Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137322e302f32322d3234203d3e203432333636.roa
File: 34352e3134372e3137322e302f32322d3234203d3e203432333636.roa (raw, json)
Hash identifier: Vuv4PNjmDaR/F2x74Ny8uOsuj9L5sdJGzxnNCY1Bx4s=
Subject key identifier: C6:BD:9F:C0:20:75:80:58:A5:77:61:1E:69:EE:54:A3:AD:20:D3:F5
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2A01DB6F4B5B9170E42407AF63761EAC2964E738
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137322e302f32322d3234203d3e203432333636.roa
Signing time: Mon 17 Apr 2023 11:24:51 +0000
ROA not before: Mon 17 Apr 2023 11:19:51 +0000
ROA not after: Mon 15 Apr 2024 11:24:51 +0000
asID: 42366
IP address blocks: 45.147.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:01:db:6f:4b:5b:91:70:e4:24:07:af:63:76:1e:ac:29:64:e7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 17 11:19:51 2023 GMT
Not After : Apr 15 11:24:51 2024 GMT
Subject: CN=C6BD9FC020758058A577611E69EE54A3AD20D3F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4f:9e:9b:0d:b1:3c:7d:56:e6:ea:19:64:2e:
7e:eb:09:52:9f:96:e2:56:c6:1e:78:84:25:b4:23:
e8:93:88:55:00:c7:14:1b:ca:f1:56:eb:70:fa:4d:
57:59:a9:99:71:08:96:9c:94:45:34:09:63:3a:de:
5a:56:1e:77:7a:df:cd:bf:1d:79:22:1e:ec:98:dc:
39:d2:77:6a:97:13:ae:64:12:8e:d2:0d:66:7d:3a:
06:57:80:71:bb:10:45:69:6f:5b:12:c0:d4:13:12:
14:ff:7a:cf:c7:fd:0c:95:a8:b6:db:5c:88:de:3e:
b9:da:d0:58:19:88:fb:73:eb:2b:99:e8:75:68:b4:
0b:ad:f8:7c:c8:f4:f3:ca:1e:1e:0a:52:03:6f:c0:
e1:3a:fa:c8:c2:67:87:06:b9:7c:50:79:ce:94:ff:
2c:83:6c:dd:81:2d:e9:82:b5:9e:01:8f:f0:91:eb:
c9:87:b4:d5:f0:47:fe:81:1c:e8:20:6d:6f:2b:f7:
85:57:41:c9:7a:1f:f8:22:4c:44:d5:62:d9:4d:17:
00:05:e5:1b:11:34:fe:02:3d:49:b0:90:21:71:7f:
0c:84:4c:b9:1e:a0:ae:c6:85:68:50:8a:6e:dd:45:
fa:7b:bd:14:ec:54:f1:81:db:1a:0a:0f:98:9a:07:
89:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BD:9F:C0:20:75:80:58:A5:77:61:1E:69:EE:54:A3:AD:20:D3:F5
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137322e302f32322d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.172.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:a2:0d:b2:1d:ed:e8:94:71:a2:1d:e2:41:f2:35:c5:34:ee:
f2:39:f4:47:11:66:4c:79:70:bd:c8:72:0e:32:ab:f2:69:cc:
0c:17:8d:fd:b5:74:fd:3e:d9:56:5b:14:3c:2e:3b:e3:53:a3:
c5:44:3a:f2:c6:a8:c0:18:55:b8:24:10:f5:26:dc:b5:60:2c:
93:56:48:a1:c5:09:8c:03:c9:9d:68:11:bd:ce:9d:2b:99:d9:
62:2d:7d:2f:29:64:ae:1c:af:87:d6:53:31:72:71:ab:61:7f:
ee:4c:e2:b6:7e:83:cf:81:16:46:ac:98:4a:b6:c7:55:22:e9:
9e:5d:56:5c:c9:3b:fe:a1:94:3a:bd:58:13:da:7c:95:2d:f6:
94:dc:92:91:ac:bf:0a:21:3f:99:42:71:aa:3e:9f:13:0c:48:
3b:3b:c8:91:5b:e4:66:96:55:1d:53:f5:bc:9e:6e:6a:dc:77:
ae:b8:3d:a4:68:25:4f:61:17:07:e5:2c:e0:00:4a:55:99:31:
a6:4d:4a:79:6a:65:ed:b8:9b:67:8d:69:cd:11:3f:08:d4:de:
69:86:c2:15:03:cb:28:c5:54:71:df:7f:e2:40:4e:6f:d9:a7:
2d:b2:c0:19:d4:fb:4e:f5:5f:39:d4:50:b2:57:97:66:78:ba:
3e:fd:47:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org