Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37332e302f32342d3234203d3e203432333636.roa
File: 3139332e3134382e37332e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: Z3uIN5109UDDBhbEtl520+wMYc/541NeEc3Kf9gvTtA=
Subject key identifier: 6F:0B:AD:76:5C:D9:23:F2:65:5D:86:F0:65:B3:7A:4F:14:81:B1:A7
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 32B9DD5E46F6CD195A728ADCF734F07A9920408D
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37332e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:18:26 +0000
ROA not before: Fri 31 Mar 2023 12:13:26 +0000
ROA not after: Fri 29 Mar 2024 12:18:26 +0000
asID: 42366
IP address blocks: 193.148.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:b9:dd:5e:46:f6:cd:19:5a:72:8a:dc:f7:34:f0:7a:99:20:40:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:13:26 2023 GMT
Not After : Mar 29 12:18:26 2024 GMT
Subject: CN=6F0BAD765CD923F2655D86F065B37A4F1481B1A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:79:19:05:0d:fc:45:5e:92:1a:e7:c1:bb:c8:
6c:e0:66:e4:17:b2:47:59:68:b9:e1:f5:74:1e:59:
43:97:48:13:14:9f:d4:08:a3:5d:b2:52:84:c1:c0:
da:d3:2d:35:ab:44:78:b1:a9:d1:96:be:ba:3f:43:
96:fb:0b:7c:b9:fd:5c:43:40:df:ef:b3:d7:8a:7d:
e3:58:22:43:10:c1:1c:9b:a4:18:4c:d8:6d:f1:be:
bd:5b:52:59:01:a3:34:59:b9:f8:6c:18:de:19:60:
3a:2e:90:1e:19:73:74:9a:92:27:08:c5:01:2a:bb:
70:60:18:e3:1b:39:5d:9b:df:7d:16:a2:b7:12:99:
aa:fb:d7:d8:4d:9d:e9:72:62:97:4c:3f:e2:69:31:
d8:c5:86:bd:d0:ac:b2:29:43:50:97:87:e4:7e:bc:
17:a9:2e:d5:e6:87:e5:cd:4d:fc:da:4d:6c:93:5b:
aa:ac:fd:42:9d:f1:4b:14:45:c9:cc:48:80:ce:92:
9d:aa:20:fa:82:9e:02:c7:de:8b:a6:bd:80:c2:ac:
83:da:f5:be:a0:c6:e0:a2:60:8a:1e:f6:10:50:64:
32:a2:51:80:32:02:f8:b9:55:86:6d:dc:8b:8f:c9:
c8:65:4c:72:33:75:a6:ad:2b:a1:e7:b7:a7:21:5f:
3d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:0B:AD:76:5C:D9:23:F2:65:5D:86:F0:65:B3:7A:4F:14:81:B1:A7
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134382e37332e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.73.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a8:32:38:bb:39:37:1a:2a:bb:92:7b:10:c6:2a:8b:21:b0:
4c:99:00:5e:d7:f4:42:a3:05:04:1e:de:62:ed:ab:58:9d:78:
e3:d2:88:48:c7:74:1a:8c:9e:2d:e7:c9:7c:e5:f9:53:11:6d:
6d:06:34:d4:63:68:07:a9:79:ca:b7:8d:a0:74:c7:ef:28:3a:
82:0e:55:ab:8f:8f:8a:69:fb:a5:b4:5c:84:70:12:f8:98:89:
aa:52:e4:17:78:e4:f8:95:ac:28:e6:d5:5c:e5:01:c9:06:7b:
a6:5e:11:4e:41:de:e8:20:c6:51:2a:0d:09:49:83:15:b4:f8:
a3:d9:f7:ff:79:c4:46:a1:6f:cf:ff:4f:59:88:61:01:16:75:
b3:bf:48:f5:7b:e6:67:e2:e0:51:13:1e:04:d0:ec:98:66:16:
1b:4c:49:7f:5e:7f:37:fb:64:96:10:04:eb:e3:8c:43:72:4a:
78:45:60:6d:fd:f8:0e:81:d0:36:d3:e9:56:ae:6f:0a:77:aa:
02:a0:28:3e:c3:71:1b:7f:a2:be:83:05:de:e2:6f:ae:f0:3d:
1a:7b:05:b4:35:7b:64:19:d5:13:87:b1:2d:e7:4e:6f:00:b4:
d0:10:61:50:bc:ea:51:5c:e9:d2:17:0b:56:c3:37:98:99:4b:
3e:fe:0c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org