Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20323036343436.roa
File: 3231322e322e3233372e302f32342d3234203d3e20323036343436.roa (raw, json)
Hash identifier: 9g9IER6R5LdcaM8fO/oNsvQSXOcKz70KX1NzRTuRXv4=
Subject key identifier: 7E:EB:8E:E5:49:1D:FA:13:BC:12:BD:0E:30:C6:20:53:4D:CC:2E:F4
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 2EBB98B0F5AF0081E8160193F377F6354662D9CE
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20323036343436.roa
Signing time: Thu 04 May 2023 10:56:21 +0000
ROA not before: Thu 04 May 2023 10:51:21 +0000
ROA not after: Thu 02 May 2024 10:56:21 +0000
asID: 206446
IP address blocks: 212.2.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:bb:98:b0:f5:af:00:81:e8:16:01:93:f3:77:f6:35:46:62:d9:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 4 10:51:21 2023 GMT
Not After : May 2 10:56:21 2024 GMT
Subject: CN=7EEB8EE5491DFA13BC12BD0E30C620534DCC2EF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:aa:0b:31:f7:de:3f:a8:69:b4:f8:2a:c7:e2:
55:30:00:27:d0:45:ec:24:a0:e9:60:d4:f6:69:e6:
f9:b2:35:d4:8e:af:b6:d6:88:e4:98:86:b1:f5:8f:
cd:e9:a6:de:e5:37:87:e9:26:5d:a6:0c:32:ab:d2:
ac:02:c1:bf:d8:00:96:74:cd:12:e6:19:9c:b9:87:
55:53:7e:18:4f:43:b6:c8:c3:2c:d2:6f:d2:26:8f:
48:66:4b:65:87:4e:21:c8:8f:63:e3:51:28:dd:c3:
af:ab:2a:b2:0f:de:54:48:46:c6:5f:3a:70:59:c9:
74:be:de:7b:67:f3:25:3b:55:d2:db:e5:91:dc:f4:
a9:c3:1d:21:ed:cd:f8:8d:cd:28:38:37:f5:36:1a:
33:44:2e:8d:ee:63:30:7e:cc:12:f8:02:c3:5e:c5:
c9:90:c9:b4:97:cb:70:b4:ee:e6:d5:80:e4:1d:5c:
9e:b7:94:07:40:5a:17:a0:8a:bf:36:ec:40:c1:52:
a2:ab:9b:2f:d0:92:59:aa:b0:82:ac:1b:4a:74:52:
47:70:5f:71:16:bd:0e:be:43:5b:78:d0:05:2c:5d:
cd:ec:b8:6e:cf:81:f0:8f:01:46:48:f9:46:94:8f:
aa:ac:67:cd:14:1b:16:fe:61:46:68:d9:39:a9:95:
6b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EB:8E:E5:49:1D:FA:13:BC:12:BD:0E:30:C6:20:53:4D:CC:2E:F4
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/3231322e322e3233372e302f32342d3234203d3e20323036343436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:49:92:9d:01:af:2f:ba:9f:39:fc:89:1f:36:fe:7d:77:08:
0d:72:f2:63:1b:63:bf:44:a7:59:d8:8f:7a:bf:b4:38:4a:9a:
a3:7f:92:26:db:c5:18:31:52:76:a3:62:b4:4e:a1:63:8d:d3:
16:3f:c1:ac:30:01:20:49:30:54:f4:f8:2f:40:f9:fb:af:5c:
fc:77:c6:01:33:0d:fc:78:f3:45:3a:7f:72:38:5f:7b:dd:1b:
c8:8e:5c:60:b4:ee:fe:7e:16:c5:3e:cf:00:54:0c:a8:22:09:
bc:76:71:b1:dc:41:4d:d7:1f:cc:ea:b3:bf:ac:57:f8:ab:85:
8d:e6:27:b6:4b:60:40:68:6a:e5:6f:c8:9d:4c:14:e6:da:c4:
85:c4:53:bc:6d:f0:13:60:dc:f3:86:e8:d4:75:77:82:42:55:
e4:9a:8d:9d:02:3f:10:0a:d8:87:09:0c:5a:95:74:a5:3c:6e:
22:4c:99:21:85:f2:74:11:de:b9:f2:12:49:e0:b5:ba:eb:6a:
61:c7:2d:08:fd:63:4d:6c:ab:7e:e1:d7:58:34:f6:a6:4e:55:
da:d6:8f:cf:e2:dd:22:22:41:45:7d:76:7b:32:ef:4b:76:39:
33:6a:41:b4:11:e6:ea:c1:40:65:57:ef:67:8f:f3:93:b9:cb:
33:77:3a:21
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIULruYsPWvAIHoFgGT83f2NUZi2c4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yMzA1MDQxMDUxMjFaFw0yNDA1MDIxMDU2MjFaMDMxMTAvBgNV
BAMTKDdFRUI4RUU1NDkxREZBMTNCQzEyQkQwRTMwQzYyMDUzNERDQzJFRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzqgsx994/qGm0+CrH4lUwACfQ
RewkoOlg1PZp5vmyNdSOr7bWiOSYhrH1j83ppt7lN4fpJl2mDDKr0qwCwb/YAJZ0
zRLmGZy5h1VTfhhPQ7bIwyzSb9Imj0hmS2WHTiHIj2PjUSjdw6+rKrIP3lRIRsZf
OnBZyXS+3ntn8yU7VdLb5ZHc9KnDHSHtzfiNzSg4N/U2GjNELo3uYzB+zBL4AsNe
xcmQybSXy3C07ubVgOQdXJ63lAdAWhegir827EDBUqKrmy/QklmqsIKsG0p0Ukdw
X3EWvQ6+Q1t40AUsXc3suG7PgfCPAUZI+UaUj6qsZ80UGxb+YUZo2TmplWsjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUfuuO5Ukd+hO8Er0OMMYgU03MLvQwHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzIzMTMyMmUzMjJlMzIzMzM3
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM2MzQzNDM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
1ALtMA0GCSqGSIb3DQEBCwUAA4IBAQC3SZKdAa8vup85/IkfNv59dwgNcvJjG2O/
RKdZ2I96v7Q4Spqjf5Im28UYMVJ2o2K0TqFjjdMWP8GsMAEgSTBU9PgvQPn7r1z8
d8YBMw38ePNFOn9yOF973RvIjlxgtO7+fhbFPs8AVAyoIgm8dnGx3EFN1x/M6rO/
rFf4q4WN5ie2S2BAaGrlb8idTBTm2sSFxFO8bfATYNzzhujUdXeCQlXkmo2dAj8Q
CtiHCQxalXSlPG4iTJkhhfJ0Ed658hJJ4LW662phxy0I/WNNbKt+4ddYNPamTlXa
1o/P4t0iIkFFfXZ7Mu9LdjkzakG0EebqwUBlV+9nj/OTucszdzoh
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org