Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e31352e3130382e302f32342d3234203d3e203432333636.roa
File: 3139342e31352e3130382e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: DDPrz3PJo1zV4ZKHMJTvPl1xzYNCITiLcaNIvJ+Zczg=
Subject key identifier: F6:CF:9E:F3:42:E4:36:F4:3E:5F:CE:09:A9:35:70:12:31:A2:2F:47
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 05B528EB8D86B22DA921E67A625463D2BDDEC8A7
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e31352e3130382e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:17:59 +0000
ROA not before: Fri 31 Mar 2023 12:12:59 +0000
ROA not after: Fri 29 Mar 2024 12:17:59 +0000
asID: 42366
IP address blocks: 194.15.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:b5:28:eb:8d:86:b2:2d:a9:21:e6:7a:62:54:63:d2:bd:de:c8:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:12:59 2023 GMT
Not After : Mar 29 12:17:59 2024 GMT
Subject: CN=F6CF9EF342E436F43E5FCE09A935701231A22F47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e0:f0:11:af:c4:b3:e0:7e:d1:1d:d2:95:f3:
28:b0:8c:ae:30:87:c6:2d:c4:eb:bb:1e:6d:46:04:
5e:72:fe:57:41:7c:a5:f4:04:b4:af:12:93:bb:fc:
bb:1a:a5:99:8d:dd:66:ff:66:04:c2:80:b8:23:68:
68:a6:d8:ca:f4:64:2c:d9:cf:7a:71:69:4f:42:d4:
bf:8a:52:ed:78:6c:26:ba:e1:bd:98:24:d4:c2:ac:
a9:2b:70:76:14:30:03:2d:46:02:77:da:d5:a7:33:
10:f8:3d:1e:64:8f:35:10:66:27:cb:cc:f8:75:3b:
20:99:4e:2a:73:2c:a5:9e:62:5a:04:52:56:3d:45:
f7:93:5c:69:ab:69:e3:0b:a8:2c:c1:a4:4f:a7:df:
a1:67:49:78:b7:4f:27:d0:63:e3:f3:cf:bc:d9:b3:
cb:e5:a5:b1:7d:32:94:1d:dd:09:40:42:30:06:72:
9f:eb:30:1e:55:76:c1:a4:76:db:e5:0f:bf:10:42:
57:7c:79:8b:a5:d8:6f:d3:a4:c4:9f:d6:e2:04:4a:
7e:02:27:5c:98:7f:a6:7a:f3:30:2c:4c:79:f2:bd:
ed:14:29:75:10:d2:7a:7e:0f:95:92:27:fc:2e:b4:
c8:c0:2f:13:ba:6f:b1:d4:4c:e2:c7:3a:ae:28:1a:
da:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CF:9E:F3:42:E4:36:F4:3E:5F:CE:09:A9:35:70:12:31:A2:2F:47
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e31352e3130382e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.108.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:a3:cc:e9:7b:3e:c8:e5:ad:84:b7:78:2c:e5:b0:3c:ad:e5:
7d:29:80:ed:4b:a8:b5:fc:d3:70:fa:13:d7:f5:6a:11:a3:e0:
69:48:4d:5d:05:c4:38:2f:ac:2e:7e:77:46:f8:44:5b:83:2d:
0a:84:f2:97:39:a3:da:c5:50:c3:d3:2f:a1:3a:d2:74:e6:ae:
a2:1d:d7:0d:3b:8a:2a:af:c9:da:88:ff:62:ec:b6:ba:b5:fd:
98:28:e7:3d:3b:cf:c0:ca:6a:f2:a6:57:a1:67:47:b8:d8:15:
68:c6:01:f5:61:b7:e6:55:8b:0b:0d:9f:bb:fb:53:2a:b1:ad:
d4:5f:62:77:0c:13:a2:cd:9f:86:e1:6d:a8:26:00:ee:8b:a5:
8d:9f:75:7f:46:57:ca:99:97:08:c0:a4:8a:36:aa:6c:83:80:
5e:55:86:79:e3:f2:78:51:71:53:2c:c4:67:05:d9:b1:1b:3d:
2a:e9:10:60:ed:01:03:2b:6e:fa:70:e6:ff:31:70:a1:e4:5f:
a8:52:c9:67:b5:e3:b9:4c:74:e0:a1:f9:52:3b:da:16:68:33:
18:9e:99:7e:bc:d2:93:df:ef:ee:a9:78:a6:07:8c:00:cc:9f:
a2:68:1f:1b:d6:fd:35:94:1e:41:25:db:d1:e2:a7:ed:c2:fe:
ec:74:7a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org