Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3233322e302f32322d3232203d3e20323131333936.roa
File: 3139352e3137392e3233322e302f32322d3232203d3e20323131333936.roa (raw, json)
Hash identifier: e5dCPq8KgdvrUUXMMhNm51taR4aSwTDZt/HB15Mevs4=
Subject key identifier: 45:E2:35:A8:5C:F8:E6:20:9E:B6:66:38:8C:F8:EF:A1:BF:1F:C0:57
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 19186E7FAC5B4B3285D534E3663480C2C805C7AF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3233322e302f32322d3232203d3e20323131333936.roa
Signing time: Mon 27 Mar 2023 08:28:53 +0000
ROA not before: Mon 27 Mar 2023 08:23:53 +0000
ROA not after: Mon 25 Mar 2024 08:28:53 +0000
asID: 211396
IP address blocks: 195.179.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:18:6e:7f:ac:5b:4b:32:85:d5:34:e3:66:34:80:c2:c8:05:c7:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 27 08:23:53 2023 GMT
Not After : Mar 25 08:28:53 2024 GMT
Subject: CN=45E235A85CF8E6209EB666388CF8EFA1BF1FC057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:91:e0:ed:b3:69:67:c7:78:a2:bf:e4:15:1e:
45:5b:ad:19:8d:fd:18:b2:a9:11:da:01:02:3f:fb:
25:21:80:07:bc:6c:39:66:b1:29:7d:15:84:1b:25:
19:42:c6:46:37:4c:d2:fc:a1:87:dd:30:31:c6:f4:
41:0b:54:f2:6f:02:a0:f4:a3:f0:63:53:3e:f6:16:
fd:74:55:81:fb:71:56:7e:fb:ae:cf:9c:36:f4:1b:
f5:85:96:f3:52:89:9e:42:13:3f:d4:22:3e:1e:e4:
b6:b7:52:20:4c:4f:8e:fb:33:3d:d8:ea:e3:b2:5b:
82:c3:8c:37:75:86:ca:90:65:a3:10:48:a1:fb:c0:
99:ee:b1:11:57:20:c6:67:27:46:14:ff:9c:66:52:
11:19:45:63:69:1c:ea:d7:0e:1c:44:ae:96:06:35:
b2:d8:fa:61:a8:03:79:11:02:09:09:2b:b9:ff:70:
95:b3:23:d3:5a:b9:c0:fe:5b:bd:91:3d:a1:d5:11:
2d:d4:66:36:c4:0d:57:03:28:17:ef:56:7d:dc:9b:
c2:53:b2:54:e4:0c:a8:c8:64:f0:b9:0a:72:8e:8c:
10:33:7a:f6:95:a5:8b:a5:6f:39:6c:26:a4:49:a1:
d9:83:28:cf:bf:2b:84:d5:92:8a:a6:8c:a3:f5:10:
d8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E2:35:A8:5C:F8:E6:20:9E:B6:66:38:8C:F8:EF:A1:BF:1F:C0:57
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3139352e3137392e3233322e302f32322d3232203d3e20323131333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.179.232.0/22
Signature Algorithm: sha256WithRSAEncryption
90:ae:88:18:d8:69:88:85:28:4c:dd:23:f2:b3:38:67:27:a7:
95:75:c8:37:ad:ae:8d:8c:fc:45:df:3f:7f:b8:ad:a4:d9:f7:
7c:4a:1b:de:70:5c:2d:39:a7:bc:9f:23:1b:9a:7f:3a:b8:2d:
dd:21:77:38:d6:2a:33:b3:2f:bb:88:bb:e4:d5:cf:0a:9f:c4:
f4:18:e5:8d:55:45:8a:83:1a:32:4b:08:07:8e:ee:4a:06:ab:
37:ed:e2:4e:e1:93:11:13:b1:dc:31:67:26:57:0f:18:97:40:
b0:4f:62:0c:46:6f:42:ae:73:1c:d2:54:7b:11:80:bf:3c:67:
90:9c:78:ea:ce:d8:6f:4a:16:f0:15:50:0f:3d:07:ab:fe:a8:
82:9a:60:ea:bb:52:ae:2f:af:0d:7b:a0:b8:9d:d2:da:41:7b:
1e:58:da:40:45:a1:d0:fe:00:da:89:5a:90:06:54:9b:f4:d5:
26:77:e9:65:23:90:c8:5b:f0:cf:a9:32:36:91:8f:b5:a2:7a:
62:c9:b8:e9:da:4d:a1:31:de:40:ab:e4:5c:7f:f8:7f:2c:5c:
a2:e0:3f:cc:0e:ed:b6:14:4f:49:4d:9c:f1:bc:e6:8b:ec:03:
4e:0f:35:01:b3:f5:61:4c:d4:17:8b:ad:92:66:44:f6:69:4e:
dc:e2:99:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org