Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e2033333230.roa
File: 34352e31302e3135372e302f32342d3234203d3e2033333230.roa (raw, json)
Hash identifier: Zy8ZizOwQUx+0rKvY5PEG/uuxJcbZGjH3fzmgNycPQs=
Subject key identifier: 61:38:0B:08:0E:F5:0E:5B:D0:D6:D0:9A:29:C4:13:AC:9E:FB:B0:CC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 595611BFB8D94F5DC4A03EF5F818FAB202E6A361
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e2033333230.roa
Signing time: Mon 27 Mar 2023 08:28:03 +0000
ROA not before: Mon 27 Mar 2023 08:23:03 +0000
ROA not after: Mon 25 Mar 2024 08:28:03 +0000
asID: 3320
IP address blocks: 45.10.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:56:11:bf:b8:d9:4f:5d:c4:a0:3e:f5:f8:18:fa:b2:02:e6:a3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 27 08:23:03 2023 GMT
Not After : Mar 25 08:28:03 2024 GMT
Subject: CN=61380B080EF50E5BD0D6D09A29C413AC9EFBB0CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c1:b8:e0:34:ff:2c:83:18:0c:77:f5:44:32:
4b:a2:65:09:11:76:0f:48:7b:85:30:49:48:4d:bd:
71:79:97:33:4b:b4:ae:94:6a:11:47:07:95:a1:96:
d9:fd:93:e6:fd:8b:b0:e0:22:a9:73:7d:78:d8:62:
19:bd:9f:8e:6d:29:91:3a:a5:8a:a7:02:02:78:43:
43:2f:44:48:e6:dc:97:6c:5f:79:49:b2:e1:77:83:
d2:52:40:f3:03:b5:02:52:92:50:8c:82:80:a5:8b:
d9:31:7e:04:8f:41:2c:80:f6:e6:62:3f:b2:fb:b4:
fb:fa:76:d6:23:4c:25:52:17:d8:d4:be:3a:d3:65:
6c:a4:04:7b:cb:b9:7b:62:f7:8a:3d:88:09:fc:56:
6b:f6:4b:0e:73:09:95:77:c7:28:36:9b:fe:36:08:
bd:68:82:94:c4:9a:c2:39:18:b6:f7:43:d0:7b:ba:
16:d7:34:ea:fb:f6:8e:cf:22:f3:63:3a:94:1c:67:
36:dc:08:69:fd:e0:26:04:e0:ce:f0:85:ab:cf:dc:
70:ca:63:ae:23:d8:24:aa:ed:62:a2:22:30:3d:e2:
4e:33:e4:b6:e5:31:bb:5f:6f:dd:9f:73:56:c0:98:
0a:97:a2:7c:05:7e:d6:c7:48:5d:49:0d:16:7d:7e:
ac:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:38:0B:08:0E:F5:0E:5B:D0:D6:D0:9A:29:C4:13:AC:9E:FB:B0:CC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135372e302f32342d3234203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.157.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f5:3e:7a:05:e9:9d:35:8c:63:b8:c9:59:2c:85:25:08:91:
da:d0:00:0f:23:94:d0:7b:06:0f:09:7b:04:5f:fe:fd:3b:30:
0b:7d:c8:87:82:71:13:13:d5:82:25:55:ed:15:16:b2:54:c0:
be:27:04:1e:5f:00:10:69:07:9d:ae:2b:68:8a:e1:16:3f:fb:
d0:64:aa:21:6a:b5:17:dc:1b:16:95:dd:c4:f4:cc:0d:a1:c3:
97:e6:a1:76:33:7d:2b:36:f0:be:49:5d:9e:67:50:b2:34:d9:
a8:51:5f:31:22:83:7e:36:d1:49:43:79:1d:80:28:a4:1f:c6:
f9:f2:6c:f5:33:a4:de:0c:9d:58:9e:21:e6:a1:75:e5:f7:64:
56:38:34:7d:57:33:07:86:5f:35:34:b0:ef:e7:bd:2e:7f:0e:
6d:bf:aa:c7:3d:26:81:fa:0d:0e:f9:ba:40:51:eb:02:20:7e:
9a:d3:74:16:ed:37:ea:5b:5a:07:1b:c8:c9:56:b1:bd:af:ed:
66:a5:af:a2:5f:ab:33:3f:75:d4:9b:d4:52:1a:75:75:c3:db:
1f:d8:53:48:6b:2b:e6:9e:1f:74:2c:b6:9d:b5:5e:52:c8:c6:
f9:b2:59:70:9b:96:87:de:63:3f:46:1e:5e:5f:c3:a2:0e:ba:
c1:a7:29:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org