Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135352e302f32342d3234203d3e2030.roa
File: 34352e31302e3135352e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: XGMLXFIZ3DQDR0ZsxF+FIRL4ht7ix0JqVYL0jweJ6ws=
Subject key identifier: 5B:36:D2:C0:5C:73:A8:78:AA:BE:7F:0B:1C:BC:EC:F3:73:FA:8C:69
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 5523BC8B1F54A9885395B21FA4BC606A8DFCAC9F
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135352e302f32342d3234203d3e2030.roa
Signing time: Mon 27 Mar 2023 08:27:34 +0000
ROA not before: Mon 27 Mar 2023 08:22:34 +0000
ROA not after: Mon 25 Mar 2024 08:27:34 +0000
asID: 0
IP address blocks: 45.10.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:23:bc:8b:1f:54:a9:88:53:95:b2:1f:a4:bc:60:6a:8d:fc:ac:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 27 08:22:34 2023 GMT
Not After : Mar 25 08:27:34 2024 GMT
Subject: CN=5B36D2C05C73A878AABE7F0B1CBCECF373FA8C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:fc:f1:96:f7:e5:79:c8:f7:df:79:9e:b9:
12:d5:29:ca:83:14:cf:24:ee:05:6f:3b:43:64:60:
af:1b:03:08:5c:f6:aa:54:79:5d:70:1f:e2:b5:d7:
65:56:4e:cc:70:bd:7c:d9:3c:9b:25:49:9f:d8:cb:
9a:71:62:7a:76:59:e4:ad:fd:c8:a3:83:a9:4c:f3:
77:fd:c9:46:fd:e9:00:01:08:70:1c:4d:a1:31:81:
30:64:9e:be:08:2d:94:2c:9d:2a:c8:4e:3f:f1:c7:
e9:8a:c4:df:04:f0:39:15:90:1c:22:ae:f2:1c:42:
cb:66:dc:7a:72:80:09:48:fb:d6:91:b7:48:75:11:
8c:b3:bd:d8:cc:f7:33:19:ae:9a:43:74:55:2c:15:
42:fc:c4:ac:1f:dc:a0:26:38:06:64:d4:2d:2b:12:
4d:88:10:71:9e:e6:bc:6f:25:24:0b:fe:a9:8c:5e:
71:62:95:2b:24:9d:20:cb:1a:ac:3c:54:1e:92:3a:
3f:d6:a8:70:92:47:98:10:a1:54:c9:86:6a:45:41:
a7:c6:78:c1:8f:f6:0d:91:b4:a7:62:10:1a:3f:59:
40:64:22:df:ef:8e:f8:93:70:a1:e5:da:9e:8b:5c:
d0:85:64:10:6f:76:bf:84:d3:15:14:3f:93:26:fa:
73:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:36:D2:C0:5C:73:A8:78:AA:BE:7F:0B:1C:BC:EC:F3:73:FA:8C:69
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31302e3135352e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.155.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:7e:76:b8:01:c0:a0:85:3d:54:78:09:75:ac:14:20:ec:93:
dd:6a:07:bb:f4:71:be:07:1a:8c:9b:74:4a:2f:60:f3:91:43:
01:d4:1f:83:e2:2e:3b:24:a6:4a:41:11:0a:ac:64:bc:db:79:
29:47:88:a8:11:7b:fe:22:e0:fc:17:79:28:3c:e5:28:4a:f0:
5d:76:8c:9b:76:e7:6b:0a:42:67:ae:dc:b1:80:ac:6e:ce:55:
11:7e:bf:06:4c:47:42:c8:ff:98:2e:87:8a:0b:45:40:99:be:
89:5f:b8:9f:97:d3:e8:96:db:60:48:3a:ad:b0:f0:de:d5:41:
4c:08:38:7f:8c:8f:01:97:99:c2:a7:89:db:6b:16:96:2f:0e:
b0:be:2b:58:23:00:c3:8a:f2:04:30:a8:5f:43:6f:88:1f:60:
ab:be:a3:b4:98:0c:7f:13:4c:83:66:2c:aa:74:1b:aa:f7:46:
76:04:6d:23:1d:4c:e7:2b:8d:6a:7b:0c:4a:3f:47:c6:79:1f:
59:ee:6d:44:4e:90:61:45:b9:0f:39:69:fc:94:0e:4f:57:04:
11:7b:2f:9d:bd:a4:be:9b:bd:ba:0f:c4:bc:06:b6:d9:6f:19:
fd:8d:47:c7:3d:35:cc:82:a0:e3:91:64:0f:e1:37:92:cf:c9:
aa:f6:2d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org