Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231332e302f32342d3234203d3e203432333636.roa
File: 33312e34302e3231332e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: oECYmGlrj3Id/Kr0sMiKUKIdo9B5NChvYyH9Qf89GeA=
Subject key identifier: FE:55:AE:85:FB:4D:34:24:37:64:DA:0A:BB:12:54:44:2D:01:FD:D3
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 664D8D692A89B682E86CCB5816DB90FD57A90CDC
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231332e302f32342d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:23:41 +0000
ROA not before: Mon 17 Apr 2023 11:18:41 +0000
ROA not after: Mon 15 Apr 2024 11:23:41 +0000
asID: 42366
IP address blocks: 31.40.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:4d:8d:69:2a:89:b6:82:e8:6c:cb:58:16:db:90:fd:57:a9:0c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:18:41 2023 GMT
Not After : Apr 15 11:23:41 2024 GMT
Subject: CN=FE55AE85FB4D34243764DA0ABB1254442D01FDD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9a:80:a3:5b:d4:3f:0c:e1:d6:23:7e:96:ec:
27:05:08:f3:e0:a3:f1:81:92:d2:90:e8:52:4a:cc:
17:f4:ad:29:c5:75:96:a3:9c:24:b3:76:22:90:59:
1d:61:45:6e:47:37:2d:6a:03:ab:fd:cc:30:d0:9e:
72:81:03:e6:74:81:19:09:1e:2c:98:90:0e:38:90:
ec:71:63:4b:fc:08:f9:bd:a6:1e:c3:47:4b:35:31:
b4:2d:f4:c9:be:b9:b9:a5:69:fb:c2:3a:9f:df:c4:
2c:17:55:81:80:4e:21:ac:df:51:b3:81:d1:fa:e5:
59:4d:81:25:48:01:47:09:76:44:1a:2a:12:b0:52:
b3:9e:3b:95:ea:ca:da:18:de:db:80:a3:10:18:e2:
4e:79:a3:f9:62:47:8b:f9:16:e6:a4:ee:4e:0c:e2:
84:17:e1:b3:25:e1:26:91:fd:37:43:ea:2f:02:08:
9a:14:1f:51:88:17:65:af:df:d2:e2:45:85:a5:28:
df:f3:f8:24:fb:49:a3:e5:ea:a1:00:b9:47:6a:63:
d0:cc:15:c3:e1:91:6d:95:54:10:89:21:4d:86:8b:
ec:6a:3f:17:e8:7e:0c:9d:09:3c:83:13:5f:60:c7:
53:68:5c:d3:4d:22:db:56:ab:d5:d7:8d:71:e8:9c:
f3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:55:AE:85:FB:4D:34:24:37:64:DA:0A:BB:12:54:44:2D:01:FD:D3
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231332e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.213.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:83:65:66:05:c9:d6:67:07:0a:28:9e:58:b9:57:b7:a4:0d:
cc:d3:2c:2f:87:fd:79:a6:06:f8:15:cd:f0:69:b7:c0:39:72:
79:45:c5:93:b1:d9:fd:7b:3e:ce:fd:01:bc:00:12:40:10:b5:
97:2e:d7:26:79:a3:82:74:d2:c4:25:3e:e4:b8:6c:91:e7:d7:
c2:a7:4c:86:8e:aa:3a:f6:d8:40:04:a6:5d:6c:77:e9:1f:71:
88:6d:3a:fd:c2:18:c5:f7:27:df:02:dc:10:70:05:13:27:aa:
4a:48:8c:2b:8f:46:21:fa:bc:df:7e:37:f3:b7:b8:96:6d:91:
ee:28:c0:a5:ee:4b:db:27:af:fb:63:d5:81:a5:29:1b:90:b8:
01:95:85:cb:ed:ab:eb:69:cd:78:b2:91:7a:3d:81:82:95:e8:
bb:ad:3c:5d:00:b7:b4:9b:70:78:1d:c6:2c:93:08:02:b1:0d:
1a:b4:b4:ac:11:53:43:ff:a7:7e:ce:27:88:45:c1:16:95:69:
26:dd:82:97:d6:6c:ed:94:bf:be:2d:6b:21:72:f1:04:ce:ce:
80:c5:f5:94:c4:2e:5c:7d:7a:78:39:94:9e:75:b5:b9:2c:4c:
89:a3:68:cf:5e:40:d1:86:e1:60:b8:84:52:a9:94:af:e0:45:
33:b7:bd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:11 2024 by rpki-client on console-ams.rpki-client.org