Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20323133333035.roa
File: 34352e39312e3133382e302f32342d3234203d3e20323133333035.roa (raw, json)
Hash identifier: jxwIpV2X93cUh8yniv1IzoUhqmhjcmL4Lln6GiMdyCc=
Subject key identifier: 5F:8E:AC:65:F7:F5:6A:47:4A:CE:27:8A:2A:F2:72:90:BC:29:70:E0
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 4F1B1F5AC2D270523F8387E10306A8489CC40CF5
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20323133333035.roa
Signing time: Tue 04 Apr 2023 22:29:21 +0000
ROA not before: Tue 04 Apr 2023 22:24:21 +0000
ROA not after: Tue 02 Apr 2024 22:29:21 +0000
asID: 213305
IP address blocks: 45.91.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:1b:1f:5a:c2:d2:70:52:3f:83:87:e1:03:06:a8:48:9c:c4:0c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Apr 4 22:24:21 2023 GMT
Not After : Apr 2 22:29:21 2024 GMT
Subject: CN=5F8EAC65F7F56A474ACE278A2AF27290BC2970E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:01:62:2a:9e:a6:83:14:61:c7:88:62:55:c7:
f7:8a:36:30:0d:d2:ff:87:d1:29:75:21:25:7d:0f:
43:62:2a:21:8e:a3:97:59:3d:73:af:52:4f:6d:59:
d3:da:bc:87:19:c4:9d:78:97:b5:6d:0a:97:92:a6:
2b:7e:5c:1b:20:a1:a8:0a:cf:a0:8d:b7:f3:46:33:
22:9c:24:68:6e:d0:58:bd:fe:92:28:43:52:12:95:
da:7d:ef:87:a5:54:b4:a0:bd:18:e9:6c:ed:1f:f6:
e5:e8:8e:4c:c7:f2:b2:00:fb:54:6d:38:c4:6a:2b:
90:33:89:1f:99:52:a7:9c:31:92:32:84:fb:b5:d1:
c3:82:d2:46:13:71:0e:5d:b2:13:e0:1a:d5:21:c9:
88:15:56:eb:c9:aa:67:b6:fd:9b:58:82:73:55:35:
15:64:0f:c5:53:ca:55:7f:68:7e:af:0f:5b:3c:a3:
8f:e0:00:5f:d4:88:07:3f:31:4e:b0:a5:90:03:26:
e8:7a:71:3e:3f:54:1d:a1:3f:e0:30:f4:81:e4:ef:
14:b9:60:e8:7f:07:53:c5:b7:a8:59:08:ad:06:b0:
e6:3e:fa:b6:18:2b:ed:d2:ff:ef:ee:dc:c2:8a:f3:
4b:47:52:29:f3:ab:16:73:f8:7e:a7:6e:9b:21:0c:
25:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8E:AC:65:F7:F5:6A:47:4A:CE:27:8A:2A:F2:72:90:BC:29:70:E0
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20323133333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.138.0/24
Signature Algorithm: sha256WithRSAEncryption
60:5f:e5:fa:a7:33:54:50:64:8f:49:1e:b8:a7:01:de:f4:25:
fd:9b:56:52:74:dc:7b:95:c4:1b:1f:4c:3f:52:4e:18:a0:44:
d8:17:ba:ab:dd:a3:f2:29:20:0e:4e:59:73:d5:a1:5a:89:e3:
c3:4a:62:7a:d8:22:b6:8c:74:95:47:54:c7:9f:af:99:50:a2:
5c:26:a7:16:cd:9e:5a:72:76:b7:de:69:6c:af:b2:7c:fd:52:
17:d3:2e:9b:9b:b6:c0:63:d6:a8:08:58:da:28:80:a9:66:3d:
4d:07:27:10:b8:5c:64:00:dd:41:c7:c5:54:97:53:3a:e2:c1:
57:6b:c5:2f:e3:b5:6a:dc:81:33:8a:a0:1d:a8:c6:0c:e4:b1:
60:bb:f8:cc:9b:c2:c5:44:52:4a:15:3e:ed:67:96:d7:34:3e:
b4:62:b9:0c:27:53:16:39:d5:5c:ba:d8:2f:8e:a0:61:1c:b8:
f7:c6:14:12:0b:17:99:cf:31:d9:01:d1:02:b4:89:61:a7:28:
30:6b:32:e8:70:ca:9e:3b:5c:9c:b3:17:2c:3d:20:1e:3d:11:
c7:24:22:05:cf:7b:fa:7a:42:2f:24:77:f3:d8:ca:a2:e6:41:
48:02:10:28:07:96:c6:74:bb:ac:a9:bd:00:cc:18:75:28:d9:
f1:19:d9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org