Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230322e302f32342d3234203d3e203631333137.roa
File: 3138352e3231362e3230322e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: DtzandkgXPHS1/REf0sCYwQIX9dr68rBXgwXj+0HsXo=
Subject key identifier: 22:A7:89:60:AB:8B:EF:A1:F0:DD:05:86:C6:3A:C5:12:5E:49:EF:16
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5F978798E64CFA034B728F26A5455941FEBFB445
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230322e302f32342d3234203d3e203631333137.roa
Signing time: Mon 27 Mar 2023 08:28:59 +0000
ROA not before: Mon 27 Mar 2023 08:23:59 +0000
ROA not after: Mon 25 Mar 2024 08:28:59 +0000
asID: 61317
IP address blocks: 185.216.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:97:87:98:e6:4c:fa:03:4b:72:8f:26:a5:45:59:41:fe:bf:b4:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 27 08:23:59 2023 GMT
Not After : Mar 25 08:28:59 2024 GMT
Subject: CN=22A78960AB8BEFA1F0DD0586C63AC5125E49EF16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:46:3d:80:b7:41:93:d2:4e:5b:34:d3:41:c0:
60:4c:f2:f4:cf:a2:2d:7d:a6:df:22:36:a0:c1:03:
a7:cd:90:d6:8b:66:bc:ce:6d:1d:df:03:b2:a4:d4:
e6:80:c7:ea:91:a9:8d:5c:97:8a:66:ca:56:d4:7d:
c3:45:d9:63:0a:c7:b4:0d:f6:fb:10:27:c4:ba:29:
4c:97:41:c4:8e:db:b3:5d:c0:83:cf:28:6c:64:23:
0d:c4:fd:d9:04:56:0d:b8:5b:95:54:b2:b2:71:2b:
dd:65:bc:25:b3:85:c1:d9:38:2b:62:02:6f:99:c8:
8e:66:23:11:ec:a3:b4:f0:96:75:12:aa:56:ea:76:
e2:60:67:1d:7c:35:1e:c5:1c:32:3e:82:64:68:5d:
bd:65:60:b3:12:3d:df:3d:97:45:6b:34:f4:9b:dd:
5a:21:c8:99:14:76:6b:ba:56:f0:2c:0b:9d:a6:98:
00:3d:95:76:fb:ac:df:2b:3a:c9:6b:2c:ab:6f:e8:
4a:fe:14:57:b7:66:83:12:6d:c9:48:92:af:bc:5b:
03:7a:fb:83:bf:9d:07:91:89:48:a6:f0:73:e9:0f:
76:72:ab:e3:6a:35:40:b3:ca:60:2b:2a:51:44:a5:
57:07:f8:3d:db:74:59:18:7c:dd:6e:d1:42:09:7c:
36:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A7:89:60:AB:8B:EF:A1:F0:DD:05:86:C6:3A:C5:12:5E:49:EF:16
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e3230322e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.202.0/24
Signature Algorithm: sha256WithRSAEncryption
90:7b:8c:ac:e5:36:63:b7:28:22:27:5b:64:d5:7d:92:97:0b:
0d:fe:b7:31:fe:87:83:42:48:0b:41:33:92:f4:d3:41:80:0f:
93:5f:fc:88:67:73:cb:af:b6:cd:4c:38:16:24:3b:dc:30:a4:
ca:27:a2:20:d1:53:6b:10:d4:0a:f5:f4:e6:fa:52:5f:9b:ec:
67:90:0e:0f:cf:7f:2c:d0:25:e4:dd:71:de:50:3e:98:a5:da:
6d:fc:23:cb:07:f2:a1:89:0f:4d:bb:a0:d5:95:ac:41:5d:97:
11:22:12:e2:b5:69:67:89:9a:44:10:c9:20:76:23:a2:96:cd:
4d:e7:82:d3:fb:7b:11:5a:95:e6:a3:76:e7:00:55:5a:32:f1:
bc:2c:2e:f5:97:ae:f7:dc:d1:3f:9d:13:d9:b3:db:ef:fd:c5:
84:0a:c4:d6:20:cb:d2:06:21:2e:c4:b8:f7:bc:70:f2:13:76:
02:f6:41:43:a3:ea:bd:2a:ab:e5:88:91:ba:0c:37:12:dc:50:
97:16:e3:1d:be:58:04:f9:ec:c4:7c:03:4e:6e:a1:b9:8c:6e:
3d:bb:57:92:23:ad:9c:ab:e8:dc:43:a1:5b:19:6e:c7:90:ce:
b7:5e:6a:11:21:11:8d:63:02:92:93:4b:fe:74:b3:95:e4:35:
a4:5e:f6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:12 2024 by rpki-client on console-ams.rpki-client.org