Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e203432333636.roa
File: 3138352e3139332e31382e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: QStsy/VxwB/yGux22v9a/Yb4FG5swMp3umJFzMzgq1o=
Subject key identifier: 70:07:E7:0F:D1:21:FF:3B:B2:5F:F8:18:81:F3:CE:30:F9:70:15:B5
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 5CF240A5DE6969B61D63146B046004EE8D835E7D
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:19:17 +0000
ROA not before: Fri 31 Mar 2023 12:14:17 +0000
ROA not after: Fri 29 Mar 2024 12:19:17 +0000
asID: 42366
IP address blocks: 185.193.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:f2:40:a5:de:69:69:b6:1d:63:14:6b:04:60:04:ee:8d:83:5e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:14:17 2023 GMT
Not After : Mar 29 12:19:17 2024 GMT
Subject: CN=7007E70FD121FF3BB25FF81881F3CE30F97015B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:24:fc:cc:8e:93:b5:2b:76:7c:78:92:b4:36:
08:95:55:c1:0a:ca:e8:35:b4:e0:bd:e4:28:a0:f9:
58:75:48:1c:97:2c:54:6e:ff:13:27:2b:fb:f4:b2:
01:bd:93:d1:81:af:6b:e5:16:40:bd:c4:de:74:7e:
0b:bb:38:a6:fd:4a:be:b5:28:1e:a3:a2:4c:0f:b4:
dc:da:5c:66:35:f5:3a:e6:43:e6:ea:c5:36:20:7d:
d3:60:f5:d5:9c:b8:27:4a:95:63:cf:6d:e2:fc:c9:
e0:d7:18:4a:45:9c:0c:e5:d7:5d:a1:07:fd:e0:01:
9c:fe:4f:7f:3e:b1:bb:b0:28:91:39:3c:34:a5:05:
cb:42:69:34:6f:25:92:1f:5c:20:66:b6:a2:de:ee:
a6:26:49:7e:a0:f6:71:26:33:97:1d:53:bd:25:77:
3e:5d:8c:8c:75:48:bf:fe:c1:be:e1:8a:e3:1f:9e:
52:b6:2b:64:da:7e:d1:4b:6c:39:c0:4b:8b:2c:8e:
a3:74:f0:71:b3:6e:6d:bb:10:e8:a4:bb:1b:20:9a:
79:e9:56:1a:fd:60:bf:4f:0d:4a:ab:bd:5f:84:a9:
ee:2b:6e:03:86:dd:5e:9c:ef:eb:c8:85:eb:22:20:
b8:2a:86:37:b1:6e:c3:2c:30:fb:68:0f:20:42:ee:
2a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:07:E7:0F:D1:21:FF:3B:B2:5F:F8:18:81:F3:CE:30:F9:70:15:B5
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.18.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:23:6a:a4:bc:da:2d:7b:14:b3:c2:6b:93:58:b5:b3:ae:20:
d0:c2:02:fd:05:cf:df:c7:da:72:28:62:67:3d:93:6c:64:18:
4a:31:40:e1:1a:65:ab:e0:5a:94:c6:b9:09:28:fe:e9:fd:f0:
b9:19:95:e3:c9:95:2d:ef:a2:b5:cf:82:da:89:da:3b:17:71:
b9:5b:64:30:a7:36:98:ee:c2:87:20:77:08:8b:29:87:5b:2a:
0b:70:a4:30:4d:76:07:27:e9:cb:59:0d:8a:60:ef:79:80:6c:
0b:39:67:12:5f:47:27:2c:42:3e:c8:4b:8d:a0:81:5a:e0:69:
59:af:66:40:1b:66:89:b9:a5:24:f4:ad:bf:5e:c0:6b:2c:95:
21:f1:41:2a:f4:ae:e7:96:ae:ee:ff:50:a7:df:a6:60:09:13:
8a:f5:0e:50:c4:cc:40:63:a6:9a:fb:4f:16:49:09:d4:85:6a:
e6:c0:b6:9b:2f:e8:c8:66:40:21:73:d1:81:7a:2a:4e:50:28:
0a:21:7f:8d:00:a3:b6:eb:d5:b2:a8:41:5e:df:2b:c0:d7:a9:
11:a4:50:11:7c:d8:74:7a:52:d8:74:31:9f:87:9c:66:d2:e8:
bf:f5:57:59:dd:a5:ff:55:e4:be:b2:e4:fc:35:84:37:8e:28:
52:a0:4a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org