Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/34362e3235302e3234302e302f32302d3234203d3e2033333230.roa
File: 34362e3235302e3234302e302f32302d3234203d3e2033333230.roa (raw, json)
Hash identifier: Z3nATf5x7yVH/i9di0eOCOuTXDAx3tcw59+HbHin/5E=
Subject key identifier: 32:A6:F5:AA:B3:FD:E0:24:E4:73:5B:DF:1B:CE:FF:70:60:C5:8E:8D
Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Certificate serial: 0822AE81A13578188A5B3B05EF9E729C43F8A131
Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/34362e3235302e3234302e302f32302d3234203d3e2033333230.roa
Signing time: Sat 17 Dec 2022 04:34:16 +0000
ROA not before: Sat 17 Dec 2022 04:29:16 +0000
ROA not after: Sat 16 Dec 2023 04:34:16 +0000
asID: 3320
IP address blocks: 46.250.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:22:ae:81:a1:35:78:18:8a:5b:3b:05:ef:9e:72:9c:43:f8:a1:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad
Validity
Not Before: Dec 17 04:29:16 2022 GMT
Not After : Dec 16 04:34:16 2023 GMT
Subject: CN=32A6F5AAB3FDE024E4735BDF1BCEFF7060C58E8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:83:8e:fe:aa:3e:0c:69:a3:d1:6b:2c:e9:c3:
b5:87:92:d0:01:9d:ad:d1:41:e8:dc:6d:a6:6d:ef:
ae:fd:9b:32:36:0e:c4:51:e9:9e:1f:23:a2:ba:91:
ce:7f:84:b0:31:a1:e3:c9:64:48:ce:51:2b:b6:4e:
ad:a2:3d:83:7f:e5:d2:16:03:c5:be:dc:9a:1f:13:
ac:08:4c:b8:fb:82:2e:9a:c0:b5:26:96:71:11:a1:
e5:d6:1a:2f:75:87:73:73:bc:f6:eb:82:1b:f1:9f:
05:24:df:c8:e8:05:02:6b:d7:95:b7:81:05:50:a9:
f2:42:28:5f:7a:ac:aa:4c:d9:ca:b9:98:15:34:b3:
13:d5:25:c4:a5:7f:c7:1f:a5:1d:5a:83:a1:cb:82:
7a:f2:40:cf:91:27:8c:6e:36:1a:d5:8c:8e:59:78:
54:f9:3b:0a:77:29:ec:36:9a:13:66:81:21:20:14:
17:b3:88:6e:08:7c:16:98:6e:6f:e1:af:75:a7:f4:
fc:23:25:b9:d8:61:df:f2:86:a3:a4:48:e9:2d:dc:
b8:59:79:17:95:0d:5e:9e:d2:1f:c1:3d:b8:ed:f9:
dd:9b:2c:7d:8d:89:4c:3c:b4:f9:03:32:54:ee:4a:
44:d9:b9:0f:2f:15:c4:3e:80:c3:fd:8a:5e:8f:eb:
69:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A6:F5:AA:B3:FD:E0:24:E4:73:5B:DF:1B:CE:FF:70:60:C5:8E:8D
X509v3 Authority Key Identifier:
keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/34362e3235302e3234302e302f32302d3234203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.250.240.0/20
Signature Algorithm: sha256WithRSAEncryption
02:5f:46:0e:ac:2c:a5:f2:07:ac:49:4e:db:75:81:eb:2c:ef:
92:a8:82:84:f2:bd:db:2b:cc:35:b8:3c:b1:88:20:1c:4d:0a:
1a:f1:76:f8:98:4f:2e:e1:9b:32:cc:3c:d2:01:3c:37:5e:7e:
fd:3b:0f:12:3b:df:5a:f2:30:e8:9c:77:2a:1f:68:29:b0:fb:
82:75:25:4c:bb:b9:e5:60:70:1e:b1:ed:50:bb:60:6e:a0:11:
dd:10:54:c1:7c:2b:0d:2a:54:e2:cf:4b:96:97:e0:68:93:7c:
83:bf:06:1b:2f:63:12:0f:7c:47:05:5f:e2:79:36:3d:44:78:
57:a1:3e:dd:65:0e:dd:e2:95:70:de:bf:f5:d7:d2:20:ac:c2:
a7:f5:67:51:a0:d7:bb:9e:d1:2d:ed:3c:1c:6d:b1:24:d5:52:
19:19:e8:c2:78:0c:3e:53:18:31:1a:a5:f4:7f:8f:d4:ef:f0:
45:60:10:33:b5:e7:d0:f4:a1:5e:6a:71:8b:c5:e4:47:0c:56:
53:2c:4f:34:d2:f0:a2:70:84:4f:b8:98:1a:ee:0f:23:99:aa:
16:ae:15:58:5c:5f:82:f6:6d:e4:6a:bc:f9:d8:79:8d:42:2c:
68:b6:cc:1e:26:5e:6f:f2:ae:d6:b2:97:93:b4:f3:93:0a:71:
4b:a2:98:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org