Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e203433323630.roa
File: 38322e3131382e32362e302f32342d3234203d3e203433323630.roa (raw, json)
Hash identifier: g5y6LMKZxm8XqqrmzurnqdREKLwn1BdC5pda/Wo9VcI=
Subject key identifier: 65:FB:6D:08:ED:15:B2:47:52:2D:45:81:A3:24:C6:C2:02:32:0C:C0
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 644668517472D9E33CD7DC89EAEDBF167B257A1C
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e203433323630.roa
Signing time: Thu 04 May 2023 10:56:22 +0000
ROA not before: Thu 04 May 2023 10:51:22 +0000
ROA not after: Thu 02 May 2024 10:56:22 +0000
asID: 43260
IP address blocks: 82.118.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:46:68:51:74:72:d9:e3:3c:d7:dc:89:ea:ed:bf:16:7b:25:7a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 4 10:51:22 2023 GMT
Not After : May 2 10:56:22 2024 GMT
Subject: CN=65FB6D08ED15B247522D4581A324C6C202320CC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:35:f6:ea:11:ea:4f:1a:90:4c:f6:c1:c6:
d6:45:e7:64:6f:4c:12:0f:fe:ba:a1:9a:47:ff:1b:
d4:b9:b2:d8:b7:b2:fc:5b:4b:c7:f9:95:5a:f5:a9:
a5:aa:1c:0e:7c:0a:18:52:5e:ca:3d:de:c4:52:26:
96:3c:76:2f:21:61:0d:fa:0e:ac:0f:b4:c0:9e:d7:
44:27:2c:bf:5d:c2:ac:95:ea:e6:26:6d:41:61:41:
1e:4d:02:1f:3f:5d:25:e9:6e:a4:58:5e:8c:b0:cf:
25:a9:1d:b4:28:e2:63:67:ee:b2:7a:54:00:97:e5:
30:b2:43:6d:6c:03:b3:9c:d3:6f:31:56:ab:45:3d:
92:a8:12:e2:06:54:8f:83:9b:67:93:cf:92:c9:57:
ee:15:c9:2e:4c:54:e2:94:02:76:82:a3:7c:81:ad:
08:96:8f:e1:72:0b:82:38:1e:97:97:f0:0f:50:fd:
eb:54:f4:ef:7c:5a:b2:e5:a6:fe:27:6a:52:66:07:
19:63:55:85:5c:3b:7a:f9:4a:52:74:0a:26:5c:3f:
40:c6:b8:3c:66:0d:59:22:23:19:b2:7a:fa:9f:38:
e4:7f:7f:73:15:68:87:ed:a6:d4:7f:d6:bf:fd:5b:
bf:9d:5a:bd:5e:eb:98:51:c7:2f:e9:fe:0b:76:13:
ac:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FB:6D:08:ED:15:B2:47:52:2D:45:81:A3:24:C6:C2:02:32:0C:C0
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32362e302f32342d3234203d3e203433323630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.26.0/24
Signature Algorithm: sha256WithRSAEncryption
27:6b:b2:f9:34:4c:05:0f:21:09:d4:73:c3:35:40:96:3a:53:
20:ad:c3:9b:07:91:48:31:5f:1a:2b:f5:95:59:8c:45:e4:40:
0e:d2:60:77:9a:35:02:77:f3:e6:5f:a1:91:c5:08:1a:d2:90:
22:46:d3:dd:66:02:74:f3:90:4b:2f:5d:c8:a8:62:ac:4a:98:
ed:7e:9e:b7:e2:9e:21:41:3d:d5:af:b4:be:a7:c8:b5:ef:37:
49:29:11:ca:e5:06:d4:3c:4f:ef:07:94:e3:a1:51:42:a0:53:
67:2d:b3:09:6b:5c:7f:18:3a:7f:4e:c3:bd:51:73:19:c9:84:
4a:33:5d:dd:f2:93:bf:8b:2a:d2:ff:e9:10:69:fa:2b:4e:75:
e4:3a:69:9d:d5:07:85:0d:6f:b6:3c:9b:aa:d8:f1:84:bd:b2:
4d:1e:52:48:21:24:6e:64:94:d3:87:9d:0a:bb:ac:18:a2:5a:
bf:82:3d:2c:5c:0c:a4:16:60:fe:75:15:63:fb:99:98:9e:6d:
66:34:84:25:c8:e8:75:29:e4:0f:b0:6a:fb:ae:39:98:40:6b:
62:f3:24:cd:3a:91:71:6c:b6:86:b1:02:30:c2:31:02:08:52:
e6:23:5c:35:99:c5:10:42:4c:5a:a0:c8:5c:82:0f:51:6f:b3:
0e:45:80:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org