Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32312e302f32342d3234203d3e20323132383738.roa
File: 34352e3134312e32312e302f32342d3234203d3e20323132383738.roa (raw, json)
Hash identifier: auYmAeFPdgeJhizZAbbhh8/tQjrgqZlj/1vD/LN+tY4=
Subject key identifier: 29:EB:D4:09:B1:FB:97:83:65:6C:2A:9B:32:BE:CE:41:05:58:DA:8D
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 4F96439E6EF758DF4FAE7EE2097BD811B5ECA2DC
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32312e302f32342d3234203d3e20323132383738.roa
Signing time: Mon 27 Mar 2023 08:27:35 +0000
ROA not before: Mon 27 Mar 2023 08:22:35 +0000
ROA not after: Mon 25 Mar 2024 08:27:35 +0000
asID: 212878
IP address blocks: 45.141.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:96:43:9e:6e:f7:58:df:4f:ae:7e:e2:09:7b:d8:11:b5:ec:a2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 27 08:22:35 2023 GMT
Not After : Mar 25 08:27:35 2024 GMT
Subject: CN=29EBD409B1FB9783656C2A9B32BECE410558DA8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:27:0c:54:18:47:be:fd:55:6a:59:c8:f1:47:
4f:80:e1:cf:1a:4c:e0:20:84:07:53:ef:cd:e0:34:
8f:c2:8b:1d:ad:02:c9:21:54:03:7b:fd:13:d5:2d:
50:b6:3a:75:be:bc:ee:c6:83:85:b6:b4:03:10:f7:
e4:26:ce:0f:ad:74:ad:e3:cb:7b:d7:85:8d:25:86:
63:0f:8a:b7:95:ad:d8:05:7a:71:cd:a7:be:43:68:
5d:e4:b7:28:8b:da:fe:84:e4:9c:af:42:66:72:06:
f1:78:fa:8b:45:e8:d9:a2:35:42:53:b9:b7:9e:83:
ab:08:22:e3:0c:43:4b:97:7d:7e:d0:99:21:0c:4b:
dc:e5:10:41:04:3e:eb:db:fa:90:8d:67:ec:04:15:
91:38:c1:31:f8:19:ac:05:6f:0b:98:55:55:b6:43:
8f:ea:47:28:98:22:a3:3d:b2:11:e2:9f:df:72:06:
9d:4e:a6:95:63:54:3b:b3:a8:75:c0:7a:76:51:55:
a1:b3:ea:04:5f:7f:ef:85:10:cd:d6:ba:15:9a:c9:
a1:76:a6:76:d7:96:5c:c3:6c:25:12:d8:fc:af:ac:
f3:58:0b:19:04:54:7e:29:44:4a:88:c5:fa:49:cc:
54:76:9d:40:1f:86:ef:54:0b:25:ea:c7:fd:1b:92:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EB:D4:09:B1:FB:97:83:65:6C:2A:9B:32:BE:CE:41:05:58:DA:8D
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32312e302f32342d3234203d3e20323132383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:02:14:76:df:5f:e3:61:94:14:b1:aa:2e:00:16:f9:93:ff:
f2:bd:0e:71:38:56:a7:e3:95:28:4e:18:85:5e:6d:c5:c1:30:
6a:fd:ce:ec:dc:51:18:81:53:04:65:c7:f0:1e:17:44:1f:1c:
a7:ae:d4:75:6c:0f:0c:30:0a:99:4d:24:e7:27:32:4c:14:fc:
8e:dc:ba:c6:d5:81:79:c6:0d:86:85:d5:db:c0:2b:3e:bb:ee:
0d:78:4d:c0:58:7d:6f:01:ab:57:f1:12:4a:3b:b1:bd:92:b3:
2f:c7:6f:46:b8:5e:88:ae:b9:d3:cc:74:d1:0d:59:00:a6:a1:
a2:f8:84:4d:de:00:17:6a:42:95:d6:28:d4:97:e4:c8:92:d8:
21:39:b0:83:6c:20:a2:df:97:f0:e3:6a:b9:d6:f6:5b:eb:3f:
5d:90:67:4c:49:79:b4:5d:11:b7:eb:68:a9:b0:33:cb:96:78:
cc:d3:64:d4:b9:a8:41:7d:a3:76:73:bf:f2:6b:1a:89:93:96:
17:a5:9c:9c:52:f2:97:bb:85:dd:ea:16:14:5f:8e:38:24:8a:
f5:bf:16:a9:97:ba:fd:30:4a:9c:ed:f5:6f:f1:6c:52:d1:cf:
54:c1:48:96:d5:1a:45:ea:c4:c3:98:4f:3a:2b:bf:e9:a2:bc:
95:4b:e6:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org