Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e203432333636.roa
File: 3138352e3231362e3233312e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: +nBdn1dDG2/twFC5MFOFG6iTPq7tFP+GvHKZ0eCpKzM=
Subject key identifier: 22:F6:20:CB:45:1B:C3:29:35:AA:0D:43:64:B9:69:90:EF:09:2E:A9
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 7359BA25B0190D08FD5AF5D131C379743BB63FA1
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 May 2023 15:42:16 +0000
ROA not before: Sun 07 May 2023 15:37:16 +0000
ROA not after: Sun 05 May 2024 15:42:16 +0000
asID: 42366
IP address blocks: 185.216.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:59:ba:25:b0:19:0d:08:fd:5a:f5:d1:31:c3:79:74:3b:b6:3f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: May 7 15:37:16 2023 GMT
Not After : May 5 15:42:16 2024 GMT
Subject: CN=22F620CB451BC32935AA0D4364B96990EF092EA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:b1:aa:4f:da:71:1b:fd:a3:7a:2d:0a:fd:
73:8a:ec:d0:75:03:05:81:9d:b3:32:52:ae:2b:57:
e5:00:fc:26:7b:38:07:4f:bb:3c:e7:9b:38:cf:83:
5d:58:28:ec:9c:99:fe:78:1d:6c:3e:41:9e:bf:51:
56:51:d7:d5:80:eb:2e:4a:47:8f:68:e3:21:95:fc:
30:ba:1f:54:ae:1d:64:72:69:ae:14:fc:93:e4:db:
09:0f:bd:30:2c:8b:6a:93:f0:ac:64:ad:9f:65:65:
50:67:02:23:14:39:5b:f6:22:ee:d7:9b:12:d5:37:
80:f3:03:48:06:47:ad:81:4b:4e:1f:e4:ad:20:20:
ea:37:6a:2b:5a:85:5c:5b:38:f4:c0:32:da:8a:44:
f8:cd:92:17:00:0a:62:0f:00:83:cc:62:28:26:1f:
dc:14:84:84:3d:8d:bd:07:98:2a:54:9d:77:2d:7a:
92:df:38:10:dd:66:86:df:62:26:59:cc:65:92:97:
75:c1:79:f9:0c:36:8d:22:37:b3:57:4a:d0:8c:b8:
f0:57:ba:dc:61:f0:b0:bf:b8:8b:5d:35:3c:bc:28:
b3:fc:4f:c1:d4:de:a3:38:26:e0:a8:9a:0e:a3:0d:
ad:ed:8a:e8:4c:aa:5d:81:23:21:3e:65:61:e8:e1:
24:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F6:20:CB:45:1B:C3:29:35:AA:0D:43:64:B9:69:90:EF:09:2E:A9
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.231.0/24
Signature Algorithm: sha256WithRSAEncryption
88:cf:05:66:ab:fb:86:07:81:ac:a5:4a:09:c5:b5:77:2c:97:
70:61:d6:d6:a0:11:2f:23:b1:57:9a:3f:db:c8:a1:ef:2c:14:
f0:ca:f0:cc:76:37:63:ef:c7:fe:6a:03:8c:68:22:80:5c:8a:
aa:9f:6a:d6:b0:6f:96:cf:b2:dc:70:32:4f:20:a8:a7:ef:af:
0c:8c:62:44:c6:88:53:1f:0a:b2:0d:89:c3:a3:a1:fc:0d:d8:
52:29:35:9a:cd:4d:2d:85:3e:6d:32:d2:bc:ff:b6:82:c6:7c:
95:3b:20:e2:5f:b8:dc:45:b5:ce:d3:2c:ef:59:92:d5:6c:37:
cb:84:08:09:d8:0b:1f:e5:98:3c:02:43:33:8a:c5:4d:75:10:
81:ab:cb:48:ff:32:66:d7:d2:e5:b2:4e:8c:fb:99:c4:83:47:
db:f9:1c:52:af:3c:ec:00:14:ce:b9:54:5d:80:c3:67:ff:b9:
be:bc:28:36:9a:46:f1:0c:33:35:b4:be:f9:fa:e2:58:11:51:
47:5a:71:19:c3:a6:e4:e7:05:4b:c7:33:5e:09:42:b4:c3:4a:
32:c6:24:98:38:ab:46:9c:ac:4e:56:54:7a:7a:ea:e7:77:b0:
98:9d:ab:60:eb:e0:47:44:2f:a8:3a:0d:58:34:3c:01:1f:ed:
4b:fe:f3:42
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUc1m6JbAZDQj9WvXRMcN5dDu2P6EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yMzA1MDcxNTM3MTZaFw0yNDA1MDUxNTQyMTZaMDMxMTAvBgNV
BAMTKDIyRjYyMENCNDUxQkMzMjkzNUFBMEQ0MzY0Qjk2OTkwRUYwOTJFQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy7LGqT9pxG/2jei0K/XOK7NB1
AwWBnbMyUq4rV+UA/CZ7OAdPuzznmzjPg11YKOycmf54HWw+QZ6/UVZR19WA6y5K
R49o4yGV/DC6H1SuHWRyaa4U/JPk2wkPvTAsi2qT8KxkrZ9lZVBnAiMUOVv2Iu7X
mxLVN4DzA0gGR62BS04f5K0gIOo3aitahVxbOPTAMtqKRPjNkhcACmIPAIPMYigm
H9wUhIQ9jb0HmCpUnXctepLfOBDdZobfYiZZzGWSl3XBefkMNo0iN7NXStCMuPBX
utxh8LC/uItdNTy8KLP8T8HU3qM4JuComg6jDa3tiuhMql2BIyE+ZWHo4SS/AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUIvYgy0Ubwyk1qg1DZLlpkO8JLqkwHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMjMxMzYyZTMy
MzMzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzIzMzM2MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC52OcwDQYJKoZIhvcNAQELBQADggEBAIjPBWar+4YHgaylSgnFtXcsl3Bh1tag
ES8jsVeaP9vIoe8sFPDK8Mx2N2Pvx/5qA4xoIoBciqqfatawb5bPstxwMk8gqKfv
rwyMYkTGiFMfCrINicOjofwN2FIpNZrNTS2FPm0y0rz/toLGfJU7IOJfuNxFtc7T
LO9ZktVsN8uECAnYCx/lmDwCQzOKxU11EIGry0j/MmbX0uWyToz7mcSDR9v5HFKv
POwAFM65VF2Aw2f/ub68KDaaRvEMMzW0vvn64lgRUUdacRnDpuTnBUvHM14JQrTD
SjLGJJg4q0acrE5WVHp66ud3sJidq2Dr4EdEL6g6DVg0PAEf7Uv+80I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org