Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e203630303638.roa
File: 3137382e3133322e3130372e302f32342d3234203d3e203630303638.roa (raw, json)
Hash identifier: JpQ6b6uqV8mbiQ3+Cp3hFAVPow0haf2q0Q/UUlVPDDs=
Subject key identifier: B9:53:85:A9:7D:DF:54:19:B2:ED:F5:7D:4F:A8:EE:28:EC:C2:70:5F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 50E619F8DDB54682C1675384F65E29785030FDE2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e203630303638.roa
Signing time: Mon 01 May 2023 13:18:13 +0000
ROA not before: Mon 01 May 2023 13:13:13 +0000
ROA not after: Mon 29 Apr 2024 13:18:13 +0000
asID: 60068
IP address blocks: 178.132.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:e6:19:f8:dd:b5:46:82:c1:67:53:84:f6:5e:29:78:50:30:fd:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 1 13:13:13 2023 GMT
Not After : Apr 29 13:18:13 2024 GMT
Subject: CN=B95385A97DDF5419B2EDF57D4FA8EE28ECC2705F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2d:aa:5e:02:d1:7c:c9:f9:17:ef:d9:19:07:
30:3c:7a:a7:8a:42:8c:e5:d8:3b:08:73:39:6f:d3:
78:80:60:a2:f5:ab:0b:87:a7:bc:9b:ca:d3:02:33:
fd:91:0d:1d:a2:89:22:dc:b3:e9:fc:97:5f:9e:e7:
dc:65:65:fe:7a:75:8f:3f:ab:f4:ae:68:48:61:ee:
94:b0:36:a9:26:3d:24:79:e3:63:49:12:5f:cb:4b:
8c:71:be:79:ab:4f:4f:74:51:9c:a9:70:21:13:2d:
7c:46:9e:c5:27:ba:f9:bc:ab:fc:4f:3d:74:77:e5:
68:3a:26:23:45:4c:55:d1:d8:6a:27:b6:eb:ad:fc:
eb:a0:15:b9:19:12:93:8e:cd:54:42:2c:cd:cf:3b:
79:b3:ec:0a:37:5c:b0:32:9f:f0:1c:d6:e3:80:4f:
8e:09:8d:2d:b4:aa:41:ff:70:df:cd:1c:38:9a:a1:
42:59:8c:e8:a2:c7:bc:7f:a5:02:ad:dd:b5:96:6a:
5b:31:07:c3:3b:94:a3:c9:f6:05:43:07:4b:79:1c:
5a:bc:7d:19:b8:d5:2b:5f:97:7d:6d:b9:24:e7:87:
8e:46:50:c3:92:29:61:da:c0:46:44:44:f4:79:6c:
02:da:f2:de:32:f4:38:6b:f3:6b:ad:ed:05:16:32:
44:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:53:85:A9:7D:DF:54:19:B2:ED:F5:7D:4F:A8:EE:28:EC:C2:70:5F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e3133322e3130372e302f32342d3234203d3e203630303638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.107.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ca:b2:18:0f:cc:fe:8f:09:52:d9:5a:a3:62:e0:23:4c:fc:
10:5d:42:dd:50:96:eb:6a:70:88:9f:8e:d1:20:ee:f2:27:61:
7e:fa:e3:47:20:79:cc:98:ad:47:91:8e:c2:a9:f6:eb:ec:9b:
07:b5:39:21:8c:8d:34:dc:96:d5:02:85:87:ba:64:65:18:a0:
7f:f3:2d:ce:0c:3c:10:70:dc:7a:09:6d:ff:68:de:4c:d1:1b:
f4:f5:e5:be:57:6d:f6:5a:11:7b:61:db:e6:dc:a8:84:17:bf:
aa:71:f7:a8:1f:51:de:3d:6c:cb:f1:6f:cb:85:f2:e6:5f:03:
db:a2:c8:76:60:c9:5d:c1:b6:d4:c9:35:9b:06:20:0a:1c:a7:
aa:52:17:94:b9:35:85:bc:8f:50:2e:84:14:4c:e9:72:ae:5c:
c5:57:8c:ba:1a:82:53:db:f7:fb:33:ce:59:2f:2c:b1:b5:71:
ae:8e:48:4e:e3:6c:42:bb:7b:ea:49:61:53:7f:66:56:21:5f:
1c:77:a6:6d:b5:fd:af:a9:26:eb:6d:e3:ff:b8:6a:f5:aa:7b:
b0:32:82:45:b5:f2:04:c7:3f:8f:98:43:1f:42:ed:75:41:e4:
79:c3:82:00:f0:f0:ad:1d:79:e2:b1:24:e7:a6:ae:f1:fc:0b:
d6:8a:e7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org