Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e203432333636.roa
File: 3135362e36372e39342e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: 8kLkPHl5K38YQEWJWbzijuFkxUOeg+Z2/Plao+F8bB4=
Subject key identifier: 7F:B2:5E:83:E3:0D:4E:AB:DB:35:B0:7A:60:C4:51:0A:54:DA:DC:C7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1DC6718051A95E2F66E0BBBA27128995356DDDDB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e203432333636.roa
Signing time: Tue 25 Apr 2023 17:58:33 +0000
ROA not before: Tue 25 Apr 2023 17:53:33 +0000
ROA not after: Tue 23 Apr 2024 17:58:33 +0000
asID: 42366
IP address blocks: 156.67.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:c6:71:80:51:a9:5e:2f:66:e0:bb:ba:27:12:89:95:35:6d:dd:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 25 17:53:33 2023 GMT
Not After : Apr 23 17:58:33 2024 GMT
Subject: CN=7FB25E83E30D4EABDB35B07A60C4510A54DADCC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:af:91:4e:55:4e:7c:1b:cb:b9:43:ae:7e:e4:
0b:ab:d0:ea:34:93:95:e4:27:0f:63:91:2b:75:ea:
60:97:22:6d:af:7c:c3:6d:87:24:d7:b5:49:90:88:
83:dc:dd:4b:0d:b2:93:7b:c5:f6:fd:f2:51:fb:e8:
ee:b6:9c:b3:5c:49:bb:24:8e:dd:74:c5:32:5e:b5:
28:d6:90:84:e3:23:72:01:18:1b:87:cd:b4:bd:6a:
84:8b:4f:a5:00:91:23:c3:ac:aa:ca:88:90:d5:44:
df:aa:4e:8a:17:fc:f7:c5:b9:4c:71:37:db:07:7d:
0f:04:ac:94:e5:c3:65:cc:11:37:d3:7c:9a:5c:5b:
e6:3b:91:58:d7:d4:fc:bc:2d:e7:b2:76:6c:06:33:
0c:56:f9:d6:27:ef:fd:4c:d8:b7:6a:92:46:5d:d2:
31:5b:18:73:fc:b3:ab:56:9c:db:b4:b9:2d:49:ae:
32:4f:7d:5c:72:50:bf:71:e0:b0:68:b9:e5:73:a6:
b4:97:65:c1:d2:2b:ca:7a:1b:d4:8f:ac:2b:49:8e:
52:14:cb:cd:98:f5:fb:3b:06:d9:6a:d2:73:c8:41:
2f:6f:b5:da:e8:cb:c4:8c:ec:41:2e:b5:a9:72:8d:
49:e5:ef:74:74:bd:ce:4e:3b:af:41:c7:46:43:2b:
c2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B2:5E:83:E3:0D:4E:AB:DB:35:B0:7A:60:C4:51:0A:54:DA:DC:C7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e39342e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.94.0/24
Signature Algorithm: sha256WithRSAEncryption
06:4a:de:7a:86:76:93:3e:fe:1d:f1:81:7e:ec:2b:b8:d6:6b:
e5:c4:fb:4e:b9:2f:0c:af:88:8b:13:78:fe:20:a2:26:91:e8:
11:c6:1a:7d:ec:e5:07:f1:e8:bc:4b:5e:56:c0:68:a8:18:81:
dc:52:ee:cb:3a:0f:eb:6b:2f:5f:c8:29:90:ee:8f:dc:2e:4d:
7a:a4:2c:45:fa:a6:c1:ce:bd:14:82:36:c6:c1:a0:7e:c8:3a:
69:b8:68:96:7f:65:82:a6:a3:50:11:57:cf:a4:4d:63:7c:68:
61:98:8e:c7:1d:d8:7b:cd:1c:19:5c:31:2e:75:eb:91:20:57:
ce:59:2a:8d:08:aa:2f:92:72:00:7b:09:25:d5:97:ed:57:7f:
70:dc:2e:61:76:56:34:11:43:41:38:99:89:b8:3c:65:93:dc:
3c:7f:8b:25:15:52:eb:2d:48:0a:1f:02:07:32:a0:9b:18:bd:
37:b8:97:a4:12:a8:32:6f:4f:d8:33:4f:fa:35:1c:2c:03:21:
64:4e:e1:d8:ff:19:30:bf:80:a9:71:8c:43:38:be:2d:49:bc:
75:41:c2:1a:b3:d0:40:d2:61:79:11:0f:bf:ac:ff:39:1a:30:
69:0d:38:80:4f:01:3a:35:4a:0d:7c:fd:22:1d:86:39:dd:37:
29:48:c1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org