Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e3138302e3137372e302f32342d3234203d3e203432333636.roa
File: 3139342e3138302e3137372e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: vJXyORaTOIdap/ipeNjBgeUdpOUnFwHiB6mCIw/Clwc=
Subject key identifier: 92:8F:05:24:06:B1:66:F0:80:AE:42:44:71:64:35:66:01:DE:9A:E2
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 683879AE427067621A93157632A558B78275AB5E
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e3138302e3137372e302f32342d3234203d3e203432333636.roa
Signing time: Fri 31 Mar 2023 12:17:06 +0000
ROA not before: Fri 31 Mar 2023 12:12:06 +0000
ROA not after: Fri 29 Mar 2024 12:17:06 +0000
asID: 42366
IP address blocks: 194.180.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:38:79:ae:42:70:67:62:1a:93:15:76:32:a5:58:b7:82:75:ab:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 31 12:12:06 2023 GMT
Not After : Mar 29 12:17:06 2024 GMT
Subject: CN=928F052406B166F080AE42447164356601DE9AE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:46:37:cd:a8:a6:07:b1:b4:d1:53:62:a8:
ca:37:dd:56:9d:19:c5:6d:d1:2e:05:09:95:e4:13:
a2:33:9d:83:46:0f:71:89:0b:bb:c3:6c:46:20:99:
6a:be:8c:ad:33:68:b0:f9:26:9f:de:28:5c:e1:3f:
9a:c0:6e:3a:3d:8d:6f:0f:ed:8a:f0:cf:86:10:0a:
e3:38:3f:45:95:1c:5c:dd:d1:de:15:10:83:18:ee:
7d:35:1e:4a:02:23:b8:08:dd:9a:33:08:8d:0f:b9:
e1:93:52:5c:b7:23:17:c4:e1:32:e9:f8:65:8c:2f:
9b:bb:ef:3e:b1:ac:70:af:04:57:49:de:24:63:f1:
f6:f5:86:7c:68:02:b3:50:1b:58:04:41:0c:02:49:
74:f8:65:9e:d0:8d:f7:5e:eb:92:ea:f8:d1:8e:e1:
e9:c5:a2:f0:a8:f1:2d:d1:67:91:bd:73:89:aa:41:
bd:df:90:b4:43:bb:b6:f7:2d:7d:6f:61:20:72:b6:
69:1c:6d:46:f9:90:bd:5d:3d:2c:bc:cf:0c:82:8e:
12:46:31:22:23:a1:4c:38:05:f0:97:72:51:ae:5c:
ae:c8:22:e8:21:29:31:d2:a0:f7:01:71:b3:c8:8a:
71:b2:cb:01:1b:fc:9c:d8:97:d6:f9:57:4f:c5:19:
72:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8F:05:24:06:B1:66:F0:80:AE:42:44:71:64:35:66:01:DE:9A:E2
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139342e3138302e3137372e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.177.0/24
Signature Algorithm: sha256WithRSAEncryption
47:56:a4:37:79:6a:26:fb:a6:20:ff:98:5d:b7:59:9e:53:5f:
33:6c:0c:4f:73:82:7b:95:93:28:a7:67:3a:ae:c0:7e:64:80:
85:d4:a3:3d:ac:6b:08:b4:eb:61:31:7e:0b:cc:54:6e:e1:3c:
c3:50:ec:4a:68:80:2f:c6:8c:f2:fd:a2:19:e4:0e:de:15:5e:
b6:c1:7d:33:1c:25:c0:33:4a:b6:38:e4:99:13:78:0b:de:e9:
a2:99:b1:e4:3d:dc:52:15:f6:92:ef:ed:d9:ad:93:1f:8f:1d:
ee:3e:21:34:fe:83:87:dc:09:3a:2f:2a:4e:e9:91:27:eb:05:
ae:99:78:8c:96:38:23:51:da:d6:5f:43:02:7a:b7:5d:48:c4:
d8:72:76:4d:dd:c8:3a:0b:f5:c4:9c:3d:e5:c2:01:0a:c5:b5:
e3:b8:4e:bb:1a:ca:69:ae:28:00:52:35:97:29:62:f0:30:14:
a0:fc:5b:c6:a3:1a:ea:cb:71:cb:4e:2c:61:7d:26:97:c3:6f:
8d:fa:37:f1:55:87:8f:76:26:ee:25:f1:0f:39:68:aa:5c:cf:
7e:87:06:2c:d5:a2:06:82:43:95:92:d6:36:0e:15:fb:95:47:
6d:d4:c3:dc:3e:02:0b:50:68:c4:c9:f3:59:e0:8e:e8:c9:65:
d5:1d:72:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org