Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3131312e3138382e302f32342d3234203d3e203330383233.roa
File: 3138352e3131312e3138382e302f32342d3234203d3e203330383233.roa (raw, json)
Hash identifier: TthnwyQiaan9VBRH0eV+vsQ8E6XuMYQJ7wVP8IOjQ6k=
Subject key identifier: 42:CB:AA:EC:30:0E:E0:06:48:B1:87:5E:5F:41:79:0A:C4:5C:53:09
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 4CEE3E20B99F3196905B8110E96B455393FE3745
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3131312e3138382e302f32342d3234203d3e203330383233.roa
Signing time: Tue 03 Jan 2023 16:11:55 +0000
ROA not before: Tue 03 Jan 2023 16:06:55 +0000
ROA not after: Tue 02 Jan 2024 16:11:55 +0000
asID: 30823
IP address blocks: 185.111.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ee:3e:20:b9:9f:31:96:90:5b:81:10:e9:6b:45:53:93:fe:37:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jan 3 16:06:55 2023 GMT
Not After : Jan 2 16:11:55 2024 GMT
Subject: CN=42CBAAEC300EE00648B1875E5F41790AC45C5309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:09:6c:4b:67:22:a5:de:7e:bc:3b:db:e7:bf:
24:05:b8:41:cf:cb:62:c1:63:d7:0b:71:3e:26:c1:
46:cc:9d:47:53:e3:4a:95:10:3f:05:cd:b3:c4:70:
17:ae:d6:68:b8:79:83:ef:e7:f6:25:a4:fc:83:15:
3c:eb:34:11:a3:76:40:9f:49:b5:f0:bf:9f:26:8a:
ec:1f:1b:64:0d:5a:09:53:91:a4:60:39:29:f6:fa:
27:3c:8e:9a:de:b8:ab:56:fa:60:dd:2e:d6:85:78:
27:67:2b:a1:a7:4f:fa:c7:b1:4f:c1:c3:f1:3c:95:
ce:35:43:51:90:91:d1:af:f4:d3:3e:91:1d:ec:13:
b1:97:87:ca:69:fd:9c:47:18:fc:7f:a6:3f:c0:e0:
20:6f:01:dd:2e:35:84:55:bc:8b:65:77:07:53:b0:
05:3e:bd:5e:da:1f:ec:4e:71:4f:5f:59:84:67:9f:
0c:35:1a:ba:f8:d9:4b:ad:27:65:cf:62:63:ca:5b:
49:23:1f:ac:53:87:94:28:e3:d4:eb:f8:6d:e1:7c:
79:1e:4e:af:46:f4:3f:fe:9d:ec:fe:13:dd:b3:05:
8a:f7:af:15:db:3e:cb:de:66:7b:01:e2:97:d9:74:
7f:b1:71:8d:fb:86:5e:cc:b3:ca:01:56:7f:77:62:
3f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CB:AA:EC:30:0E:E0:06:48:B1:87:5E:5F:41:79:0A:C4:5C:53:09
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3131312e3138382e302f32342d3234203d3e203330383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.188.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3e:22:cd:ca:3e:0f:3c:7f:15:95:a4:ec:25:df:56:a7:a9:
ae:ca:cb:fc:7a:94:ff:b8:a8:0d:3f:d4:97:12:9b:f9:92:03:
6c:d9:32:4f:13:78:7b:e7:f7:cb:a5:8a:97:df:3a:b6:64:00:
f7:31:62:48:1f:a4:22:ec:37:de:1b:c4:52:51:04:4e:b6:4a:
5a:c4:5b:17:7c:51:74:46:f6:1c:4a:97:d1:35:85:95:27:ca:
28:0c:ab:a7:45:13:79:4e:7e:4f:b4:0d:db:82:40:4d:52:5f:
17:ad:f7:ce:34:b7:7d:47:43:e7:42:43:fc:bf:96:d2:ca:3e:
99:8b:5d:49:22:fd:98:96:ab:1e:36:39:92:93:5f:8e:25:63:
ee:35:c8:51:b9:25:16:1d:5a:cd:58:e2:87:bb:e8:21:26:f1:
84:81:63:df:83:5f:d9:eb:09:48:93:bb:9a:1e:ca:98:54:96:
cb:b3:f7:95:df:8f:5d:f7:2f:0e:f0:c6:d1:2a:3e:b6:34:94:
0e:33:f6:7d:4c:9c:7a:65:96:3f:51:17:d9:14:13:a7:62:0b:
47:8d:72:0b:81:d2:09:f3:f3:0b:d8:40:18:29:92:18:ea:6a:
35:fc:0b:6d:03:b0:a0:d2:66:da:7d:39:88:8d:37:be:7e:65:
3d:3b:f2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org