Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20333933343237.roa
File: 3138352e3133302e36302e302f32342d3234203d3e20333933343237.roa (raw, json)
Hash identifier: mFjR3hyT/L3aOoysOC3CVuNrEdAQAVyeyUvyIX1q0G4=
Subject key identifier: E6:25:05:0C:53:1F:C4:50:53:9C:EE:B4:E9:EB:DF:95:81:2A:5E:83
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 448FCFE4B9ECB29F0307FA3D7AF5523638763861
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20333933343237.roa
Signing time: Fri 20 Jan 2023 23:23:53 +0000
ROA not before: Fri 20 Jan 2023 23:18:53 +0000
ROA not after: Fri 19 Jan 2024 23:23:53 +0000
asID: 393427
IP address blocks: 185.130.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:8f:cf:e4:b9:ec:b2:9f:03:07:fa:3d:7a:f5:52:36:38:76:38:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jan 20 23:18:53 2023 GMT
Not After : Jan 19 23:23:53 2024 GMT
Subject: CN=E625050C531FC450539CEEB4E9EBDF95812A5E83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:95:2e:f2:9c:4d:bd:00:4a:49:7f:da:63:f8:
1c:48:d0:fd:2f:db:8e:25:cc:d8:66:88:c2:2c:38:
d8:83:37:5c:34:44:5c:08:8e:b2:80:d5:be:d5:d3:
d4:63:cc:72:56:b3:4d:8b:95:69:76:05:b8:73:ec:
b1:68:26:06:4f:21:d4:2a:6f:c1:a1:05:ca:70:33:
1d:5d:dc:bc:de:92:51:19:37:c6:34:20:d6:ff:24:
dc:3f:9e:c9:5b:d4:78:04:5e:40:81:ee:8d:4a:eb:
c5:4a:27:64:f8:e4:59:df:a1:9e:b1:43:74:80:96:
6a:81:9d:78:ce:d2:2b:90:5c:d3:93:a2:b5:c4:c6:
d7:3a:52:50:fb:19:90:dd:aa:90:58:51:e2:7e:a3:
71:48:24:33:84:11:5f:4d:e8:97:f6:e3:97:6c:f8:
09:f0:bc:b5:5c:a0:0d:8a:4c:3e:7b:66:34:45:ef:
d3:f1:63:54:20:66:68:0a:67:e2:b3:2e:ba:4f:d9:
ab:86:d0:ab:9e:e4:84:57:86:a5:eb:80:cd:d7:47:
ed:b9:c8:52:9f:38:36:2b:21:aa:5c:f3:28:b8:de:
a0:32:05:50:f1:68:31:01:84:ba:c1:22:8e:dd:58:
a3:4a:9d:68:c6:61:d1:6b:d7:d0:b3:79:ab:13:8b:
b7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:25:05:0C:53:1F:C4:50:53:9C:EE:B4:E9:EB:DF:95:81:2A:5E:83
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20333933343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.60.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d8:18:17:83:c8:26:9c:76:1b:26:8d:60:64:8d:e2:5e:44:
12:9c:e9:7d:ac:83:8f:68:fb:75:24:f0:84:92:8e:ab:6f:01:
d3:5f:98:19:a2:04:43:26:ad:22:c0:f5:ce:8a:40:12:fa:e0:
10:11:0d:22:ee:0e:e6:d2:4f:25:ce:97:13:cb:3e:ee:c3:77:
ee:14:b1:a9:e4:19:7a:b5:00:58:ce:4c:cf:18:60:65:f0:a6:
a5:b2:d5:21:46:30:3a:31:cf:c8:d7:e6:d4:8b:c3:22:9c:a0:
95:a6:32:b4:e7:89:a8:1f:59:f3:27:bf:50:a4:c3:2b:54:32:
25:20:72:83:27:7d:fd:6f:5a:9a:10:73:03:5c:9b:42:d3:2b:
05:79:a5:76:10:4d:38:4f:79:b8:1d:3c:4d:dc:da:48:c4:84:
30:11:61:c0:9f:ca:1a:ee:35:78:00:a9:00:08:43:f8:ef:74:
8f:42:43:a2:cb:4b:45:3f:97:a6:47:1f:10:4a:af:29:cd:69:
d6:06:47:89:c9:91:bf:27:14:d5:08:f7:dc:86:ae:1f:4f:57:
36:c6:67:86:7d:74:77:e9:9c:d2:c4:67:65:fb:ea:9c:46:7b:
3c:92:0d:52:a8:d2:33:fd:ad:49:5a:b9:85:a1:80:de:e8:07:
7a:28:60:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org