Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132362e302f32332d3234203d3e203432333636.roa
File: 3135362e36372e3132362e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: otA+v1MCK0NSJ3TIAxKF9wZ8YYP/gwNPaRgQEOpCx5k=
Subject key identifier: 62:8D:2B:F7:32:94:D2:EF:88:BA:22:A3:2D:3F:CC:A8:72:F1:A5:C7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 46F3FB67BC2B5DEF59F436936F32A3086DC1B760
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132362e302f32332d3234203d3e203432333636.roa
Signing time: Tue 25 Apr 2023 17:58:59 +0000
ROA not before: Tue 25 Apr 2023 17:53:59 +0000
ROA not after: Tue 23 Apr 2024 17:58:59 +0000
asID: 42366
IP address blocks: 156.67.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:f3:fb:67:bc:2b:5d:ef:59:f4:36:93:6f:32:a3:08:6d:c1:b7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 25 17:53:59 2023 GMT
Not After : Apr 23 17:58:59 2024 GMT
Subject: CN=628D2BF73294D2EF88BA22A32D3FCCA872F1A5C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:af:ac:d4:26:63:b7:bb:e9:32:96:19:46:11:
e5:a2:15:b8:da:15:be:62:e0:6e:1d:c2:fd:68:c5:
6e:30:98:08:84:0f:2f:71:fb:b7:a1:e2:e6:55:0a:
66:c7:de:66:35:6e:ae:7d:21:26:e4:53:ff:e6:24:
29:d4:07:68:a3:48:96:f1:05:22:53:58:23:5b:dd:
54:2d:67:7f:a1:ef:f2:5a:72:50:d5:9f:fc:61:98:
d6:27:6a:ec:ae:07:5c:bf:26:4e:67:34:a4:23:09:
7c:c7:6c:16:d2:2d:05:9a:8c:05:99:08:97:92:25:
3e:65:e3:2f:d5:75:b8:f6:c6:68:2b:12:81:04:55:
7d:47:37:8c:86:8d:06:ec:2b:34:19:77:42:a8:c6:
44:04:06:c9:9b:46:cb:9e:9d:2c:70:d2:7b:14:5e:
c0:dc:d0:c7:04:d7:df:23:f3:55:86:56:30:35:a6:
d6:a4:41:7c:ac:f6:4e:2b:2c:63:26:42:00:b4:a6:
db:7c:b4:a2:52:c2:bc:70:40:96:06:2d:7a:a3:6b:
54:14:e4:48:e4:34:ea:69:1c:c0:d3:d9:0a:4e:77:
74:e8:17:9d:4a:79:62:04:05:9d:68:9a:cc:c4:6f:
31:76:6e:01:cb:be:47:45:2a:c8:9d:44:8c:74:84:
22:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8D:2B:F7:32:94:D2:EF:88:BA:22:A3:2D:3F:CC:A8:72:F1:A5:C7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e3132362e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.126.0/23
Signature Algorithm: sha256WithRSAEncryption
85:43:0f:91:5c:0e:7e:3c:b0:84:34:fe:6a:61:79:de:f9:60:
c0:45:65:eb:91:93:c6:8b:c8:80:e2:dc:38:62:2d:63:b2:9a:
30:c6:63:f6:d8:25:64:19:57:54:ed:ca:af:9a:51:85:7f:a0:
8e:8e:a3:eb:c0:ef:33:20:75:1c:1b:cb:02:d6:f3:52:e6:88:
14:84:77:ef:d5:d6:5c:3f:67:0c:bd:dc:be:25:86:9c:44:c9:
e1:ba:59:dc:b6:6b:cb:00:01:0b:4c:93:46:99:78:43:f3:59:
e6:32:cd:f5:8a:ec:a2:28:c9:8e:27:39:10:90:e8:82:70:2d:
4d:0d:4e:7d:8d:92:01:00:5f:18:af:c8:fc:d2:3f:e6:29:1e:
06:bd:5c:27:7c:ed:97:71:16:90:6d:09:12:82:7d:2a:19:2e:
2c:51:2b:dd:fd:b4:4f:1a:91:d0:80:06:ab:d9:d9:5d:02:7f:
5d:7d:7a:58:c2:66:a7:8f:a4:54:0c:dc:45:bd:a5:d9:69:d0:
e8:c4:20:d0:eb:5f:06:4d:cd:b0:1c:29:71:6a:d4:88:88:57:
8f:21:d0:1f:dc:f8:d1:1e:62:0e:26:87:f7:6c:40:45:a6:3d:
14:4b:25:e3:e4:09:d2:1f:e1:6b:61:b9:bc:3c:00:02:d4:9f:
9b:c8:51:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org