Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32382e302f32342d3234203d3e203631333137.roa
File: 38322e3131382e32382e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: ZPujQZlyeOz/4+UJb9FQ1AmaBmI5RuvPCPGMvc1i2A0=
Subject key identifier: 50:31:1A:9B:68:22:9C:78:94:CF:E9:11:10:3C:CD:2C:7F:88:24:40
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 6E46A5B3FD9590C8253E52395505581B16B87459
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32382e302f32342d3234203d3e203631333137.roa
Signing time: Thu 04 May 2023 10:56:21 +0000
ROA not before: Thu 04 May 2023 10:51:21 +0000
ROA not after: Thu 02 May 2024 10:56:21 +0000
asID: 61317
IP address blocks: 82.118.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:46:a5:b3:fd:95:90:c8:25:3e:52:39:55:05:58:1b:16:b8:74:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 4 10:51:21 2023 GMT
Not After : May 2 10:56:21 2024 GMT
Subject: CN=50311A9B68229C7894CFE911103CCD2C7F882440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:24:19:f1:8a:93:53:5e:14:7b:c4:07:62:3e:
39:cf:00:ff:64:fb:96:f1:9a:40:c5:ee:66:ad:54:
13:ef:e8:f5:6d:cc:a7:69:17:a7:73:99:5c:db:00:
d7:9e:c3:5e:4e:84:5c:b3:b1:89:c5:c9:b8:50:ec:
9e:8c:86:8f:b7:3f:89:5f:91:a2:0a:0f:ad:b8:04:
1a:36:dd:d6:91:d4:67:09:37:c7:70:a3:54:c7:fe:
78:95:92:1a:d3:f0:0f:dd:05:42:06:3c:7d:9f:19:
8b:8b:18:28:09:6e:e5:8a:63:43:50:8c:89:d6:9e:
8a:a5:c2:c7:d9:35:7a:e6:80:c9:2c:36:7c:fe:14:
de:cc:82:68:84:a7:20:fa:6f:13:6c:df:72:94:ae:
50:38:74:21:c1:55:79:96:59:c0:d2:8d:06:2c:44:
3e:bd:be:7b:d6:a5:48:42:8f:6f:12:53:ce:82:50:
25:01:5e:87:7f:32:19:41:21:be:64:dc:eb:df:bf:
7f:dd:0d:83:fd:d6:f2:94:88:bc:fb:7f:3c:11:57:
0e:ab:27:ec:e9:d1:f6:b5:8c:61:74:23:3f:78:2c:
c8:6c:90:5e:f5:78:df:e0:48:7b:16:ff:9c:ec:b8:
91:f3:0c:5d:36:cb:b3:67:35:ef:3c:40:56:40:0d:
63:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:31:1A:9B:68:22:9C:78:94:CF:E9:11:10:3C:CD:2C:7F:88:24:40
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32382e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.28.0/24
Signature Algorithm: sha256WithRSAEncryption
20:47:01:70:62:7b:eb:2e:58:42:81:21:0a:59:3e:7f:27:0b:
51:66:be:d0:ef:1e:2a:42:ea:bb:31:ed:ed:db:f9:63:f2:5b:
9f:30:a8:07:ab:c6:02:97:c6:a8:d0:fa:89:fb:a5:30:e2:b1:
6c:5a:ec:6c:d6:b7:7f:21:51:35:26:e5:02:e4:23:32:08:15:
37:ef:bd:04:b4:72:45:3c:e1:0b:06:dc:41:7e:1e:6d:24:31:
36:0a:44:82:c9:8e:92:cc:39:4c:e1:02:fb:1f:5d:db:c6:b7:
15:75:60:6b:38:cd:c5:ab:10:7d:90:00:e6:31:9a:6b:c7:28:
f4:cd:29:86:3f:75:61:06:6a:d5:54:9c:82:5e:82:ca:ab:98:
f8:c7:48:e2:0b:ed:1a:51:6f:53:79:23:5a:39:e8:07:ba:d2:
bf:0a:d5:95:04:f2:78:e9:ef:6c:05:6e:8f:17:38:df:4c:4c:
d6:a3:fc:6e:4f:04:eb:a8:b6:81:af:dd:52:17:3a:75:b8:0b:
c3:7e:32:b7:f9:cb:d9:49:76:ab:eb:82:a2:61:75:4c:1c:87:
b4:4a:0c:df:8e:59:bd:7d:29:04:48:fa:9c:02:56:fd:0c:c7:
af:2f:a0:99:11:af:1b:fe:08:9e:dc:d8:cc:1a:1a:16:d9:59:
9f:7d:54:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org