Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e38302e372e302f32342d3234203d3e20383334.roa
File: 34352e38302e372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 7xpUqqZktnGA4q8xdfD/7szZjcb8dXSLrwFsN4iyqcU=
Subject key identifier: 31:BD:61:3C:8D:29:C7:AF:E0:F2:70:95:D0:B8:18:3E:7D:29:65:66
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 34246E35255BA9169C613C38F46076926730048B
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e38302e372e302f32342d3234203d3e20383334.roa
Signing time: Fri 19 May 2023 00:00:05 +0000
ROA not before: Thu 18 May 2023 23:55:05 +0000
ROA not after: Fri 17 May 2024 00:00:05 +0000
asID: 834
IP address blocks: 45.80.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:24:6e:35:25:5b:a9:16:9c:61:3c:38:f4:60:76:92:67:30:04:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 18 23:55:05 2023 GMT
Not After : May 17 00:00:05 2024 GMT
Subject: CN=31BD613C8D29C7AFE0F27095D0B8183E7D296566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:47:ed:da:3b:56:cf:1b:67:d0:1e:c4:a7:b2:
2b:76:08:a0:8b:4c:9f:ee:09:9f:6a:65:ec:82:4f:
34:2d:fc:26:6f:b0:97:8c:cb:32:e2:22:f5:f0:1c:
87:d9:d0:6f:81:ff:2b:bf:4e:c4:a1:84:85:85:b7:
ed:68:d9:ba:7c:8f:ce:ee:e7:c9:b1:f5:ee:46:11:
49:27:0c:84:49:0a:51:94:2d:45:ee:93:1c:a1:d0:
41:07:00:40:53:5f:3e:b7:dd:d4:0e:36:94:91:3d:
7e:b6:e4:b0:49:fd:6d:0e:cb:58:e2:c8:b3:53:23:
88:71:d8:c7:62:5e:7a:31:9e:94:e7:54:4f:6e:99:
ed:fc:80:b3:ec:6a:09:62:ec:69:57:22:fb:e5:bf:
27:a8:18:fe:5a:a5:19:ea:5c:fe:b8:ac:0d:79:89:
83:05:b6:2e:3e:9f:c0:b6:a9:c4:20:c2:f8:a9:df:
ca:e1:1e:af:0f:c5:f6:40:4d:c0:69:1c:1c:22:09:
c0:2c:2e:f4:7f:6c:c7:7e:7f:92:13:39:e5:67:d1:
45:af:ce:d1:25:ca:bd:55:ea:18:b3:86:aa:9f:ae:
f0:a4:89:33:29:cf:20:c0:24:3c:c9:a5:f1:29:c8:
75:7e:d3:eb:4f:94:1e:ac:d4:f4:5c:52:b0:ff:9c:
82:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BD:61:3C:8D:29:C7:AF:E0:F2:70:95:D0:B8:18:3E:7D:29:65:66
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e38302e372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.7.0/24
Signature Algorithm: sha256WithRSAEncryption
74:3c:27:cc:7f:c2:79:51:21:3d:be:7d:95:11:ba:66:51:db:
20:bb:a1:03:c4:80:25:83:91:ec:38:b8:f8:13:2e:c3:a8:e3:
e5:1d:db:02:45:94:d3:50:14:e7:94:db:03:2e:66:40:db:b5:
a7:fd:07:0d:36:9c:c4:88:12:8c:3c:b5:22:53:a9:5d:14:98:
93:b7:fb:b4:22:48:f8:3e:19:7d:ac:fd:03:c1:84:ec:34:03:
fd:6f:f5:14:7a:1a:55:62:2f:16:b7:e5:26:6f:f4:45:a4:15:
53:6f:20:b2:90:34:1d:b2:3a:a9:8f:0f:ac:64:e9:03:d2:ea:
f6:48:0f:39:84:d1:70:c2:0b:ef:b2:0f:d3:1e:c6:e1:7f:e6:
85:6e:68:bf:b0:95:33:55:b3:9a:ec:d6:56:89:ed:a1:72:1c:
e1:db:cf:21:e1:cf:ad:90:b1:42:31:7a:19:dc:68:58:6f:66:
f4:51:61:0a:2c:bf:7f:c4:14:35:d6:f1:ce:d5:b2:72:30:99:
e6:6d:86:0a:6b:48:66:39:73:79:ce:47:16:1c:6b:cb:f5:d1:
19:ff:a6:81:e8:07:2f:be:f8:fd:d4:0e:46:cf:0c:cd:00:87:
83:5c:af:7e:85:40:4c:2f:e4:9a:44:bb:ee:61:b2:46:25:7d:
e8:55:9f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:09 2024 by rpki-client on console-ams.rpki-client.org