Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20343030343032.roa
File: 3139332e3230312e37322e302f32342d3234203d3e20343030343032.roa (raw, json)
Hash identifier: f+qFwNBgTaCef18FxxCs/uojT/NN7MaQ+0eY/C/zAm4=
Subject key identifier: AE:E5:F9:AE:59:28:52:9F:39:AC:E2:18:C0:C0:98:9D:9E:B6:50:4E
Certificate issuer: /CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Certificate serial: 06DBFF65A27918B79B2E6769100E76C3A1F09EB3
Authority key identifier: 55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20343030343032.roa
Signing time: Sat 16 Sep 2023 02:06:30 +0000
ROA not before: Sat 16 Sep 2023 02:01:30 +0000
ROA not after: Sat 14 Sep 2024 02:06:30 +0000
asID: 400402
IP address blocks: 193.201.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:db:ff:65:a2:79:18:b7:9b:2e:67:69:10:0e:76:c3:a1:f0:9e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5511f6d7def4c0ffb6e2b3b3f0c4455dcd14c160
Validity
Not Before: Sep 16 02:01:30 2023 GMT
Not After : Sep 14 02:06:30 2024 GMT
Subject: CN=AEE5F9AE5928529F39ACE218C0C0989D9EB6504E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:f8:75:4c:00:ce:5c:ec:42:5a:60:37:23:
b3:be:34:85:d4:97:fc:9d:a7:c5:df:bf:b2:70:6c:
41:b5:89:6e:20:4b:12:ed:49:8d:a7:80:18:89:7c:
08:a3:ec:96:91:d3:72:e9:3c:8f:5b:c2:42:98:0a:
b8:af:1d:5d:98:35:a6:81:73:ac:7c:67:ed:76:ca:
79:f1:1f:9f:13:35:49:06:19:46:11:fb:c7:dd:91:
46:9f:cb:a0:5e:ae:2f:b2:11:0b:b3:d3:08:7c:a4:
c6:2d:0e:79:36:53:75:6f:17:ec:ce:4a:21:ee:46:
cc:b3:ec:ce:d1:8f:2d:28:10:99:ec:99:0d:95:14:
22:75:07:d7:0a:0a:54:23:23:64:82:00:48:3a:28:
59:59:b5:76:04:ac:6b:5f:f9:3a:c2:60:2c:7b:55:
89:59:38:4c:80:70:00:93:b3:e4:87:95:49:30:25:
30:db:aa:01:c3:e0:a6:b6:e7:38:85:64:da:7f:70:
c0:df:79:60:80:a1:0f:de:a0:16:0d:77:b6:9d:3f:
9b:31:63:16:40:d9:78:af:36:bb:81:88:f6:3f:b2:
0e:83:38:4b:20:36:a3:22:26:cc:aa:85:b5:8e:07:
4e:7b:d8:bd:3d:92:f4:6b:59:8c:cb:46:0c:08:02:
d4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E5:F9:AE:59:28:52:9F:39:AC:E2:18:C0:C0:98:9D:9E:B6:50:4E
X509v3 Authority Key Identifier:
keyid:55:11:F6:D7:DE:F4:C0:FF:B6:E2:B3:B3:F0:C4:45:5D:CD:14:C1:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/5511F6D7DEF4C0FFB6E2B3B3F0C4455DCD14C160.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRH21970wP-24rOz8MRFXc0UwWA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d08bc49d-0338-4b5f-8204-0004a66105c9/0/3139332e3230312e37322e302f32342d3234203d3e20343030343032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:47:d1:f8:ac:63:5d:3f:13:39:86:14:25:08:51:cf:72:ff:
