Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
File: 34352e3134312e32302e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: +S45YnhCXVDxU0mEYfU56qX6PAUYUknpyeK5ayDDPBc=
Subject key identifier: 74:06:B8:F1:47:72:8D:B3:AC:7C:AD:B9:EB:F7:73:59:3C:A7:02:3A
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 43C08697C5A6C703E328F7C49FD95DB80C28DC97
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
Signing time: Mon 27 Mar 2023 08:27:33 +0000
ROA not before: Mon 27 Mar 2023 08:22:33 +0000
ROA not after: Mon 25 Mar 2024 08:27:33 +0000
asID: 61317
IP address blocks: 45.141.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:c0:86:97:c5:a6:c7:03:e3:28:f7:c4:9f:d9:5d:b8:0c:28:dc:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 27 08:22:33 2023 GMT
Not After : Mar 25 08:27:33 2024 GMT
Subject: CN=7406B8F147728DB3AC7CADB9EBF773593CA7023A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:5f:72:2d:09:3a:62:be:63:d3:49:41:16:
ed:36:d7:bf:6e:a8:64:e7:a7:8c:e1:c9:82:b3:71:
1e:8a:24:dc:9b:68:8a:f2:f7:5b:eb:a8:20:6c:84:
e0:8c:2d:18:b9:ca:4b:30:34:f7:4f:9e:3e:07:73:
c1:9f:18:ca:2e:60:9e:e4:78:d2:e2:f7:6a:67:7d:
2d:7e:41:b6:56:f3:e5:ac:e5:a7:33:61:d6:e8:b4:
1f:d5:b9:12:7b:d1:c5:e5:00:24:f8:f1:3a:0a:3e:
ec:b7:a9:68:37:3d:a5:f3:2a:89:cf:a3:2e:1a:c8:
8c:89:eb:01:63:d5:62:3b:ad:64:b1:e8:c9:0b:21:
40:d0:b0:95:d2:b0:d0:e2:e2:78:09:44:93:3c:96:
c1:04:85:26:d6:31:b8:7c:2b:5f:0b:e4:2c:67:7f:
41:e0:0e:26:fb:84:e9:82:d7:c6:9a:34:5e:8f:66:
a7:ec:72:b0:1a:be:d4:8c:f7:05:79:de:12:e9:42:
c0:97:ee:22:14:4a:bc:ab:89:37:96:27:d7:8f:16:
8c:c9:1b:a5:ee:4f:19:32:4e:df:0f:98:9a:5f:7b:
ca:d7:6c:87:98:a4:3e:61:75:64:06:69:e7:ac:56:
2e:df:7c:90:d1:e4:8d:ce:4f:4e:da:df:35:99:e0:
04:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:06:B8:F1:47:72:8D:B3:AC:7C:AD:B9:EB:F7:73:59:3C:A7:02:3A
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.20.0/23
Signature Algorithm: sha256WithRSAEncryption
76:d0:f0:a5:81:15:ba:a6:a9:b2:9e:a8:75:c2:66:29:b8:14:
51:9e:c2:51:9f:f7:04:03:ec:07:7e:f4:54:7e:30:da:6c:26:
f8:06:50:c7:18:9f:c9:7e:57:cb:1e:bd:65:7f:5e:21:d5:36:
03:7a:0a:b6:8e:c6:a0:c3:e3:8b:57:eb:e8:80:04:53:80:9d:
3d:80:30:b2:ae:9f:39:53:00:f0:39:dd:37:a4:ac:ee:b3:1c:
9a:07:f7:f3:37:6a:ed:7c:73:77:b5:e3:ab:93:7d:7f:af:06:
c4:4f:c7:3a:f6:44:21:9f:93:13:14:3b:d1:69:c9:04:75:b5:
75:64:05:19:26:ae:74:98:c2:42:1c:48:04:bb:42:0c:12:6a:
6b:12:90:bc:2a:86:ed:66:f5:74:31:27:72:c7:bc:0d:82:61:
60:dd:21:23:a6:af:19:0f:b5:33:e5:f0:51:b1:45:7c:0a:cf:
7e:dc:f6:69:af:4d:16:d9:46:ee:82:77:24:62:31:54:1e:bb:
2b:8b:b9:b5:12:2e:9f:8b:7f:18:41:bf:33:8c:50:d3:8b:98:
08:0f:2e:5d:61:d8:73:dd:74:6d:17:c8:1f:44:30:05:40:30:
4b:93:5a:36:79:b9:e1:6a:48:f5:6f:cc:23:31:e8:8f:e2:33:
41:30:03:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org