Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323130393732.roa
File: 38322e3131382e32362e302f32342d3234203d3e20323130393732.roa (raw, json)
Hash identifier: Zy8mPeNQf9cTYESonzJp4x5LKmbTLin23F1Xjfo0+kE=
Subject key identifier: AA:1E:BE:F1:1B:E5:30:9A:29:B2:47:A8:CE:97:99:E3:53:2B:B1:9D
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 617498A08F2A50C0B8EB2B43F7A05FC0C2D0E239
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323130393732.roa
Signing time: Tue 23 May 2023 10:56:07 +0000
ROA not before: Tue 23 May 2023 10:51:07 +0000
ROA not after: Tue 21 May 2024 10:56:07 +0000
asID: 210972
IP address blocks: 82.118.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:74:98:a0:8f:2a:50:c0:b8:eb:2b:43:f7:a0:5f:c0:c2:d0:e2:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 23 10:51:07 2023 GMT
Not After : May 21 10:56:07 2024 GMT
Subject: CN=AA1EBEF11BE5309A29B247A8CE9799E3532BB19D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:a6:ca:b7:8f:ec:3a:cf:f1:d3:27:a2:91:
8a:82:14:7a:45:27:99:b9:42:d9:c2:45:f3:3b:bf:
82:31:d8:1e:cc:eb:9b:dc:23:be:bd:b2:af:55:a0:
57:36:ea:0e:58:d2:25:43:88:06:86:84:6a:2f:7d:
82:e6:a4:f2:f5:8b:b4:0b:11:3e:4f:94:6f:ff:21:
66:d4:ff:cf:86:7f:f6:54:38:94:54:a3:25:e0:4e:
2d:6d:98:4b:e4:a2:b8:05:a8:16:79:cc:11:58:3a:
78:07:28:17:b7:a8:a9:d4:bf:43:3a:8f:b5:cd:6f:
5f:4d:31:e6:81:b4:3e:62:5c:78:69:60:8e:af:c2:
c5:d1:08:92:0f:ee:2e:b2:96:3c:a9:2f:58:5d:57:
16:85:a0:55:44:90:2f:22:93:60:7d:9f:b4:03:3c:
81:3a:dc:27:38:6e:16:bf:40:98:95:6a:54:43:66:
45:0c:c3:cb:54:fd:0a:bf:40:2e:e4:ff:01:84:cf:
6e:3f:12:98:f4:da:0e:a6:b0:24:93:bc:85:f9:61:
ed:0b:d4:32:d6:94:60:78:1e:ca:03:ce:d2:f5:7a:
81:4a:31:44:d9:02:5b:e7:c1:bc:eb:c8:17:92:2d:
ef:f9:5e:00:01:09:0f:c3:c6:43:3b:d5:fb:e0:a0:
f6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1E:BE:F1:1B:E5:30:9A:29:B2:47:A8:CE:97:99:E3:53:2B:B1:9D
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e20323130393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.26.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:64:c4:f8:38:27:6c:0f:26:04:b5:87:ad:bd:a8:4d:fa:1d:
e6:ed:8c:c2:14:0d:fb:f2:d2:93:82:b6:ac:5d:41:b5:86:19:
3c:2d:fc:44:d6:62:32:e5:10:94:0c:50:de:9f:a5:1b:11:6b:
54:8d:11:a9:81:2d:d9:bf:8e:d6:9a:57:56:46:c4:47:d0:97:
8e:eb:24:09:ad:94:93:f9:44:4f:0b:14:b2:8f:7c:69:86:54:
0d:15:c9:fb:fe:80:4d:a5:e8:73:28:17:08:2e:b1:c9:11:f1:
6e:4e:b6:ad:3a:3b:bb:7a:04:66:13:f7:7a:3c:1f:2f:11:6a:
ee:62:41:36:31:4d:9b:dc:34:07:f2:2a:b9:2b:e2:b3:a9:26:
d6:c9:34:3e:12:41:cd:07:d8:bd:3c:12:38:83:be:9f:e9:87:
19:ab:d0:e5:ab:96:49:1b:8e:e2:a2:a8:13:c3:c2:d8:50:27:
ff:78:c6:d4:5a:74:bb:93:02:00:0c:c7:89:e8:81:cf:19:fa:
e5:3b:fd:de:fe:a1:2f:b3:cd:44:5c:6c:4c:9f:c2:03:b1:2b:
fc:01:c0:fc:1d:58:0c:37:a2:28:5d:68:69:f5:83:22:3b:36:
86:d2:84:4f:54:92:86:8e:91:b7:d5:42:e5:e1:6b:85:d6:9f:
0e:ff:45:6a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUYXSYoI8qUMC46ytD96BfwMLQ4jkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yMzA1MjMxMDUxMDdaFw0yNDA1MjExMDU2MDdaMDMxMTAvBgNV
BAMTKEFBMUVCRUYxMUJFNTMwOUEyOUIyNDdBOENFOTc5OUUzNTMyQkIxOUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4NabKt4/sOs/x0yeikYqCFHpF
J5m5QtnCRfM7v4Ix2B7M65vcI769sq9VoFc26g5Y0iVDiAaGhGovfYLmpPL1i7QL
ET5PlG//IWbU/8+Gf/ZUOJRUoyXgTi1tmEvkorgFqBZ5zBFYOngHKBe3qKnUv0M6
j7XNb19NMeaBtD5iXHhpYI6vwsXRCJIP7i6yljypL1hdVxaFoFVEkC8ik2B9n7QD
PIE63Cc4bha/QJiValRDZkUMw8tU/Qq/QC7k/wGEz24/Epj02g6msCSTvIX5Ye0L
1DLWlGB4HsoDztL1eoFKMUTZAlvnwbzryBeSLe/5XgABCQ/DxkM71fvgoPbFAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqh6+8RvlMJopskeozpeZ41MrsZ0wHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzgzMjJlMzEzMTM4MmUzMjM2
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTMwMzkzNzMyLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UnYaMA0GCSqGSIb3DQEBCwUAA4IBAQCuZMT4OCdsDyYEtYetvahN+h3m7YzCFA37
8tKTgrasXUG1hhk8LfxE1mIy5RCUDFDen6UbEWtUjRGpgS3Zv47WmldWRsRH0JeO
6yQJrZST+URPCxSyj3xphlQNFcn7/oBNpehzKBcILrHJEfFuTratOju7egRmE/d6
PB8vEWruYkE2MU2b3DQH8iq5K+KzqSbWyTQ+EkHNB9i9PBI4g76f6YcZq9Dlq5ZJ
G47ioqgTw8LYUCf/eMbUWnS7kwIADMeJ6IHPGfrlO/3e/qEvs81EXGxMn8IDsSv8
AcD8HVgMN6IoXWhp9YMiOzaG0oRPVJKGjpG31ULl4WuF1p8O/0Vq
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org