Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20323133333035.roa
File: 3138352e3137322e3137332e302f32342d3234203d3e20323133333035.roa (raw, json)
Hash identifier: fmiVd1TZ4cVamInihrbADvNniWK0oPcR3+bAJBDozuE=
Subject key identifier: E4:F8:7F:37:6D:26:5C:AF:F7:1B:9A:26:8F:CA:14:2D:74:4C:FE:73
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 19D121500957882F79D0BB8E6078177012551946
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20323133333035.roa
Signing time: Wed 22 Mar 2023 18:07:14 +0000
ROA not before: Wed 22 Mar 2023 18:02:14 +0000
ROA not after: Wed 20 Mar 2024 18:07:14 +0000
asID: 213305
IP address blocks: 185.172.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d1:21:50:09:57:88:2f:79:d0:bb:8e:60:78:17:70:12:55:19:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:02:14 2023 GMT
Not After : Mar 20 18:07:14 2024 GMT
Subject: CN=E4F87F376D265CAFF71B9A268FCA142D744CFE73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dd:65:92:d2:43:03:ce:b7:d2:b1:53:85:b5:
aa:68:51:43:fe:6d:d1:dc:73:56:50:f5:c1:0a:b8:
f7:4c:9c:00:45:8c:90:e2:0d:6d:30:d3:41:a3:90:
78:7e:55:00:e5:b1:25:f9:35:50:87:75:99:c8:3c:
0e:bd:30:8a:14:39:99:82:bf:18:15:07:2d:a3:5d:
a8:92:77:76:2e:e5:39:ef:a6:43:e4:5a:c5:fc:dd:
e5:b9:dd:1d:38:15:a0:09:a4:ca:19:e1:33:95:3e:
35:d2:5e:13:96:2b:64:44:8b:9b:6a:7a:5e:60:05:
ff:33:b7:9e:5f:5e:a0:5a:78:73:7e:d6:ce:04:b9:
34:d8:8b:e9:9a:59:95:88:72:9c:60:04:95:8f:ad:
aa:60:b3:10:ae:3a:f7:16:24:fe:a5:36:26:b4:9a:
4d:d5:cc:2a:35:88:78:19:a1:f6:49:7e:5b:fe:04:
21:7f:7e:6a:37:91:6d:86:bb:1c:0b:32:80:6c:03:
f0:ee:69:4d:b9:57:aa:14:1f:b7:69:9f:71:43:3f:
46:00:b6:0d:70:eb:33:32:75:f4:4c:90:af:b1:90:
1d:39:5e:23:b7:90:a6:0c:92:ea:14:ed:42:38:08:
eb:b7:08:47:3a:c4:3d:80:18:fc:3c:73:63:51:f8:
6c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F8:7F:37:6D:26:5C:AF:F7:1B:9A:26:8F:CA:14:2D:74:4C:FE:73
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20323133333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a3:fb:b3:47:9d:5f:b2:f1:1e:fd:22:54:a1:7f:23:ec:2b:
1c:d2:7e:26:6e:2e:cb:69:e3:6a:ed:6a:98:8d:d7:0c:0c:9f:
ae:30:3a:0a:3c:85:9c:ea:90:5e:78:ad:6f:f5:1d:0c:4d:f2:
02:72:09:8d:4b:c0:15:4b:ad:ed:b6:80:b6:fa:a5:c3:57:8c:
c4:34:31:cb:5e:52:16:44:8e:a4:78:52:c8:0f:d6:86:55:db:
dd:58:40:88:2a:b2:27:f9:d7:b7:45:17:aa:f4:77:d5:87:c6:
bb:b1:50:eb:27:83:de:10:f2:bf:7a:72:4a:4b:89:66:60:64:
25:3b:58:2c:5b:69:15:df:f5:fc:da:9e:27:8b:95:48:c1:e0:
35:8a:2f:f5:43:50:17:53:1e:2b:3b:13:33:a8:dc:4f:c8:fc:
cf:56:64:4c:34:81:6b:4d:3d:24:39:c6:c3:03:07:b8:ac:89:
e6:47:8e:97:6f:b7:7f:41:16:88:c5:07:94:fe:d5:98:4f:47:
30:03:f5:b2:3a:0e:6d:d4:22:6f:f8:e2:e3:8c:12:fd:b4:96:
cc:64:24:98:a1:eb:ad:26:96:61:ff:7f:07:fb:07:84:bb:ba:
45:cf:4c:8a:3c:ae:88:48:2c:27:19:54:a9:d2:8b:07:49:df:
ec:38:a7:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org