Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139322e3134352e33362e302f32342d3234203d3e203432333636.roa
File: 3139322e3134352e33362e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: AHBoPRtpTJk/6bSEqWCTznVmbqpyP3lQOCzVhY+17tg=
Subject key identifier: 9A:11:B7:E2:06:6A:14:E8:67:A8:1B:EA:9B:E0:A8:71:BB:7B:31:4C
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 07398EC9C610700BB98F3C97BBF47805BE08179B
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139322e3134352e33362e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:18:58 +0000
ROA not before: Fri 31 Mar 2023 12:13:58 +0000
ROA not after: Fri 29 Mar 2024 12:18:58 +0000
asID: 42366
IP address blocks: 192.145.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:39:8e:c9:c6:10:70:0b:b9:8f:3c:97:bb:f4:78:05:be:08:17:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:13:58 2023 GMT
Not After : Mar 29 12:18:58 2024 GMT
Subject: CN=9A11B7E2066A14E867A81BEA9BE0A871BB7B314C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:84:c2:e0:4e:d9:4b:83:f0:63:e0:3a:d6:
9f:32:f6:ee:36:17:83:5b:2b:b0:68:98:13:a4:63:
f5:eb:13:98:9e:06:b0:e3:0b:35:79:23:15:8f:03:
63:2e:f7:bf:52:16:8c:5d:b3:6a:48:4b:dd:8d:61:
c9:8a:71:3f:ad:18:c1:c5:ef:12:21:d8:9b:a0:b6:
54:1f:88:d4:ca:78:d8:3a:e4:d6:ce:28:38:20:f9:
f4:41:d7:12:49:87:68:8d:6e:7a:4b:7b:45:d1:db:
ff:57:ca:81:5f:ed:78:47:85:99:2b:0b:70:19:8b:
1f:4b:79:be:46:e6:91:c2:ac:b2:cd:46:03:89:f3:
5a:55:5a:be:85:b0:9b:33:0b:b3:02:35:79:e2:1a:
59:e8:e4:9b:90:78:bd:d4:c7:ce:37:7a:db:c6:48:
ac:e1:cd:56:c7:9c:74:2a:fa:08:99:34:1d:e4:49:
09:89:23:80:da:b0:e2:78:77:cf:34:f4:c0:65:f8:
ac:f6:e8:36:d4:3d:81:54:38:a2:5f:c9:db:63:57:
98:8e:e3:9f:ae:1b:aa:f1:7b:99:4c:34:b6:73:9c:
e3:73:d2:84:15:c8:fb:8b:5b:95:9c:0c:8e:0f:a0:
30:b4:98:1f:0c:e9:c8:ee:bc:5b:9f:e2:d3:b6:56:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:11:B7:E2:06:6A:14:E8:67:A8:1B:EA:9B:E0:A8:71:BB:7B:31:4C
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139322e3134352e33362e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.36.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:d1:94:4e:5e:b2:71:07:c4:88:73:27:6c:f4:3d:3e:47:0d:
b4:f1:09:5e:85:0f:80:f9:a8:6b:aa:58:f2:87:5c:9f:46:91:
f6:54:72:fe:26:06:d7:c0:54:9e:9e:bd:fe:9e:36:1c:f2:7f:
02:5d:b6:fa:80:fb:b2:a3:1a:de:bf:1a:76:be:24:a6:86:ba:
3d:5f:49:af:f3:07:2a:49:58:db:60:d6:ca:c6:85:e1:f8:ea:
22:8e:d6:d3:4d:62:17:9d:f3:a1:2b:6c:e9:5c:c4:7b:15:c6:
4c:47:6b:42:59:88:08:e2:e6:b4:c9:70:b4:9b:a1:9c:8e:82:
2b:34:49:bd:8f:3b:61:85:3c:da:cb:d9:f1:06:65:c9:3e:3b:
4e:22:76:bc:ac:bb:7a:a5:31:e7:c4:2f:2a:d6:05:2a:e7:87:
85:a9:2f:a1:6e:ce:8c:ae:1e:dc:be:1d:5e:e4:9a:5c:c2:91:
ce:b0:3a:bf:86:76:c2:d4:e8:4a:ac:c8:32:99:40:e8:27:64:
f9:e9:d3:a0:80:2f:ee:45:d9:75:b8:0c:e2:c7:15:4d:4f:45:
d7:31:65:af:d4:02:79:8a:53:c5:4b:af:93:13:6f:48:e8:c9:
3f:83:cf:a4:8c:68:4a:83:3f:cb:b0:dd:b7:bb:83:de:3b:0d:
31:97:6f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org