Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31352e302f32342d3234203d3e203432333636.roa
File: 3139342e3134362e31352e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: XKBuDwibGOkA02L7rD4cyGmIwFvOWDMPc3JOH5gUohU=
Subject key identifier: 72:42:D3:3E:3C:5B:E9:36:4D:6F:94:BB:39:82:5C:CB:F3:56:87:10
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 0F459F50ACE6B28D2DF789A4B748C4895AF44632
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31352e302f32342d3234203d3e203432333636.roa
Signing time: Mon 10 Apr 2023 08:18:03 +0000
ROA not before: Mon 10 Apr 2023 08:13:03 +0000
ROA not after: Mon 08 Apr 2024 08:18:03 +0000
asID: 42366
IP address blocks: 194.146.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:45:9f:50:ac:e6:b2:8d:2d:f7:89:a4:b7:48:c4:89:5a:f4:46:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Apr 10 08:13:03 2023 GMT
Not After : Apr 8 08:18:03 2024 GMT
Subject: CN=7242D33E3C5BE9364D6F94BB39825CCBF3568710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:d3:b0:fa:b6:2c:22:f7:b4:b4:d6:af:aa:
55:31:ac:2d:8c:12:05:d0:37:f9:bb:2b:44:17:a0:
18:8e:69:53:69:d0:81:5a:2a:e0:c0:c7:ee:46:2d:
a1:ef:0b:d9:f1:3e:77:a9:51:ce:00:5d:2b:8c:aa:
4c:ed:26:2c:22:ec:e8:d1:5b:f4:62:f2:41:1c:e2:
56:c2:fe:cc:17:45:11:4b:3e:15:ee:ec:01:a9:57:
8b:39:8e:01:da:d2:84:2f:61:63:a8:4f:2c:df:ee:
8c:22:ba:21:c3:1b:52:6e:bc:f2:73:b8:63:35:d1:
1a:ac:26:7f:a8:e6:f6:ef:12:60:d5:8c:ea:52:60:
f5:cc:ba:a0:82:b0:a3:11:57:42:25:b0:81:47:1b:
d7:87:32:97:df:35:32:07:e5:75:e8:a3:8d:d1:98:
56:06:0c:7b:af:81:17:e7:76:57:60:e7:de:3d:94:
bc:41:41:d7:cc:a3:30:1c:c9:3b:95:d1:84:29:e0:
1b:bc:16:40:8d:08:4a:a8:a8:6f:43:47:2a:2d:4e:
4e:0c:37:db:f7:e9:d6:53:af:1d:73:fd:6a:04:f6:
67:6d:ac:bb:11:22:25:ac:07:28:d7:45:9d:4a:5f:
07:1a:2a:fe:c4:32:e4:25:67:1f:12:b2:59:31:5f:
ed:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:D3:3E:3C:5B:E9:36:4D:6F:94:BB:39:82:5C:CB:F3:56:87:10
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31352e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.15.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:98:23:9b:13:d5:2f:5f:75:c9:22:74:ed:05:29:4f:76:81:
e8:af:a8:eb:e7:f3:ad:f7:5e:1c:23:63:c5:a6:55:e2:ee:5e:
a1:41:42:f4:d1:b7:6e:b3:ba:61:8d:02:c0:03:c7:ba:dc:0c:
9a:f9:97:1c:0b:94:82:55:fa:8c:56:48:f2:c9:9e:e7:d6:0e:
e9:f5:ff:42:9b:d5:d5:69:14:ab:e9:e6:10:8b:51:69:78:21:
3c:94:27:95:2f:13:d4:72:09:66:67:b4:c6:65:3a:3c:3b:25:
83:b7:b1:10:7f:ea:09:9f:5e:1e:ab:22:25:d8:fa:f1:90:33:
dd:85:cc:de:41:c8:3f:c1:1e:f4:74:c5:a0:35:ba:6c:05:13:
3c:00:14:89:9b:a0:af:55:f2:84:ec:ea:50:f7:23:b0:98:f3:
15:4c:9d:9b:77:cc:16:ca:c9:90:e9:67:c9:ed:46:42:73:cd:
b8:19:d2:53:06:5c:58:3b:3b:10:86:e3:a0:e3:44:c9:a6:eb:
dc:ab:df:92:e7:52:48:64:de:c1:8c:7d:da:9a:67:3a:44:61:
a5:25:14:3b:d6:79:88:7c:b0:ea:6f:b2:a4:15:49:e0:8d:cf:
ad:bf:62:02:4c:5c:f8:78:dc:cb:9e:cf:c2:21:83:c5:bf:1d:
73:55:c9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org