Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3135362e3232342e302f32332d3234203d3e203432333636.roa
File: 3139342e3135362e3232342e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: M3tlueH5pBGv+Gt4fxD/JXo/QcLCWm+SolE7fGEUjrs=
Subject key identifier: 4C:A1:35:2D:BF:D3:AE:28:AF:32:B9:4E:22:3E:C6:43:23:07:F6:AF
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 023F4049655BD5DB37C5EC60DAA4D1EBF00E643B
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3135362e3232342e302f32332d3234203d3e203432333636.roa
Signing time: Mon 10 Apr 2023 08:19:18 +0000
ROA not before: Mon 10 Apr 2023 08:14:18 +0000
ROA not after: Mon 08 Apr 2024 08:19:18 +0000
asID: 42366
IP address blocks: 194.156.224.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:3f:40:49:65:5b:d5:db:37:c5:ec:60:da:a4:d1:eb:f0:0e:64:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Apr 10 08:14:18 2023 GMT
Not After : Apr 8 08:19:18 2024 GMT
Subject: CN=4CA1352DBFD3AE28AF32B94E223EC6432307F6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:85:b3:6c:92:0d:66:03:dd:e8:ac:83:a8:
21:31:7a:f6:b9:46:85:de:3a:ba:e8:b4:bf:d7:d1:
e2:6d:74:51:81:66:8b:bc:9f:a6:ce:9a:3f:5a:97:
6f:f3:3a:2d:fa:6e:70:8c:67:d0:72:8e:aa:40:c3:
65:28:39:2b:c4:51:54:09:3e:a3:e7:b0:32:fd:68:
31:48:81:68:d5:20:ae:b8:35:a6:59:31:28:b9:a7:
2c:5a:68:97:13:03:b4:9c:2f:a2:4b:27:91:58:cf:
4c:a2:a6:82:d1:f2:f0:69:a7:02:19:56:36:38:4e:
e0:7f:62:c5:5c:42:58:ce:00:a0:f8:8a:a9:d4:fa:
d0:87:6f:31:c7:21:1d:e2:57:ac:09:51:2b:21:d8:
4d:66:6a:15:72:e9:eb:c1:66:f0:5d:52:f3:02:e0:
25:06:1d:ce:b2:ce:a4:8e:9d:ca:88:ac:a2:90:da:
2c:b7:de:06:83:db:1f:7e:52:58:9b:77:05:2a:a8:
32:c3:83:32:56:30:3a:3f:20:41:f3:ad:2b:e5:03:
5f:4d:cf:3c:1b:9e:08:a0:9f:9c:b1:96:78:5b:24:
86:e1:35:bb:fd:d9:e6:16:97:25:9f:72:86:61:9c:
c2:cb:af:69:a3:ab:6b:8b:60:99:41:7e:b3:e3:c7:
0f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A1:35:2D:BF:D3:AE:28:AF:32:B9:4E:22:3E:C6:43:23:07:F6:AF
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3135362e3232342e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.224.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:90:ff:30:2f:0f:6d:26:9d:76:2e:74:d2:d3:88:87:9e:26:
2f:a5:4b:ab:99:70:d8:9f:91:a0:ab:9b:d9:02:b6:3a:d1:93:
bd:2e:4b:a6:0b:a4:77:f2:08:39:7c:ac:2f:cd:7f:1b:67:be:
3a:d8:e3:f3:9d:8a:d6:27:26:d4:7c:0c:2b:39:57:b0:d5:54:
dd:72:8f:47:a8:90:14:08:05:57:a1:e7:92:4a:4b:07:6d:97:
28:f8:eb:a7:57:81:bb:99:27:64:47:8f:b5:bb:58:4e:78:96:
f3:a4:4a:2a:b7:9a:b3:dd:ec:ac:9f:60:ca:26:7e:9e:e6:87:
69:b5:28:67:9c:2b:09:65:75:91:fe:5d:40:a8:4e:fa:36:c8:
3d:f5:2a:06:ce:a8:9e:19:b3:d7:d5:aa:51:7d:07:90:5a:18:
b2:30:74:37:db:05:9a:d6:cb:45:ef:e0:20:99:f4:3e:b0:94:
b3:15:c9:01:e9:b6:c3:2a:fb:90:9c:4e:3a:10:4d:19:e3:dd:
3f:a8:16:41:46:aa:fc:bc:60:25:bf:19:29:07:44:35:23:cc:
c8:f5:df:76:1f:55:fd:0c:5b:e5:d1:fb:2f:5e:a3:d1:fb:89:
2a:b5:1b:dd:1e:68:20:77:f6:3e:ca:c0:95:30:21:1a:1b:d2:
ee:6c:a4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org