Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135322e302f32332d3234203d3e2030.roa
File: 34352e31302e3135322e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: uTAtHVp+QVnBbYy02QBODpw5MTWN+G6PWDiakZIC8pc=
Subject key identifier: 91:76:6E:52:4A:66:81:47:0C:7B:FC:0A:79:5A:27:E4:1E:EB:E7:94
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 6C8AEC9CCA11E069B7FA5AAAE73F6F0C27A756B4
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135322e302f32332d3234203d3e2030.roa
Signing time: Mon 27 Mar 2023 08:27:27 +0000
ROA not before: Mon 27 Mar 2023 08:22:27 +0000
ROA not after: Mon 25 Mar 2024 08:27:27 +0000
asID: 0
IP address blocks: 45.10.152.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:8a:ec:9c:ca:11:e0:69:b7:fa:5a:aa:e7:3f:6f:0c:27:a7:56:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 27 08:22:27 2023 GMT
Not After : Mar 25 08:27:27 2024 GMT
Subject: CN=91766E524A6681470C7BFC0A795A27E41EEBE794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:b1:30:20:0f:00:13:83:c3:bf:6b:1b:1b:
30:86:19:fe:ab:24:78:85:91:9b:55:5f:d0:c7:f7:
c7:4e:98:38:aa:b1:52:9e:9a:d2:67:6a:6f:6d:94:
82:ed:f1:df:53:ff:5b:3d:cb:a0:63:6c:1d:f9:51:
6c:8d:77:55:92:5a:60:28:6d:3d:4b:a9:b6:df:b9:
b3:d0:1b:a3:43:98:79:3e:25:50:d7:ba:97:a4:c3:
c0:cd:1f:4f:8f:ea:9e:c9:f2:8a:27:25:29:4c:48:
fb:19:f1:48:39:b1:3f:d8:b2:e2:ec:26:fc:bb:ec:
d5:ab:7e:77:27:61:ed:1b:91:06:ff:4b:a4:3d:16:
97:2c:b3:af:1e:4e:7d:ee:99:e4:bc:00:bf:32:84:
eb:d5:a5:5a:41:6a:d7:66:4e:94:2f:b5:3b:c9:a5:
13:a3:c5:8a:20:08:32:1c:9a:a0:79:36:6e:57:6c:
41:c6:38:03:77:0b:20:af:f2:0f:d8:60:8c:39:b3:
46:14:6c:27:c0:6c:85:a8:b8:9d:32:1d:90:ae:c3:
00:47:d5:db:e9:34:e1:eb:76:26:9a:e0:21:e3:7a:
6d:5c:54:30:0c:9f:bf:c7:05:50:d6:02:c6:e1:4c:
06:1c:43:00:d9:97:1d:92:48:1f:58:f1:72:f5:c3:
b5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:76:6E:52:4A:66:81:47:0C:7B:FC:0A:79:5A:27:E4:1E:EB:E7:94
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135322e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.152.0/23
Signature Algorithm: sha256WithRSAEncryption
52:43:9b:ac:5e:05:0b:af:7a:d8:ef:ec:1d:36:17:4f:59:bc:
6a:f7:c5:42:e9:1f:bb:b7:9a:08:3b:c5:36:53:73:bc:0f:41:
26:76:cf:fe:78:00:8a:e6:47:e0:d4:ca:0b:12:02:1c:c1:41:
8d:c9:bb:8e:04:3b:21:39:66:20:58:8a:f2:6a:9d:33:28:10:
72:e2:18:42:2c:a8:1f:cb:32:6e:cf:21:dd:b4:ae:93:2c:66:
ca:97:5f:ef:18:55:5c:88:bc:c7:07:86:66:b0:6e:48:99:a9:
d8:7f:9b:36:bf:b1:db:40:b4:3c:a0:e3:fe:0c:90:47:62:2e:
4c:9a:e4:90:8b:bb:49:48:11:7c:ce:5b:af:99:1b:38:e0:32:
1a:41:df:3f:9c:f8:d5:cd:ba:da:e6:ec:47:97:b5:fb:04:c8:
1f:64:10:e4:b5:a7:c8:89:63:7a:36:6a:e6:d7:45:39:9b:2b:
31:67:de:a4:b9:fa:bd:e1:3d:b6:83:d8:88:db:b1:1e:0f:7e:
e0:84:52:0c:69:10:90:09:a0:7e:b3:68:b3:02:81:42:9b:25:
6a:73:09:6f:26:cf:3a:f6:a4:6e:49:0a:3e:a0:09:a9:2f:b5:
99:af:82:c4:e5:3a:48:68:06:e6:34:3f:ac:59:8f:f2:2a:54:
17:a9:20:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org