Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e203434353437.roa
File: 3138352e3137322e3137332e302f32342d3234203d3e203434353437.roa (raw, json)
Hash identifier: UoUwv7NE2LW770wj8JcbrVuo/rhsfVH4oglw8iOIenw=
Subject key identifier: 0B:98:53:51:C2:2B:AF:F5:4F:4C:2D:0E:D3:9B:4C:B5:03:E8:59:61
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 3856E47BD2BEE402D1F9AF83CE03D7B2D66439B8
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e203434353437.roa
Signing time: Fri 14 Apr 2023 15:58:08 +0000
ROA not before: Fri 14 Apr 2023 15:53:08 +0000
ROA not after: Fri 12 Apr 2024 15:58:08 +0000
asID: 44547
IP address blocks: 185.172.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:56:e4:7b:d2:be:e4:02:d1:f9:af:83:ce:03:d7:b2:d6:64:39:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Apr 14 15:53:08 2023 GMT
Not After : Apr 12 15:58:08 2024 GMT
Subject: CN=0B985351C22BAFF54F4C2D0ED39B4CB503E85961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:46:64:45:fb:91:2d:bf:da:69:15:8b:c3:ab:
19:7c:df:57:6a:cc:3d:b8:80:ac:bc:0a:12:37:2d:
f9:66:52:17:6a:20:6e:fc:bb:6e:d4:7c:da:36:e8:
1d:9c:8a:0d:db:d8:b0:c4:79:4c:b1:c4:ac:c1:d8:
d6:c5:d6:7c:64:70:a7:a0:2f:b8:fb:cb:60:1d:7f:
e4:29:30:ec:c4:aa:68:6b:e0:06:64:9a:b4:ef:0c:
5e:9d:79:36:54:86:20:f8:fd:67:1d:37:a0:78:50:
91:c5:90:d3:48:2a:a0:d7:91:08:15:ed:06:36:da:
16:35:de:db:8f:1d:4e:f3:2d:59:ed:18:93:60:20:
96:fd:07:e2:91:16:0a:2e:8a:24:c1:37:ef:8b:82:
69:d0:16:fd:25:6c:b9:32:49:d9:a9:fa:a6:5e:b9:
5a:53:79:4f:83:0e:08:fd:03:7b:25:8e:25:1b:0c:
9b:00:b7:3d:4d:9f:32:a7:51:ed:a3:6d:0b:e9:f6:
10:cd:7c:cd:0f:17:4c:ef:92:9b:1c:8a:7a:40:ca:
e9:39:7d:35:77:45:52:ad:53:05:74:d2:0e:cb:7f:
57:9f:81:0d:a1:48:fe:5e:d9:ed:76:13:8c:10:d9:
c7:e8:b8:95:b7:07:6b:3f:5c:d0:ed:9e:0f:db:99:
34:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:98:53:51:C2:2B:AF:F5:4F:4C:2D:0E:D3:9B:4C:B5:03:E8:59:61
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e203434353437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.173.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b4:76:a4:a9:36:0e:5c:3f:7c:01:f9:30:36:8e:07:eb:2d:
5d:1c:c6:7d:a2:f1:87:4a:bc:b3:0c:de:b3:75:f8:2f:50:71:
75:cc:b9:f6:35:1c:0d:22:f5:42:eb:80:31:c8:fb:f6:e8:dd:
1e:41:b3:6d:a4:dd:1c:cf:14:59:ab:42:d6:cc:8b:1a:50:97:
34:a5:0e:84:8c:eb:78:29:e0:16:c5:69:94:ea:05:40:7e:c3:
3a:bb:53:d2:05:ad:4d:89:01:71:2e:32:a9:7a:11:a1:b2:02:
80:42:f6:08:f3:5d:b3:29:94:ab:f4:32:5a:4a:e4:4b:9d:af:
42:06:4e:bc:b9:59:1b:0b:e9:d2:7e:0d:02:78:a6:51:54:6f:
b7:54:03:ba:bb:c5:f1:96:b2:8f:9d:ab:ff:b8:8c:78:a1:72:
b8:4d:40:ff:4b:e2:0d:49:59:57:60:7f:1a:8b:c8:b4:b3:f2:
4e:3b:d8:bd:a9:dc:59:3f:83:76:99:60:de:ed:d8:35:3c:58:
80:ea:0a:21:86:d7:0e:25:f8:19:21:79:4d:63:5d:34:93:22:
28:52:ff:df:d8:01:51:e6:fe:90:5d:68:22:eb:3d:75:ec:b8:
dd:80:cf:78:0d:e8:61:d4:50:b4:3f:83:90:69:3b:97:6f:8e:
ed:35:5d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org