Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20313439343537.roa
File: 3139332e3230312e37322e302f32342d3234203d3e20313439343537.roa (raw, json)
Hash identifier: gs+C9gPrMKo4jxayW40fvLZlBxHQJvt9Vlsdc+lownc=
Subject key identifier: A9:12:74:5F:A7:E9:80:E2:75:6B:2D:FB:4D:22:95:7B:1D:0C:A7:3C
Certificate issuer: /CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Certificate serial: 5BEC06EFB0F6B5754DFED49B1992485B8161700A
Authority key identifier: 55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20313439343537.roa
Signing time: Mon 09 Dec 2024 09:30:55 +0000
ROA not before: Mon 09 Dec 2024 09:25:55 +0000
ROA not after: Mon 08 Dec 2025 09:30:55 +0000
asID: 149457
IP address blocks: 193.201.72.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:ec:06:ef:b0:f6:b5:75:4d:fe:d4:9b:19:92:48:5b:81:61:70:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Validity
Not Before: Dec 9 09:25:55 2024 GMT
Not After : Dec 8 09:30:55 2025 GMT
Subject: CN=A912745FA7E980E2756B2DFB4D22957B1D0CA73C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e5:e0:d4:e8:87:ca:31:87:ae:5a:46:b9:04:
7e:f5:dd:83:24:7d:57:3c:09:27:e1:46:1c:b0:11:
0d:65:6e:7a:31:08:bb:27:09:d6:a1:45:27:a9:3e:
f9:21:b2:19:da:2e:45:c1:71:bc:81:56:20:43:d7:
06:1b:08:ff:5c:67:0d:a5:3e:aa:eb:5b:3a:d1:35:
2e:5c:01:62:40:50:df:6a:20:47:36:15:5d:15:cc:
82:22:43:3d:1e:3c:84:21:e0:f9:b4:16:e8:24:f9:
05:c8:69:19:f0:b5:98:0e:2b:b1:9a:2b:6b:f0:10:
0c:f9:ba:37:d6:f4:48:ac:8a:6e:2c:d2:a4:a1:ee:
c4:03:b3:ef:16:30:c8:63:76:a9:85:d2:52:85:8d:
4b:20:0c:49:c4:c1:4b:c2:d8:47:a5:0f:17:34:fd:
0c:9b:87:85:a0:22:b5:57:1b:0e:b5:e5:cb:d8:16:
cd:cf:0f:40:9c:65:b7:3c:a4:41:b5:da:f1:a1:7a:
39:eb:ee:3e:d8:f2:c0:52:92:31:a0:5d:2a:c8:31:
fc:63:9a:00:63:2a:fa:e2:8c:92:81:6f:b0:21:ea:
2a:8f:d4:29:54:57:5f:66:60:d4:56:8b:95:e2:1b:
15:b9:d1:a7:c9:07:40:15:2a:a7:1f:93:dc:dd:a9:
a2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:12:74:5F:A7:E9:80:E2:75:6B:2D:FB:4D:22:95:7B:1D:0C:A7:3C
X509v3 Authority Key Identifier:
keyid:55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/5511F6D7DEF4C0FFB6E2B3B3F0C4455DCD14C160.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20313439343537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
07:6b:20:cf:6d:7a:5b:b7:b0:05:af:87:33:8e:79:90:0b:89:
a1:86:67:60:29:70:09:8f:a4:21:90:8f:fb:67:58:de:b0:9e:
d3:ae:c9:30:78:a0:37:b5:8c:d1:f1:9a:59:56:c2:b5:9f:75:
2b:3a:eb:58:7d:07:76:de:15:f4:0a:7c:4c:f2:c5:94:08:89:
60:69:a3:eb:46:6c:b3:58:24:32:e1:60:b3:12:50:55:43:49:
79:62:ea:88:88:73:14:a7:d6:7d:34:7d:f9:8c:63:33:cd:8f:
8f:98:78:30:d2:a4:12:f5:b8:a1:66:ba:08:cb:77:b8:7a:5d:
b8:da:0f:6a:00:de:0a:3d:62:ce:73:73:a3:9a:a4:62:f1:e0:
49:83:a9:66:9d:cf:bc:4e:a5:71:1f:6c:d2:78:fc:fe:4d:8a:
b0:b6:ae:b1:37:65:df:ed:9e:59:42:c5:76:dc:27:c1:6e:c1:
7c:41:97:17:ca:b6:82:ce:f2:97:cf:6f:49:ab:ee:e7:2a:6a:
70:20:8e:5d:0d:8c:41:72:d1:47:b8:49:f0:7e:d4:31:44:25:
9b:51:e0:41:c1:f6:28:c3:2d:63:ad:02:55:df:eb:03:23:b3:
07:ab:35:c4:99:61:ea:eb:32:87:4b:62:d0:98:eb:05:30:43:
3e:a2:65:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:49:51 2025 by rpki-client