Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32332d3234203d3e203432333636.roa
File: 3139332e3230332e31322e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: K6AlPFMVxzCqNyvqrelJq+F7DpVGzhWa4ldsxpB5Veo=
Subject key identifier: 25:F9:A4:2F:0D:EC:C1:EA:10:3F:4C:2B:52:20:90:ED:B0:03:B7:A3
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 4EC0863CEE288BDA88B3F6810FE9CA6DEE7BE2ED
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32332d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:22:35 +0000
ROA not before: Mon 17 Apr 2023 11:17:35 +0000
ROA not after: Mon 15 Apr 2024 11:22:35 +0000
asID: 42366
IP address blocks: 193.203.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:c0:86:3c:ee:28:8b:da:88:b3:f6:81:0f:e9:ca:6d:ee:7b:e2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:17:35 2023 GMT
Not After : Apr 15 11:22:35 2024 GMT
Subject: CN=25F9A42F0DECC1EA103F4C2B522090EDB003B7A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:75:94:da:bc:9b:99:60:be:1e:9d:85:79:c6:
b5:c9:e4:e2:2b:55:d1:a9:8a:c8:ec:b2:7d:47:b8:
4d:d3:1e:89:ec:38:7b:b1:43:fe:82:39:d7:db:dc:
a6:45:b0:76:44:0f:d2:da:0e:b7:2e:0e:d2:17:66:
76:b7:c5:22:63:9a:14:cd:3f:d3:25:cb:70:de:02:
94:b0:da:f4:c7:7e:72:0e:54:c4:ea:6f:b2:c6:fd:
13:a3:dd:3b:f1:aa:e5:e2:31:92:ef:59:9b:b0:d0:
0d:45:72:a3:73:fc:fa:5e:14:c7:b7:07:ee:fb:5f:
10:bc:3e:f2:8b:3b:c3:3c:5d:e8:a0:25:a0:df:c5:
53:a7:77:f5:8a:c4:56:50:63:b6:36:dd:10:41:fc:
0c:92:5d:95:85:8f:1c:e3:89:0c:e4:f6:d8:af:6f:
83:94:15:41:c5:05:cb:14:ab:a0:27:b7:19:a3:82:
94:58:39:34:da:41:ec:6b:b0:3f:46:8c:25:5a:03:
a8:a0:98:3d:26:1a:99:6c:f0:e0:4f:65:b6:a8:5c:
66:4a:c5:22:bb:2c:e4:a5:20:ae:dc:a4:3d:87:c7:
4c:d2:46:31:7a:07:27:70:f1:95:e6:5b:27:57:b5:
8a:2f:3b:37:03:56:24:84:1c:fd:2a:0a:fe:99:21:
36:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F9:A4:2F:0D:EC:C1:EA:10:3F:4C:2B:52:20:90:ED:B0:03:B7:A3
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.12.0/23
Signature Algorithm: sha256WithRSAEncryption
67:7f:53:a3:fb:f3:20:78:91:97:28:ba:91:4a:53:d7:68:d2:
a6:c5:4c:cb:f8:df:47:6c:28:41:c3:63:34:3f:15:e1:2d:35:
76:f7:67:96:2d:59:17:f4:ec:37:f6:48:72:13:b5:10:9d:b3:
48:71:fa:0f:a5:ee:97:5b:f0:44:8d:39:dd:18:37:4f:a8:dc:
b8:94:70:04:81:9f:bf:c6:1f:57:ca:ce:83:6d:ec:b9:6b:b8:
2e:88:03:b0:3e:b5:a9:50:26:0c:7a:3e:eb:54:59:ec:56:0e:
a1:fe:ef:44:7f:d0:dd:85:ee:e5:80:9b:84:31:f5:44:6c:20:
e9:93:35:4a:af:35:13:3f:c3:cb:45:9d:39:56:6b:e3:18:94:
88:5a:13:d2:dc:6b:d6:d8:d2:f9:7d:70:03:30:be:52:35:99:
ea:45:a8:03:62:06:fb:f0:ad:ef:cc:07:dc:50:30:3c:9e:d7:
af:fa:ee:43:9c:de:c9:e1:be:02:4e:b5:37:24:03:09:4d:bc:
22:86:dd:87:32:b5:f9:40:ba:e1:4b:68:3d:b3:3e:17:de:d0:
47:66:c5:25:69:df:c1:96:de:39:6b:92:53:d3:b4:ba:a7:06:
58:42:f3:ed:c8:a9:78:71:20:68:db:94:86:39:7a:77:67:de:
63:51:12:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org