Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34322e39372e302f32342d3234203d3e20323034383433.roa
File: 3139332e34322e39372e302f32342d3234203d3e20323034383433.roa (raw, json)
Hash identifier: dl0Jf/PqMpMLDJZ5kC4ZKjgJoQaCegVmc+wBorwRb30=
Subject key identifier: 56:27:B8:97:3C:8F:D8:BB:4D:CB:05:74:8B:B6:7F:52:F0:BD:CF:DA
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 25284379A60F1032B925DACD1C8DA07089A724DF
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34322e39372e302f32342d3234203d3e20323034383433.roa
Signing time: Fri 02 Jun 2023 08:04:56 +0000
ROA not before: Fri 02 Jun 2023 07:59:56 +0000
ROA not after: Fri 31 May 2024 08:04:56 +0000
asID: 204843
IP address blocks: 193.42.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:28:43:79:a6:0f:10:32:b9:25:da:cd:1c:8d:a0:70:89:a7:24:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 2 07:59:56 2023 GMT
Not After : May 31 08:04:56 2024 GMT
Subject: CN=5627B8973C8FD8BB4DCB05748BB67F52F0BDCFDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:57:a3:d7:0a:ab:05:09:0a:22:6d:50:d9:b8:
25:04:f3:1d:6b:f3:25:c5:02:14:e6:07:d6:21:1c:
9b:81:4a:3f:f9:31:aa:4d:e2:9d:66:8a:0e:9b:58:
96:d2:54:53:78:e6:13:17:5f:29:c6:12:83:61:39:
55:4b:c0:23:ba:94:f0:cf:50:c7:54:8f:dd:e5:2c:
6c:bb:e8:ac:44:48:a9:54:81:80:f6:b3:c0:45:74:
a9:5b:0d:9d:27:b3:de:53:59:5b:a8:81:5d:fa:31:
aa:dd:aa:83:dd:db:44:ed:d3:1c:dd:23:c0:bf:41:
fd:89:21:d6:04:18:8f:2b:3d:4a:c8:ca:8b:c3:01:
d0:b1:6e:51:30:80:0e:76:d7:38:b6:11:c4:61:24:
fe:67:79:d1:80:39:d0:64:e8:1c:65:a5:05:b2:96:
c1:c1:80:5b:45:29:b6:9c:2a:71:f4:ac:4e:d8:98:
a7:89:77:91:05:a2:67:6e:04:e7:09:43:84:09:bb:
32:2b:8f:23:89:18:02:67:a5:f5:10:01:4d:30:29:
c2:c8:28:46:7c:9a:b7:11:d0:2f:16:0b:dd:d5:a7:
26:b1:1d:04:ca:1b:fd:19:cb:07:7c:36:ba:37:d0:
13:50:db:58:d7:65:89:31:cc:e9:76:52:e0:16:3a:
12:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:27:B8:97:3C:8F:D8:BB:4D:CB:05:74:8B:B6:7F:52:F0:BD:CF:DA
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e34322e39372e302f32342d3234203d3e20323034383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.97.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:e3:15:8b:fe:b0:3e:56:9d:5c:3d:84:ab:7b:6c:2e:e2:d1:
f4:52:92:e6:f1:ef:c7:f3:56:9b:d6:70:74:c3:c2:df:b4:5c:
fa:0b:8f:d8:79:23:80:f2:87:ee:e1:ae:9b:85:17:d6:e3:da:
a8:f4:76:55:4d:b3:43:2d:e7:d1:47:4f:85:3a:42:88:8c:7c:
31:28:ce:fa:20:de:e9:c6:1e:bd:e6:dd:86:1b:15:fd:52:c9:
0c:b2:40:f9:7f:24:9b:db:a3:46:1a:d1:2a:2a:c6:39:24:11:
ae:a5:ba:b8:d8:f4:17:49:60:db:32:ce:64:c4:86:d6:81:d0:
43:98:7f:55:16:cf:bc:05:10:ca:9e:d0:f4:67:dd:f5:55:cb:
fe:e4:84:f3:fb:4a:7b:ff:31:87:03:f8:23:bc:ca:52:4b:ea:
99:e9:2a:86:b3:cb:33:6c:2f:44:4f:d5:1b:20:7b:42:62:a7:
d2:e0:25:24:85:61:01:00:22:26:c4:4e:11:15:83:47:1d:e7:
24:d0:7f:57:02:32:f5:b4:65:61:5e:a2:aa:31:1e:cf:95:51:
c6:32:a1:2e:86:2a:91:06:cc:6a:9c:d1:df:2a:a7:78:61:1d:
e1:f7:46:51:54:72:e5:18:4c:12:a3:53:70:eb:b1:2e:12:8c:
21:ef:4f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org