bd:41:4a:a5:77:0b:ad:05:e9:9d:f1:af:23:ad:52:bf:31:fc:
db:8f:b1:d9:83:c8:1c:25:d1:bf:2a:dc:87:04:15:6e:43:2d:
ac:d4:b0:4e:b3:90:61:06:16:86:0f:cd:37:04:e9:6a:ea:57:
14:5a:74:33:5f:f1:0c:62:66:88:04:5e:d5:d5:55:02:3f:2f:
69:d1:09:dc:50:55:78:54:82:90:95:60:0c:d0:8e:42:92:f9:
7c:08:61:11:75:1a:c6:e5:70:d4:78:ff:ac:bc:3a:85:68:1c:
59:96:5d:60:46:8f:0c:5b:8f:f2:d0:3c:d2:88:0c:6b:23:8c:
1c:5f:a7:91:78:02:97:38:e0:a4:58:2f:13:bd:e3:05:e9:58:
f8:66:5b:6f:ae:a1:53:e7:3f:63:ec:a9:5e:58:ff:68:8a:77:
62:e0:4e:25:ba:ae:88:f8:89:b2:eb:c2:4e:96:e3:19:f6:8c:
4b:1a:9e:cc:61:ba:d3:16:44:6d:89:2f:88:7a:e2:63:dc:86:
a3:46:0b:3d:02:c9:c8:06:f7:67:3b:0c:23:1c:f0:e1:c3:5c:
1f:0e:cc:35:5e:9b:4e:4f:da:31:07:df:55:70:f5:4f:3a:f7:
f4:3c:78:ef
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUBtv/ZaJ5GLebLmdpEA52w6HwnrMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTUxMWY2ZDdkZWY0YzBmZmI2ZTJiM2IzZjBjNDQ1NWRj
ZDE0YzE2MDAeFw0yMzA5MTYwMjAxMzBaFw0yNDA5MTQwMjA2MzBaMDMxMTAvBgNV
BAMTKEFFRTVGOUFFNTkyODUyOUYzOUFDRTIxOEMwQzA5ODlEOUVCNjUwNEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIwPh1TADOXOxCWmA3I7O+NIXU
l/ydp8Xfv7JwbEG1iW4gSxLtSY2ngBiJfAij7JaR03LpPI9bwkKYCrivHV2YNaaB
c6x8Z+12ynnxH58TNUkGGUYR+8fdkUafy6Beri+yEQuz0wh8pMYtDnk2U3VvF+zO
SiHuRsyz7M7Rjy0oEJnsmQ2VFCJ1B9cKClQjI2SCAEg6KFlZtXYErGtf+TrCYCx7
VYlZOEyAcACTs+SHlUkwJTDbqgHD4Ka25ziFZNp/cMDfeWCAoQ/eoBYNd7adP5sx
YxZA2XivNruBiPY/sg6DOEsgNqMiJsyqhbWOB0572L09kvRrWYzLRgwIAtS9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUruX5rlkoUp85rOIYwMCYnZ62UE4wHwYDVR0j
BBgwFoAUVRH21970wP+24rOz8MRFXc0UwWAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDA4YmM0OWQtMDMzOC00YjVmLTgyMDQtMDAwNGE2NjEw
NWM5LzAvNTUxMUY2RDdERUY0QzBGRkI2RTJCM0IzRjBDNDQ1NURDRDE0QzE2MC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1ZSSDIxOTcwd1AtMjRyT3o4TVJGWGMw
VXdXQS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDA4YmM0OWQt
MDMzOC00YjVmLTgyMDQtMDAwNGE2NjEwNWM5LzAvMzEzOTMzMmUzMjMwMzEyZTM3
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMwMzAzNDMwMzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADByUgwDQYJKoZIhvcNAQELBQADggEBAG1H0fisY10/EzmGFCUIUc9y/71BSqV3
C60F6Z3xryOtUr8x/NuPsdmDyBwl0b8q3IcEFW5DLazUsE6zkGEGFoYPzTcE6Wrq
VxRadDNf8QxiZogEXtXVVQI/L2nRCdxQVXhUgpCVYAzQjkKS+XwIYRF1GsblcNR4
/6y8OoVoHFmWXWBGjwxbj/LQPNKIDGsjjBxfp5F4Apc44KRYLxO94wXpWPhmW2+u
oVPnP2PsqV5Y/2iKd2LgTiW6roj4ibLrwk6W4xn2jEsansxhutMWRG2JL4h64mPc
hqNGCz0CycgG92c7DCMc8OHDXB8OzDVem05P2jEH31Vw9U869/Q8eO8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:53:39 2025 by rpki-client