Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32332d3234203d3e203432333636.roa
File: 3135352e3133332e31362e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: nvkMgnbp38LFDtIKVOGwFkbMuL/gEr3eM46f7XREaj4=
Subject key identifier: D6:43:44:21:AE:DD:79:C0:12:6E:DC:79:5C:53:92:56:75:B8:49:50
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1426358FF2266F291691885473D9EF2F183294B0
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32332d3234203d3e203432333636.roa
Signing time: Tue 25 Apr 2023 17:56:17 +0000
ROA not before: Tue 25 Apr 2023 17:51:17 +0000
ROA not after: Tue 23 Apr 2024 17:56:17 +0000
asID: 42366
IP address blocks: 155.133.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:26:35:8f:f2:26:6f:29:16:91:88:54:73:d9:ef:2f:18:32:94:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 25 17:51:17 2023 GMT
Not After : Apr 23 17:56:17 2024 GMT
Subject: CN=D6434421AEDD79C0126EDC795C53925675B84950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:f8:eb:7b:6d:03:16:87:29:4f:e0:4f:74:
e9:66:7a:a0:cf:81:d9:a9:e3:f0:4a:cd:1f:9d:a2:
13:c5:10:b4:7d:06:5c:6a:f3:68:15:2a:5a:67:58:
3c:b7:00:4b:b9:69:e8:1a:ec:5c:56:e3:13:ae:7e:
6e:47:2c:61:26:f1:8d:da:46:cc:50:0d:58:36:46:
ad:22:43:3f:1a:78:ba:cb:6f:83:9d:8a:b9:5d:dc:
a2:eb:2c:48:b1:b7:e5:ae:dc:8f:0e:fc:8a:77:4b:
00:38:af:ae:51:78:75:3d:00:ff:11:fa:7a:7b:26:
c3:1d:09:bc:cf:5f:e7:8c:e9:95:73:ec:28:ca:d3:
4d:54:fc:d3:72:b8:c3:b8:78:ed:c8:f7:8d:9d:ef:
ac:d8:29:59:39:32:f2:68:a6:93:6c:a1:e5:be:24:
9f:f3:38:bd:ee:e4:4c:16:5b:4e:fe:47:69:cc:e6:
5a:f9:af:57:c9:5b:49:58:63:80:f4:4c:e5:97:8a:
09:14:bb:f5:d2:67:6f:c9:8a:62:5d:32:f1:28:16:
7f:65:9d:3e:af:7c:c4:16:e6:bf:7b:19:f9:ec:8b:
9e:24:b7:16:a8:12:5d:18:20:b9:ac:19:26:ae:09:
17:b4:b2:87:6e:be:f5:7c:69:61:02:4d:12:d5:5f:
4f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:43:44:21:AE:DD:79:C0:12:6E:DC:79:5C:53:92:56:75:B8:49:50
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135352e3133332e31362e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.16.0/23
Signature Algorithm: sha256WithRSAEncryption
50:14:00:8b:c4:2b:f4:69:bd:87:f3:c2:58:39:72:81:97:b5:
d4:e4:f6:e5:60:96:00:96:d9:2a:8b:d3:0a:d8:f6:28:81:23:
31:3d:43:fb:11:94:40:33:54:a0:a0:68:58:db:9a:d5:cf:57:
87:49:24:50:87:90:f7:b5:74:5b:2c:5c:f5:cb:77:1f:1b:92:
8c:07:d2:1e:a3:47:ac:7b:c3:47:33:7a:fb:df:94:f1:ff:fc:
99:13:fc:a5:40:e3:59:d6:2f:da:7b:b8:59:b4:55:6e:3b:ac:
06:3d:3d:f7:d8:d7:c8:02:3b:28:6f:f2:01:cc:0d:c8:72:92:
e3:01:20:a0:50:ac:71:4d:fe:05:06:96:68:dc:85:e9:2c:df:
1f:62:65:3a:b7:d1:54:a8:a1:76:7d:3d:50:a8:7b:28:68:01:
bd:a9:f1:22:60:39:d7:88:bc:ad:00:ed:85:09:9a:80:fd:f7:
22:19:67:94:32:2b:1a:d4:98:37:19:6a:4d:e4:ab:1a:da:ae:
1f:42:8f:69:5e:6a:56:a7:83:f0:6f:42:15:ee:e1:3e:ec:c4:
ad:df:68:bd:37:fb:8f:e5:45:6f:35:c9:ee:7c:61:f5:f6:da:
9b:c4:82:58:17:1a:35:eb:2d:7c:28:5f:52:6a:09:5d:a8:ad:
14:a9:73:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:11 2024 by rpki-client on console-ams.rpki-client.org