Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33342e302f32342d3234203d3e203432333636.roa
File: 3137382e3231322e33342e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: 1fPNf0a8rzDur0UAeZQFZ+UNZbryimFT+V1uVE+uj8E=
Subject key identifier: 80:DD:29:A6:BA:89:D3:C3:C3:66:D6:31:2A:46:83:24:91:C5:2D:D6
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 471A11F3E27385C9276EA459EA1A03A268A22354
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33342e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:16:33 +0000
ROA not before: Fri 31 Mar 2023 12:11:33 +0000
ROA not after: Fri 29 Mar 2024 12:16:33 +0000
asID: 42366
IP address blocks: 178.212.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:1a:11:f3:e2:73:85:c9:27:6e:a4:59:ea:1a:03:a2:68:a2:23:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:11:33 2023 GMT
Not After : Mar 29 12:16:33 2024 GMT
Subject: CN=80DD29A6BA89D3C3C366D6312A46832491C52DD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:26:d8:84:04:7e:02:59:e2:96:35:98:05:fa:
78:1c:c3:26:05:cc:8d:55:44:d3:f7:60:81:eb:a7:
92:89:fe:02:1a:44:3d:e7:0e:a5:47:04:1c:19:b8:
08:59:10:09:57:04:96:6f:3b:bd:07:a6:7d:dc:2a:
08:61:e9:d5:4c:0e:94:9f:03:e3:59:d7:ff:35:a7:
21:ca:f5:31:d6:9c:d3:a1:9f:5e:c6:82:39:24:14:
95:46:ab:26:9f:ca:8a:39:9a:cc:0f:fa:16:85:4a:
4c:e0:64:54:49:87:22:cb:01:3e:b3:db:d1:98:b0:
cf:86:5b:48:84:e0:b5:1b:42:e4:1c:b2:ca:e9:33:
cd:2a:c0:95:b0:f6:67:d6:11:08:4d:87:0f:9c:46:
f0:33:58:4b:99:2a:4e:76:bc:a5:c6:6d:8c:e4:11:
ea:7d:e2:e6:67:e8:e5:3d:25:22:17:9d:39:39:e7:
84:82:32:81:00:e7:32:d4:50:9c:fa:ca:1b:31:0b:
88:6f:d3:d3:a2:54:cf:a3:0e:a3:e0:2f:30:e5:cf:
13:8e:8f:c1:e8:59:4b:00:42:c8:37:3d:51:80:32:
39:c1:93:d8:a9:d7:de:be:c4:12:ac:25:90:81:e3:
f5:48:52:f0:1c:e5:8a:4b:dc:f3:c8:cf:68:d0:27:
f4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DD:29:A6:BA:89:D3:C3:C3:66:D6:31:2A:46:83:24:91:C5:2D:D6
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33342e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:73:91:04:7c:b3:6f:1b:36:2c:9b:45:7e:33:82:69:21:0d:
45:d8:6b:e4:52:79:a7:76:a0:29:78:fb:e3:ba:7b:fe:11:e6:
c1:97:e8:43:e2:b2:cc:43:bf:bc:75:84:3a:ab:a7:0e:a6:ea:
2e:6d:c8:af:bf:3d:6c:f7:62:7e:94:35:c2:b4:61:d0:2f:8a:
b8:c1:8a:e2:a1:f4:2d:1b:c4:1a:d9:73:0c:22:49:2b:cf:42:
9b:c6:dc:20:23:f9:dc:1b:1c:19:58:3d:b3:3a:fa:9d:d5:62:
49:27:94:bb:bb:6a:a9:fd:53:7b:c8:a4:75:93:aa:c6:95:3f:
0d:e0:2b:84:79:c4:e3:dc:8e:32:52:9f:6b:0a:8a:92:4c:55:
29:59:91:02:89:ef:d0:dd:e1:9f:f1:f5:9f:58:fe:d9:e9:43:
d4:78:57:dc:33:7e:05:4c:98:a5:23:d4:87:c1:15:b3:4a:78:
2f:70:06:1c:c4:29:40:3b:89:16:76:fb:fa:10:0f:f9:e5:13:
5a:80:8d:5c:4a:0b:46:5c:79:88:5e:5a:92:d1:fd:ff:d2:80:
4f:4e:ce:23:15:ac:98:85:d5:49:c0:64:fc:b6:00:1e:a0:11:
6e:ab:23:66:47:b3:45:db:9d:d2:65:99:5b:3f:d9:75:ee:26:
a2:3a:f9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org