Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e20313339363438.roa
File: 3138352e3231332e3234332e302f32342d3234203d3e20313339363438.roa (raw, json)
Hash identifier: VCZKY3D8oyF+idG2KPtiGs44rnlQtLa0mR2BXwFlOzI=
Subject key identifier: 7E:9E:B5:32:31:BB:98:29:43:AD:ED:74:1F:7F:4E:A6:8B:D0:6C:A0
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 628A4CF36920051C7B3C677AB67BFD26DC006B47
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e20313339363438.roa
Signing time: Mon 16 Jan 2023 03:45:48 +0000
ROA not before: Mon 16 Jan 2023 03:40:48 +0000
ROA not after: Mon 15 Jan 2024 03:45:48 +0000
asID: 139648
IP address blocks: 185.213.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:8a:4c:f3:69:20:05:1c:7b:3c:67:7a:b6:7b:fd:26:dc:00:6b:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jan 16 03:40:48 2023 GMT
Not After : Jan 15 03:45:48 2024 GMT
Subject: CN=7E9EB53231BB982943ADED741F7F4EA68BD06CA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:b7:21:39:ef:89:0b:35:29:ac:54:92:e3:
4f:da:36:2e:46:37:c8:b1:ba:c0:1d:21:22:39:44:
7c:40:35:3d:85:9a:54:3e:01:9c:1c:33:80:c2:43:
25:b7:e8:41:7b:0d:76:0d:23:61:c7:bd:11:b1:c5:
20:f2:0a:d1:59:a5:7d:61:86:ca:49:cb:82:66:17:
aa:c9:ba:75:55:54:8d:83:c5:5d:c8:19:d9:f8:46:
c7:27:57:06:97:7a:a4:75:2a:71:17:f9:c5:a8:2f:
a8:3c:14:de:62:00:7e:fd:a4:84:9b:84:ee:6d:70:
ce:63:9b:88:41:e9:b4:5c:e4:b2:59:e6:1f:15:69:
99:b2:95:bd:fa:7f:28:13:b9:c7:8e:7c:f0:11:ff:
d8:66:27:8c:eb:80:0b:32:a7:45:9d:c3:2c:23:7d:
11:3d:6c:24:12:bf:65:d4:46:14:8f:f6:33:c3:5b:
c8:5b:9d:e6:aa:b9:67:35:90:c0:59:ea:b9:1b:7f:
e2:a6:65:86:52:67:57:0a:ad:01:4e:9f:01:74:30:
0b:f2:f2:0b:0c:cf:6a:80:78:2c:d4:0c:08:fc:53:
b0:b8:bf:b9:7b:ac:38:e4:a6:b1:b4:6d:54:84:6f:
97:d1:c6:87:5f:d6:21:9e:4d:ca:51:be:22:0a:c0:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9E:B5:32:31:BB:98:29:43:AD:ED:74:1F:7F:4E:A6:8B:D0:6C:A0
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e20313339363438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.243.0/24
Signature Algorithm: sha256WithRSAEncryption
60:10:ad:73:a5:40:c7:a1:f8:6d:04:a6:07:6f:7b:36:44:a6:
02:5e:65:ef:83:ce:3c:fd:de:6a:bf:a5:f2:9c:fe:93:87:f2:
8e:11:f4:0e:f0:18:da:59:e9:7d:30:5e:ae:9d:61:4b:31:03:
43:fd:14:35:2a:d7:e5:c8:ac:a1:bc:79:be:33:c5:fb:47:86:
a0:a6:0a:50:cd:e5:99:4b:1a:77:79:20:40:67:ca:26:7f:0f:
9c:ac:1f:5c:56:55:b0:5b:eb:40:21:17:bb:6c:0d:97:bc:72:
bc:76:6b:95:75:e8:6e:e8:89:79:76:7c:aa:6e:1d:ef:a8:16:
68:82:49:58:11:2d:91:bc:bd:b4:b2:22:33:47:df:7f:b9:96:
2f:85:90:81:1c:e8:a9:0f:88:07:af:e8:06:f5:d6:92:69:8f:
6c:b4:83:44:8f:ab:e8:de:c8:d5:cf:c2:ea:f6:26:eb:5c:74:
a9:2f:16:7c:c6:24:7d:03:ff:1e:82:9c:df:4e:d5:30:f0:ea:
4d:8b:76:3e:36:b4:fa:84:80:b3:0c:75:88:02:57:d4:0c:2b:
22:d2:89:3a:a0:a5:f9:8c:77:1b:9f:e2:a8:28:ac:28:62:15:
27:d9:09:de:2b:63:bc:80:7a:b5:f5:ea:fa:34:b4:aa:90:84:
9d:2d:47:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org