Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38352e302f32342d3234203d3e203432333636.roa
File: 3138352e3136352e38352e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: J/VHW9v2/64VLEkMB6mNkwc5scY9QBQNVG34j1Cnscc=
Subject key identifier: E5:52:20:B3:8B:CB:EE:80:88:4F:9A:62:EB:7C:A6:B6:94:5E:F5:2B
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 378F2A0B965792BC31ACA039F4618F322232C203
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38352e302f32342d3234203d3e203432333636.roa
Signing time: Sun 11 Jun 2023 11:10:42 +0000
ROA not before: Sun 11 Jun 2023 11:05:42 +0000
ROA not after: Sun 09 Jun 2024 11:10:42 +0000
asID: 42366
IP address blocks: 185.165.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:8f:2a:0b:96:57:92:bc:31:ac:a0:39:f4:61:8f:32:22:32:c2:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 11 11:05:42 2023 GMT
Not After : Jun 9 11:10:42 2024 GMT
Subject: CN=E55220B38BCBEE80884F9A62EB7CA6B6945EF52B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:9e:4f:f0:74:ed:bc:79:17:6d:81:62:1d:
5e:ad:f7:52:3e:a2:12:b4:c5:38:50:b4:8a:fb:ca:
55:ad:cc:4f:45:be:f7:a1:a0:c2:4f:b7:1e:6e:15:
ae:11:45:69:fe:cb:47:fa:94:60:4a:c8:f1:fc:46:
b4:de:c2:38:11:80:c4:ba:b9:5b:77:b4:d5:5c:f6:
04:c1:81:6f:46:11:4e:25:08:38:80:ba:70:36:c2:
b6:65:63:fd:e7:d3:97:98:e7:a2:98:0b:a6:33:17:
3e:71:0b:3c:84:2c:b1:dc:b2:c6:92:9c:7c:66:d9:
51:38:99:35:23:98:37:ec:06:fd:2e:60:34:e7:c5:
68:e5:d7:91:ea:f3:b9:69:41:75:bb:e0:ab:a0:44:
9c:46:72:5a:8c:76:3b:ee:fe:c7:20:38:6b:53:e8:
ad:ee:ed:c3:ba:a0:f6:1f:61:9b:89:b2:6b:80:b1:
c2:a1:5f:aa:2a:1b:c9:6f:03:5f:db:d5:fd:f5:79:
98:6e:ad:2d:c0:8a:51:9e:e9:8b:0b:a2:dc:d0:93:
19:f0:1a:5d:cf:4d:02:2d:88:12:1d:d5:15:d4:e1:
87:45:a4:af:e0:cc:98:e6:c5:bd:d7:23:98:e6:25:
6e:21:1f:2d:aa:1a:e0:f8:82:1c:bc:51:20:23:21:
4c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:52:20:B3:8B:CB:EE:80:88:4F:9A:62:EB:7C:A6:B6:94:5E:F5:2B
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38352e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.85.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c1:46:e6:57:90:73:d0:6b:58:10:aa:99:5f:2c:d6:31:41:
af:1e:cd:a2:03:b2:3a:25:54:8d:d9:5d:20:e4:bd:1a:b7:cb:
c9:a0:d4:4e:b2:9e:fa:89:e1:d9:b4:bc:47:65:91:e4:17:49:
c0:0d:09:55:32:2d:7f:ec:ff:69:d4:d1:10:4d:a8:a8:e5:46:
c1:c4:9b:3b:ef:16:7a:a3:b1:ee:90:e7:2e:49:c1:32:d3:a5:
f6:cd:90:a3:17:48:95:0c:42:9a:84:7d:53:1c:58:0f:73:24:
84:ca:40:43:03:81:a7:21:fb:06:81:46:3a:ba:a7:78:11:b1:
6b:97:4c:48:3f:fe:6c:cd:cb:a8:f1:10:55:76:5f:31:5b:b8:
96:cf:25:09:48:6a:53:e3:20:21:52:b8:b4:d4:1f:4f:c1:68:
ce:1a:7d:49:71:62:9a:bb:32:4d:6c:7b:65:73:21:78:3b:1b:
60:f7:3f:18:c7:79:53:9e:e3:4c:4f:f3:18:8b:0a:c7:2b:4c:
c3:8d:21:83:b1:bc:30:58:7c:b9:d6:bb:92:66:2f:10:ca:57:
50:3a:d8:01:aa:9b:e4:f1:f9:93:4e:77:54:d6:77:dc:b6:33:
56:fb:93:7c:ef:71:2b:58:31:0f:8d:e6:f2:d8:ba:6b:7b:47:
4a:04:f6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:05 2025 by rpki-client