Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203631333137.roa
File: 3138352e3234342e39352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: hvfwwXQe5UR1uxBrEzxMWlQ7ot0Qhjrq3Pgvwm+8n8s=
Subject key identifier: EE:86:41:B4:9C:32:69:9C:86:CD:23:9E:62:25:00:52:56:3B:31:F1
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 1C5BC6767108711DC802E61DCE7BD22903665586
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203631333137.roa
Signing time: Wed 19 Apr 2023 07:19:26 +0000
ROA not before: Wed 19 Apr 2023 07:14:26 +0000
ROA not after: Wed 17 Apr 2024 07:19:26 +0000
asID: 61317
IP address blocks: 185.244.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:5b:c6:76:71:08:71:1d:c8:02:e6:1d:ce:7b:d2:29:03:66:55:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Apr 19 07:14:26 2023 GMT
Not After : Apr 17 07:19:26 2024 GMT
Subject: CN=EE8641B49C32699C86CD239E62250052563B31F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:11:6d:aa:7d:85:57:37:11:15:2c:4e:b6:7c:
22:55:80:01:27:16:7e:cf:3d:51:19:2a:28:e2:36:
80:fb:ae:7b:23:22:15:a1:0d:ef:9f:c1:33:c0:43:
dc:dc:ab:30:c3:08:ff:b0:cd:50:4e:b5:87:af:08:
92:d0:4c:3f:c0:ec:46:f4:d0:3f:c6:17:13:38:8f:
7a:0d:e0:c4:b6:d4:bf:4e:5f:cb:fa:7b:88:6e:42:
49:bb:79:78:5b:fc:06:36:d9:08:3c:e0:9f:27:59:
49:6c:0f:9c:9f:3a:63:88:45:fd:5c:90:1f:6e:7f:
cd:5c:b4:b8:91:b5:97:44:c3:13:22:3b:21:45:92:
06:c4:cd:80:fd:b3:e0:c4:40:6e:70:69:cf:bd:70:
3c:37:0b:66:d4:8c:30:3e:7e:67:23:a7:ca:ae:e8:
8a:5b:57:98:71:86:f0:aa:5a:16:7b:29:57:c8:df:
9a:cb:91:22:8a:32:40:ce:29:18:f5:6f:38:9e:84:
c3:61:63:15:51:47:d9:90:8a:01:83:c2:49:5d:77:
64:88:8b:e6:bf:f5:9d:f7:7e:df:0f:61:ea:23:d3:
ac:f0:a4:15:84:3a:ed:33:7a:50:4d:0a:63:05:38:
aa:fe:ed:35:38:80:2f:be:a4:df:f7:a9:20:b8:c7:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:41:B4:9C:32:69:9C:86:CD:23:9E:62:25:00:52:56:3B:31:F1
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.95.0/24
Signature Algorithm: sha256WithRSAEncryption
45:18:b2:1f:dc:ba:75:4d:00:ef:31:0b:c7:b5:4e:48:ec:64:
b1:29:80:36:cd:51:7b:06:37:50:f7:e2:cc:a6:40:57:a6:26:
2d:32:db:e0:55:f4:f9:00:78:e6:d3:f8:ea:df:99:26:0b:03:
68:56:d1:71:3e:0b:02:69:1f:93:70:74:63:26:94:30:4b:6b:
da:71:4c:76:3c:b9:86:2e:4b:3e:85:6f:ac:9f:cf:df:10:95:
0a:9c:10:a4:02:a1:11:c6:b6:37:a3:c2:f8:3c:fd:03:d8:3a:
fd:fd:bc:2d:77:c4:f9:ef:d3:3d:cd:85:08:82:4f:ad:6f:87:
01:2c:01:2a:4d:7d:ae:bb:ad:e3:f0:de:c8:c4:14:d2:02:ac:
05:95:57:5d:c2:f2:87:47:5c:7b:ed:cc:e5:35:e5:e1:b4:dd:
d6:ad:d3:d7:1e:58:db:d7:8f:ca:e6:51:15:63:fb:47:3b:50:
3d:dd:63:96:3c:1a:05:ae:27:75:36:a3:bc:1b:6c:1a:30:f1:
80:99:ca:02:4e:13:ed:fe:a8:70:c6:df:c0:3d:3c:fa:3a:04:
e9:4b:5a:43:ae:85:91:b4:35:92:bc:72:fa:c4:66:b2:e8:f2:
a7:ff:ce:71:36:1f:ac:d2:c6:c5:e0:27:bc:14:48:ba:a6:7f:
a1:48:b6:a2
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUHFvGdnEIcR3IAuYdznvSKQNmVYYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2U4NzBiOWE3MDAzYzRmZDljNTFiZDM1NGE5ZGVmYTNm
Yjc3YjRhOTAeFw0yMzA0MTkwNzE0MjZaFw0yNDA0MTcwNzE5MjZaMDMxMTAvBgNV
BAMTKEVFODY0MUI0OUMzMjY5OUM4NkNEMjM5RTYyMjUwMDUyNTYzQjMxRjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDREW2qfYVXNxEVLE62fCJVgAEn
Fn7PPVEZKijiNoD7rnsjIhWhDe+fwTPAQ9zcqzDDCP+wzVBOtYevCJLQTD/A7Eb0
0D/GFxM4j3oN4MS21L9OX8v6e4huQkm7eXhb/AY22Qg84J8nWUlsD5yfOmOIRf1c
kB9uf81ctLiRtZdEwxMiOyFFkgbEzYD9s+DEQG5wac+9cDw3C2bUjDA+fmcjp8qu
6IpbV5hxhvCqWhZ7KVfI35rLkSKKMkDOKRj1bziehMNhYxVRR9mQigGDwkldd2SI
i+a/9Z33ft8PYeoj06zwpBWEOu0zelBNCmMFOKr+7TU4gC++pN/3qSC4x1edAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU7oZBtJwyaZyGzSOeYiUAUlY7MfEwHwYDVR0j
BBgwFoAUPocLmnADxP2cUb01Sp3vo/t3tKkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzVkMThlODItNGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQy
Mjc5LzAvM0U4NzBCOUE3MDAzQzRGRDlDNTFCRDM1NEE5REVGQTNGQjc3QjRBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1BvY0xtbkFEeFAyY1ViMDFTcDN2b190
M3RLay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYzVkMThlODIt
NGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQyMjc5LzAvMzEzODM1MmUzMjM0MzQyZTM5
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ufRfMA0GCSqGSIb3DQEBCwUAA4IBAQBFGLIf3Lp1TQDvMQvHtU5I7GSxKYA2zVF7
BjdQ9+LMpkBXpiYtMtvgVfT5AHjm0/jq35kmCwNoVtFxPgsCaR+TcHRjJpQwS2va
cUx2PLmGLks+hW+sn8/fEJUKnBCkAqERxrY3o8L4PP0D2Dr9/bwtd8T579M9zYUI
gk+tb4cBLAEqTX2uu63j8N7IxBTSAqwFlVddwvKHR1x77czlNeXhtN3WrdPXHljb
14/K5lEVY/tHO1A93WOWPBoFrid1NqO8G2waMPGAmcoCThPt/qhwxt/APTz6OgTp
S1pDroWRtDWSvHL6xGay6PKn/85xNh+s0sbF4Ce8FEi6pn+hSLai
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:52:35 2025 by rpki-client