Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
File: 34352e31302e3135382e302f32342d3234203d3e20323038323538.roa (raw, json)
Hash identifier: mFsMSlpBVLL0nhLT5D6AuAPfxtK6Jx3MiAD6xceXauI=
Subject key identifier: 03:39:D5:AB:27:45:00:24:F3:32:56:DF:3E:47:14:E5:81:4D:69:CE
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3AE63069D1F0EC1DC8483172AD285CFF290CCA19
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
Signing time: Mon 27 Mar 2023 08:28:06 +0000
ROA not before: Mon 27 Mar 2023 08:23:06 +0000
ROA not after: Mon 25 Mar 2024 08:28:06 +0000
asID: 208258
IP address blocks: 45.10.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:e6:30:69:d1:f0:ec:1d:c8:48:31:72:ad:28:5c:ff:29:0c:ca:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 27 08:23:06 2023 GMT
Not After : Mar 25 08:28:06 2024 GMT
Subject: CN=0339D5AB27450024F33256DF3E4714E5814D69CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:58:5e:f5:e6:3b:75:8a:64:ae:d8:68:05:
19:0d:ce:fb:f7:c9:99:3c:de:7e:d0:a8:fa:05:02:
b5:95:9b:50:55:95:99:a8:e5:77:77:47:3b:ef:fe:
dd:71:69:7d:98:83:1b:09:26:a5:5a:8a:d2:81:63:
4d:15:01:bb:02:42:73:e1:67:a0:37:4a:cd:bc:d7:
06:da:78:2c:9e:f9:9d:4b:41:53:33:a0:99:c1:bc:
cc:8d:5b:c7:f1:de:c0:f7:62:ab:b3:e1:02:03:c7:
57:0a:26:60:fd:4e:c1:47:a0:7b:87:8d:92:e6:b1:
57:8d:97:e0:28:fe:04:20:f1:95:89:8f:74:f3:80:
6d:41:4c:8b:68:b0:e0:bf:5b:66:92:de:94:55:71:
88:d3:33:b1:70:c2:9c:fb:d0:38:5a:3d:54:d5:b8:
85:07:f2:24:ec:5d:04:80:87:80:74:a6:e8:d4:42:
26:82:ef:9a:65:ec:f0:ef:86:4f:b5:65:07:62:4a:
75:7d:ba:d0:52:07:f3:30:b1:59:32:29:80:69:cb:
d0:81:77:ef:b9:de:ae:86:d3:f8:d0:a9:c5:c7:33:
40:86:3e:ac:88:c7:54:ac:ee:df:5a:c0:a6:4c:29:
98:98:49:a4:ee:67:e8:2d:9f:c5:3f:50:e5:75:9f:
50:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:39:D5:AB:27:45:00:24:F3:32:56:DF:3E:47:14:E5:81:4D:69:CE
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.158.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d1:c0:33:ce:15:3e:1c:2d:65:6f:71:48:1e:56:0f:e4:2e:
b0:50:5e:72:00:ba:87:0b:0e:2c:06:a9:ad:c5:5a:d4:d5:e0:
e9:c9:77:72:97:20:b9:22:26:c8:48:55:12:a1:8a:74:5b:2f:
40:a1:e8:19:45:f2:2e:2c:1e:a4:e9:a5:0f:95:53:3c:0f:6f:
7d:34:69:8b:e0:81:67:20:65:06:2e:51:5b:c2:38:61:67:77:
26:2d:f7:3d:67:12:b4:9b:d6:4c:99:01:3e:b6:29:5c:81:21:
5d:e0:b4:5b:81:3f:07:1e:e7:75:2c:9c:c2:d1:9a:fa:df:af:
ce:47:86:c7:59:84:7a:20:c5:f5:0d:3c:12:05:52:31:5f:42:
54:5b:6e:2d:db:ae:69:60:24:5b:d0:ee:57:29:57:aa:14:c4:
d0:08:04:90:da:93:b7:03:44:e7:7f:77:aa:05:e6:4f:b9:2a:
fb:38:ed:b8:79:dd:4e:c7:dd:fb:c2:f3:85:c2:6a:0f:e0:50:
69:de:05:d4:64:c3:a2:70:dd:f7:57:64:a7:4a:14:49:80:bb:
78:78:2e:58:4c:11:bb:72:5f:73:f4:bd:b2:48:71:9a:a7:d7:
0d:fe:95:59:af:e8:98:0d:49:19:af:7e:74:29:19:d7:64:c7:
85:90:76:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org