Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135392e302f32342d3234203d3e20323132363639.roa
File: 34352e31302e3135392e302f32342d3234203d3e20323132363639.roa (raw, json)
Hash identifier: FyJFM5xIvNNnXbjLsQ4x8GWpjcBeCtCjnDRAdP0+2n0=
Subject key identifier: 18:EA:3F:31:DA:16:C1:1B:8D:1B:99:35:7F:CE:CD:3B:5A:68:B0:6E
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 7721D4CEA62814E805C467A299B1D49CF4DE7077
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135392e302f32342d3234203d3e20323132363639.roa
Signing time: Mon 27 Mar 2023 08:28:07 +0000
ROA not before: Mon 27 Mar 2023 08:23:07 +0000
ROA not after: Mon 25 Mar 2024 08:28:07 +0000
asID: 212669
IP address blocks: 45.10.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:21:d4:ce:a6:28:14:e8:05:c4:67:a2:99:b1:d4:9c:f4:de:70:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 27 08:23:07 2023 GMT
Not After : Mar 25 08:28:07 2024 GMT
Subject: CN=18EA3F31DA16C11B8D1B99357FCECD3B5A68B06E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:d3:44:93:70:a6:c7:3f:1e:f1:36:a1:cd:
e1:82:c2:b1:cc:4e:36:eb:54:c1:81:5a:4e:db:19:
aa:49:6e:1a:56:e4:b6:a3:bf:a3:65:c1:1f:a4:01:
d0:64:4d:b3:39:2d:0d:8c:7f:bd:7c:5d:04:09:ea:
c5:22:f9:62:6b:68:1f:80:70:99:4b:f8:64:e7:e8:
73:90:b5:b1:be:fb:b0:67:24:35:23:9f:b8:95:04:
2f:18:37:4a:5e:25:94:d2:3e:82:ed:61:2e:6c:50:
7c:20:c0:cd:df:0b:82:9a:d2:64:25:28:b1:16:0f:
0e:ca:4e:82:3a:7a:ee:ef:32:10:5a:89:b2:08:20:
4b:d1:35:41:02:28:76:bd:4c:1b:af:23:d9:42:eb:
11:28:a4:13:0b:5e:f4:c0:94:73:19:2a:a1:4e:56:
c5:f9:7b:fe:69:da:60:d6:60:d3:77:0e:34:a7:62:
05:b5:08:c7:7d:59:d4:2a:c4:f4:a7:bf:08:42:11:
33:f3:ca:c4:3b:28:01:7b:4a:4b:00:8f:27:2d:e9:
62:8b:92:8f:54:99:f4:8c:d5:63:9e:12:28:82:29:
bc:d2:19:49:d3:3f:2a:df:56:4a:0c:ac:d8:a7:13:
6f:72:65:3d:a1:aa:7c:f2:c1:4b:4e:33:3d:d1:01:
33:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:EA:3F:31:DA:16:C1:1B:8D:1B:99:35:7F:CE:CD:3B:5A:68:B0:6E
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e31302e3135392e302f32342d3234203d3e20323132363639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.159.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4d:fd:5a:2e:9d:0c:b8:97:53:97:88:88:0d:a4:60:f1:83:
d2:a4:a1:49:64:c6:05:c9:f1:d6:31:1e:e0:50:fe:21:44:b1:
45:bd:1a:73:f1:4d:32:1c:78:01:2d:e9:f5:26:68:9f:ea:45:
41:bb:10:78:0b:67:7c:5d:d8:b5:f4:64:71:88:e0:ce:cf:a3:
50:db:c6:4e:c1:61:c1:c2:74:c1:5b:56:ca:e5:e7:3d:c1:e9:
6d:d0:e4:b1:e0:33:89:28:ca:93:64:7e:0e:41:af:96:b1:65:
a8:bb:d0:c6:74:5e:60:56:7c:d7:b5:bf:1c:64:b9:e2:66:4a:
a0:48:e6:09:b9:74:74:02:ad:df:b6:f8:a5:b1:50:9d:0d:f5:
36:ac:57:3a:38:c5:32:60:72:6c:c9:51:1a:e1:47:81:da:79:
8d:f1:79:f1:dc:4f:cd:f2:7b:39:59:49:e6:80:8b:06:8f:2a:
c0:17:e5:e0:75:2c:b5:d0:e1:9e:99:a6:f2:4d:54:68:5d:70:
d4:8d:f0:cf:24:a6:d7:46:c6:39:ac:5f:f5:6a:7b:5c:2c:0b:
d2:a3:60:46:1a:31:40:dc:10:6a:d1:e8:ed:79:33:b7:1c:e0:
c8:20:6f:93:ce:06:86:56:99:b5:cc:6e:3c:90:5f:14:e7:6f:
35:f0:b1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org