Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3137362e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: ysY2F5FgU3phqPBhrPVYbZ7a8jA4PIEW1KFyMjfx8nA=
Subject key identifier: CE:D3:D6:E5:65:F3:B0:8F:C9:11:95:F2:04:97:F9:50:0E:FE:EE:DA
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 0B81986A6185BE4FE5EEBE0E189218D23E4B0A98
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e203233343730.roa
Signing time: Mon 08 Jan 2024 09:21:28 +0000
ROA not before: Mon 08 Jan 2024 09:16:28 +0000
ROA not after: Mon 06 Jan 2025 09:21:28 +0000
asID: 23470
IP address blocks: 109.110.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:81:98:6a:61:85:be:4f:e5:ee:be:0e:18:92:18:d2:3e:4b:0a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 8 09:16:28 2024 GMT
Not After : Jan 6 09:21:28 2025 GMT
Subject: CN=CED3D6E565F3B08FC91195F20497F9500EFEEEDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3f:74:68:be:6f:4a:21:aa:d8:95:bf:87:9b:
bb:5d:32:dc:0c:86:31:03:15:40:23:d7:a1:9d:c7:
34:fe:fc:c4:ea:f1:3f:0b:19:fb:30:67:6a:c7:d0:
3e:8e:a4:51:c6:3c:26:40:a4:ae:99:08:3f:6f:33:
1b:92:26:9f:3e:11:d4:64:57:bb:f6:46:64:f6:53:
31:4e:00:80:6c:ff:0c:07:ee:9f:43:02:53:c6:c5:
47:8b:23:cc:b8:75:d0:2e:57:00:5f:45:de:1a:49:
08:f6:a3:c3:2b:b3:62:37:a2:f7:d1:49:3b:4c:e2:
3c:f6:dc:95:7b:a5:1e:bf:cf:4b:02:88:fc:f2:67:
97:a3:8d:0e:85:66:df:8c:ad:7a:d4:32:74:22:59:
c4:fe:39:75:19:5f:37:3a:5e:b4:e3:46:86:43:15:
20:20:02:3a:64:0c:5e:af:b9:3f:a9:17:6e:b5:52:
23:64:8e:40:4b:4b:e5:af:50:6f:90:93:ef:1a:e0:
a6:8f:bd:9b:92:95:22:fa:c6:26:e6:b0:7f:f8:ad:
59:9c:9a:2e:d6:40:e7:eb:13:ec:78:22:2c:74:b3:
6d:a3:bb:27:8b:73:46:df:2a:e9:4f:43:0f:f1:05:
88:cb:c1:4d:ef:83:15:bf:cc:aa:e2:7c:70:cf:fe:
d5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D3:D6:E5:65:F3:B0:8F:C9:11:95:F2:04:97:F9:50:0E:FE:EE:DA
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.176.0/24
Signature Algorithm: sha256WithRSAEncryption
79:03:64:f2:93:6c:01:d7:4d:2e:9b:76:f8:b9:5a:cf:bd:d2:
99:0c:22:1b:ae:39:80:aa:4f:59:c9:3b:b2:d1:36:82:72:63:
43:ba:3d:bb:36:94:d3:ec:92:30:79:25:e2:94:37:03:61:64:
02:00:ab:ad:3e:97:8d:d7:08:dc:7e:95:d6:09:ce:96:0f:b2:
c9:8e:3e:7e:89:0c:ea:33:3c:eb:36:dc:32:1d:f3:a8:46:1f:
83:92:32:bc:6f:1b:6d:ce:49:09:eb:3a:c6:f1:41:3c:2b:a0:
fc:23:6a:11:58:3d:6c:03:a7:e2:97:f5:13:3e:6c:67:f2:e7:
67:40:8e:6b:1e:8f:38:7b:2d:19:2b:bc:68:c0:f2:e2:a7:b9:
16:77:66:a2:be:66:57:2c:f3:19:9a:a7:b0:88:d1:57:23:68:
ad:31:ce:f5:5e:e2:af:3a:38:88:db:54:5c:80:fb:53:69:40:
60:d6:37:24:a8:19:55:97:1c:f9:56:1a:e6:f7:6b:a4:62:64:
14:24:e3:2d:1d:c5:47:f9:4f:5d:d6:b4:1d:2f:ed:50:6d:d8:
40:b7:15:8c:27:50:df:7f:47:e4:59:96:01:ab:f6:82:03:26:
d7:3c:a5:e1:7e:93:7b:b0:8a:b4:50:4c:66:25:74:e7:c9:b5:
4e:34:8f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:56:50 2025 by rpki-client