758479
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203232383232.roa
Signing time: Wed 12 Apr 2023 11:27:09 +0000
ROA not before: Wed 12 Apr 2023 11:22:09 +0000
ROA not after: Wed 10 Apr 2024 11:27:09 +0000
asID: 22822
IP address blocks: 213.139.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:d3:90:a3:1f:8b:aa:ea:b3:8a:33:d4:3f:80:04:d2:c5:75:84:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Apr 12 11:22:09 2023 GMT
Not After : Apr 10 11:27:09 2024 GMT
Subject: CN=C2934A7DAE4C1474EA631A2775924F18A0C99DD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6d:09:5b:d6:8e:0d:99:e2:b2:db:25:42:bc:
4b:7e:38:ee:50:fc:06:59:59:b7:f9:40:5d:96:0f:
a5:f0:53:c8:e1:79:31:67:44:c3:a6:3d:f2:83:19:
74:fd:dc:e0:a3:21:28:0a:1b:d8:e7:7b:6d:b5:3e:
3f:1d:d8:6f:4e:f7:ef:a1:8a:c0:a1:76:a7:b6:15:
24:b3:c4:83:e9:4c:92:32:22:a2:c8:f8:9a:48:62:
39:04:48:9a:b7:3e:28:cf:64:57:a4:27:9e:d8:91:
92:91:7a:d8:46:b2:52:1f:5e:13:c4:09:ed:27:c1:
6c:d4:9f:4c:86:60:6c:4a:fd:31:d4:e0:fe:71:fa:
c3:d9:57:2f:40:7c:02:71:f2:f6:b1:83:b5:c6:d2:
21:7f:9b:3f:82:9a:ec:2c:e0:1e:8c:63:83:44:1b:
96:2d:fe:15:96:20:74:7d:0f:e4:71:69:9f:bb:ad:
63:f2:2f:c5:02:e2:4e:4e:7d:d8:c3:f4:e2:24:bb:
60:75:b8:e6:23:f2:67:f7:0d:90:05:7a:2f:72:23:
89:12:43:c9:c7:9a:d1:4c:bd:82:dc:61:02:10:fb:
95:4d:7c:dc:0e:23:ec:bc:c3:12:8f:1e:51:5b:1f:
e0:c6:cd:dd:72:5e:92:58:c7:73:c0:47:9d:f3:00:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:93:4A:7D:AE:4C:14:74:EA:63:1A:27:75:92:4F:18:A0:C9:9D:D8
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e203232383232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.93.0/24
Signature Algorithm: sha256WithRSAEncryption
06:dd:6f:4e:67:e9:bd:b2:1a:49:ee:b0:77:3b:65:ac:21:12:
56:e9:03:ba:38:67:6e:7b:25:35:82:b0:16:76:0b:d5:f4:09:
ba:99:d7:09:dd:7d:2b:27:e8:c4:09:38:61:b7:ac:be:42:ec:
7a:b9:f3:c7:19:59:ac:67:43:c0:4a:96:53:a6:dd:47:54:49:
8d:37:0b:3e:f6:f8:ed:3c:6f:e2:f6:8f:ce:96:8c:9f:db:51:
51:0e:5f:65:4a:18:8c:a8:49:6f:c6:d9:b4:f6:4d:45:85:9a:
1f:52:dc:e8:31:80:9b:9b:3d:74:c5:32:52:9d:14:07:d6:2b:
c9:e9:9b:9c:9d:e6:4f:bb:5c:9f:8b:6f:fe:ad:64:0a:da:38:
b8:f8:00:68:1b:dd:98:a2:25:42:df:04:7f:08:6e:b9:31:8d:
31:95:95:4e:72:6c:46:3d:37:00:8b:b5:f9:47:b0:bb:b9:6e:
91:5e:bf:32:44:89:88:d6:76:47:9a:47:65:80:54:fd:65:2c:
59:27:d1:8e:8c:6b:84:64:e8:64:dd:a1:66:79:2c:ff:a8:4e:
46:8a:ac:ec:e5:79:1d:82:4b:fe:2f:ff:bc:16:a7:2e:71:4f:
fe:89:9d:73:75:9a:28:5c:d3:51:d1:b0:2f:98:df:ed:50:e5:
86:8e:32:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:50:34 2025 by rpki-client