Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32332d3234203d3e203432333636.roa
File: 34352e3134312e3132302e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: jjfjWnQEEsBbHrg4ycRxTYNXU5j5CIqaEzC1dUH550s=
Subject key identifier: F5:E0:54:C0:29:F7:BA:24:AD:56:09:1B:C2:BF:FF:A9:46:AF:7B:6B
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 393AEE2FE4DCB7B64CDE03F2F56ABBABB5406EC7
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32332d3234203d3e203432333636.roa
Signing time: Mon 10 Apr 2023 08:18:16 +0000
ROA not before: Mon 10 Apr 2023 08:13:16 +0000
ROA not after: Mon 08 Apr 2024 08:18:16 +0000
asID: 42366
IP address blocks: 45.141.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:3a:ee:2f:e4:dc:b7:b6:4c:de:03:f2:f5:6a:bb:ab:b5:40:6e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Apr 10 08:13:16 2023 GMT
Not After : Apr 8 08:18:16 2024 GMT
Subject: CN=F5E054C029F7BA24AD56091BC2BFFFA946AF7B6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:07:db:0e:a7:12:02:53:83:19:5e:8c:15:
96:ea:63:53:e2:8f:3b:1c:7b:d5:a3:6c:c8:68:a2:
28:eb:16:31:96:81:6c:b7:6e:d2:52:cc:21:2b:e1:
07:d7:f5:fe:07:4f:b2:7a:66:1f:ab:df:75:54:a1:
7b:a9:8f:63:e2:ea:e0:87:08:66:66:14:59:31:f4:
0b:d6:66:f0:aa:5d:2b:87:75:02:6d:39:c7:43:06:
4e:47:2a:ef:98:6a:70:f6:ba:11:a8:5c:b5:a9:87:
11:c0:9d:3b:f5:67:a6:28:71:d9:58:88:7f:32:c7:
c0:fc:5d:b6:fa:e4:0e:da:8b:e3:a2:39:d2:cd:b1:
e9:c3:b5:d0:3d:c4:28:20:fb:fe:46:7b:3c:0f:b9:
20:75:3d:35:eb:23:23:6b:1b:4c:6c:5c:4e:10:ac:
f8:17:9e:19:a1:d0:03:33:d2:2c:21:52:7c:b6:39:
36:13:25:de:63:72:4c:dc:27:d5:17:7e:21:27:23:
ab:cd:06:bd:5d:fc:7d:12:39:3a:7b:5b:eb:af:42:
c8:93:19:9b:8a:68:bf:ff:a7:92:0f:57:9c:61:6d:
97:88:57:5f:15:31:d0:90:fc:ce:78:be:8b:b9:56:
8c:65:66:fe:4a:f4:65:fc:dd:62:6b:d8:ed:de:7e:
dd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E0:54:C0:29:F7:BA:24:AD:56:09:1B:C2:BF:FF:A9:46:AF:7B:6B
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e3134312e3132302e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.120.0/23
Signature Algorithm: sha256WithRSAEncryption
44:0a:e8:4e:ce:9c:a0:75:c6:a0:2e:a8:b5:9b:4c:4b:7b:3d:
14:32:a0:f3:c1:a6:74:36:4e:b2:64:04:6b:b8:12:45:e1:3c:
96:2e:d2:dd:9d:44:03:c9:e6:14:c3:6a:40:b7:6b:b7:8f:f8:
9b:71:38:44:bf:c9:47:a3:91:29:3f:c0:8a:35:e9:41:e2:a2:
3e:05:6a:10:4d:cf:18:d7:ec:c7:93:45:97:bc:36:20:e2:0c:
32:b0:5f:0c:98:a1:96:98:e4:2a:95:a6:eb:0c:38:d4:ac:32:
ad:70:39:e8:8c:9f:42:ec:d7:7a:84:fe:42:6e:1c:1f:ee:a1:
a8:42:af:4b:7c:6f:6d:7f:40:24:2a:0c:21:ec:89:12:03:0b:
69:bd:12:09:dc:67:36:7c:6d:55:e9:d0:6c:84:43:7b:dd:2f:
1b:b6:4c:b0:c1:81:17:24:42:47:0f:5d:70:44:24:e9:26:65:
b7:b4:f5:4a:10:f6:c3:8c:ec:10:92:40:e8:42:19:7e:6c:67:
78:81:43:f3:cd:2b:78:45:07:bd:bd:a4:44:1a:dd:0b:cc:45:
03:f3:0e:b7:78:8d:05:0b:c4:77:7f:01:f5:b3:41:1a:8e:78:
a0:7d:10:bf:1d:7a:53:46:c0:be:98:82:f9:8f:8d:45:5e:64:
be:e9:53:d0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUOTruL+Tct7ZM3gPy9Wq7q7VAbscwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yMzA0MTAwODEzMTZaFw0yNDA0MDgwODE4MTZaMDMxMTAvBgNV
BAMTKEY1RTA1NEMwMjlGN0JBMjRBRDU2MDkxQkMyQkZGRkE5NDZBRjdCNkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxWgfbDqcSAlODGV6MFZbqY1Pi
jzsce9WjbMhooijrFjGWgWy3btJSzCEr4QfX9f4HT7J6Zh+r33VUoXupj2Pi6uCH
CGZmFFkx9AvWZvCqXSuHdQJtOcdDBk5HKu+YanD2uhGoXLWphxHAnTv1Z6YocdlY
iH8yx8D8Xbb65A7ai+OiOdLNsenDtdA9xCgg+/5GezwPuSB1PTXrIyNrG0xsXE4Q
rPgXnhmh0AMz0iwhUny2OTYTJd5jckzcJ9UXfiEnI6vNBr1d/H0SOTp7W+uvQsiT
GZuKaL//p5IPV5xhbZeIV18VMdCQ/M54vou5VoxlZv5K9GX83WJr2O3eft3pAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU9eBUwCn3uiStVgkbwr//qUave2swHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzEzNDMxMmUzMTMy
MzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDMyMzMzNjM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
LY14MA0GCSqGSIb3DQEBCwUAA4IBAQBECuhOzpygdcagLqi1m0xLez0UMqDzwaZ0
Nk6yZARruBJF4TyWLtLdnUQDyeYUw2pAt2u3j/ibcThEv8lHo5EpP8CKNelB4qI+
BWoQTc8Y1+zHk0WXvDYg4gwysF8MmKGWmOQqlabrDDjUrDKtcDnojJ9C7Nd6hP5C
bhwf7qGoQq9LfG9tf0AkKgwh7IkSAwtpvRIJ3Gc2fG1V6dBshEN73S8btkywwYEX
JEJHD11wRCTpJmW3tPVKEPbDjOwQkkDoQhl+bGd4gUPzzSt4RQe9vaREGt0LzEUD
8w63eI0FC8R3fwH1s0EajnigfRC/HXpTRsC+mIL5j41FXmS+6VPQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org