Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231352e302f32342d3234203d3e203432333636.roa
File: 33312e34302e3231352e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: eBl+R0KbFgq7kvHfRylgm0e+3T1ouBjxe2S7kdVcWsY=
Subject key identifier: E4:5F:AF:04:A1:1A:04:5A:64:19:A4:6F:D8:4A:CB:0A:82:23:64:A7
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3A7BB28FE8E08784C8BE41B1EBCF9E8A1D0F04E8
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231352e302f32342d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:23:48 +0000
ROA not before: Mon 17 Apr 2023 11:18:48 +0000
ROA not after: Mon 15 Apr 2024 11:23:48 +0000
asID: 42366
IP address blocks: 31.40.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:7b:b2:8f:e8:e0:87:84:c8:be:41:b1:eb:cf:9e:8a:1d:0f:04:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:18:48 2023 GMT
Not After : Apr 15 11:23:48 2024 GMT
Subject: CN=E45FAF04A11A045A6419A46FD84ACB0A822364A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ab:45:85:50:b0:2a:e8:11:37:93:15:be:29:
18:91:bc:d7:d1:0d:ef:87:69:ee:61:41:c6:8a:f4:
10:76:e9:70:5e:1c:e9:44:5e:3d:cf:3a:9b:ca:b7:
6e:34:ed:2d:44:6d:ad:5c:1a:84:f6:5a:b7:a1:29:
7c:4c:a0:43:29:87:4f:03:9e:0f:a9:49:a3:06:55:
1a:86:82:69:73:1b:cf:d2:c3:94:22:60:21:68:98:
97:d5:e8:da:f4:20:8d:2c:65:0c:11:57:3a:b0:ff:
50:b9:d6:9a:cf:51:bd:49:f5:12:6d:15:b8:5e:af:
6f:32:80:82:cd:02:4d:51:c7:3e:49:29:bf:07:1d:
75:e4:40:cc:c1:0a:6b:87:2e:19:30:07:05:27:7e:
45:b1:2c:04:71:27:c8:f5:b0:24:ba:4d:16:19:17:
3f:c9:25:9d:6d:0e:fd:3e:e7:12:a2:04:21:47:ff:
d1:69:9e:e2:0c:34:99:dd:d2:ec:bc:ed:50:8d:e9:
d7:bf:4f:dc:f1:15:66:37:2d:2a:3b:cf:85:62:01:
bf:b0:3a:5d:7f:53:4b:d9:d6:fa:ff:33:91:a2:e2:
10:3f:d3:ab:26:5d:17:43:cb:07:a6:b0:3c:d3:c4:
a2:e7:f7:91:c8:17:65:05:94:e4:bc:d5:2d:6c:02:
d1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:AF:04:A1:1A:04:5A:64:19:A4:6F:D8:4A:CB:0A:82:23:64:A7
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/33312e34302e3231352e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.215.0/24
Signature Algorithm: sha256WithRSAEncryption
97:a1:f6:2d:6c:60:27:c8:0d:3a:e8:d9:42:4b:1f:9c:cc:f6:
86:46:5e:a6:f5:11:eb:4a:ff:ae:97:78:ff:ac:fb:fd:fd:b1:
55:8b:86:f7:9b:db:16:31:b8:85:aa:c0:d4:cb:11:9b:d5:e1:
16:6c:5f:f7:72:fe:e3:23:a0:45:eb:53:d5:90:a9:d0:2f:2d:
4d:03:f4:a6:40:c1:7a:22:6d:ec:17:ad:7c:ef:51:3d:9c:96:
a8:14:2a:ba:1f:4b:ab:00:a9:37:48:9c:5d:ae:46:1d:1c:57:
a0:d4:1d:ea:2c:af:19:9e:87:14:dd:2b:04:6b:10:0b:68:34:
aa:df:44:bf:30:d2:37:e8:e6:bb:6a:25:bd:0c:83:21:3e:2b:
b1:5b:9e:b4:48:60:db:2f:66:69:57:87:c5:c2:64:a9:d9:fa:
9c:62:e6:6d:88:e9:94:93:ec:29:4b:bb:ed:01:1d:92:b0:fc:
cf:b5:5f:cd:a1:e6:64:b9:ac:ed:b5:e6:f0:94:1c:1b:c7:58:
72:1b:eb:14:c2:dd:26:3c:bb:21:e9:a8:9a:aa:53:7f:a9:23:
e0:57:4a:8c:e9:5e:15:e1:6d:74:64:6a:1c:20:02:ef:4d:40:
8c:67:40:2e:90:e6:f9:f7:26:58:7c:63:9f:e0:92:aa:3e:50:
3e:dd:96:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org