Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
File: 39322e3131382e35322e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: 1O60Ww3IQFkMeOg5fNMstNuIA4o0kgE+muswuIr26yo=
Subject key identifier: E2:CB:93:C0:17:00:4D:B9:E9:D3:7A:05:02:87:98:3B:CC:DC:B9:7D
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 21A13FAFA14541E4588CEE24EF9D580BD78927
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
Signing time: Mon 27 Mar 2023 08:27:50 +0000
ROA not before: Mon 27 Mar 2023 08:22:50 +0000
ROA not after: Mon 25 Mar 2024 08:27:50 +0000
asID: 0
IP address blocks: 92.118.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:a1:3f:af:a1:45:41:e4:58:8c:ee:24:ef:9d:58:0b:d7:89:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 27 08:22:50 2023 GMT
Not After : Mar 25 08:27:50 2024 GMT
Subject: CN=E2CB93C017004DB9E9D37A050287983BCCDCB97D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5f:5a:9c:b3:99:64:e3:bd:81:7e:e0:04:93:
06:3e:ae:e7:a9:99:56:ff:76:dc:98:af:32:10:0a:
b2:53:1d:0f:eb:2a:aa:0f:8a:30:3e:32:7f:ef:02:
e9:20:6a:1c:0c:5e:79:e4:af:a4:28:23:96:46:c2:
10:d4:77:60:77:5d:e6:bf:34:39:6d:66:52:b6:51:
17:7a:e2:44:58:ab:b2:ed:ef:8b:21:1f:1f:b3:c1:
06:97:5c:35:1d:4b:ab:3a:60:c7:75:c6:46:5f:63:
cf:d7:d8:1e:29:f2:55:3a:8b:cc:5a:2a:13:44:a8:
86:9a:73:81:15:bd:65:6c:5a:f0:08:f3:98:1e:48:
06:c8:83:8a:6f:b1:b5:53:5b:11:b4:7f:1b:be:96:
a9:48:9b:49:a2:57:74:f6:7c:4f:c7:fe:b8:d2:e3:
bf:6f:91:08:1c:a2:ef:9d:3c:19:55:04:ce:11:0f:
4e:1d:04:71:43:cb:b6:32:59:79:72:10:39:3b:89:
99:c0:a0:db:2d:6e:36:a8:0d:97:13:f2:d9:e2:fd:
b1:2e:e0:42:7a:92:71:8b:e1:b7:ee:54:25:ea:fc:
a3:8b:97:5f:aa:de:87:45:b8:91:6e:0f:28:65:dc:
ae:45:a2:94:f8:53:d4:c0:88:f2:3e:cb:7e:fa:ea:
7e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CB:93:C0:17:00:4D:B9:E9:D3:7A:05:02:87:98:3B:CC:DC:B9:7D
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.52.0/22
Signature Algorithm: sha256WithRSAEncryption
61:87:d4:55:fe:be:a2:cb:aa:e9:ee:b4:6e:55:55:35:ac:81:
fb:2f:69:ca:24:08:db:a1:e5:2e:32:65:e8:14:5a:74:07:99:
40:17:a5:37:6b:5a:94:f8:3b:13:27:b7:7d:13:00:f7:61:25:
bd:25:f5:a1:8b:64:19:7c:66:1a:3e:15:ac:72:d8:6c:34:78:
ba:fc:35:c3:0b:28:99:4e:b1:22:1d:09:57:2b:ce:9a:85:df:
69:17:50:3a:53:72:26:18:ea:a3:e1:f0:04:f8:92:c1:af:21:
3b:39:c3:0a:a1:8b:eb:5f:df:be:b4:b8:3b:6c:bd:f7:09:cb:
eb:52:f8:7f:05:55:3b:e6:43:22:07:d3:64:10:da:17:b5:31:
26:4b:bb:3f:8a:f0:8c:93:43:93:26:27:55:12:6c:7f:35:59:
fe:c4:47:2a:89:49:76:ce:5f:30:2b:cc:b6:3e:82:05:6b:35:
bb:e2:b1:22:ea:12:46:42:8f:94:36:56:dc:0a:0a:21:33:65:
42:26:82:f9:b3:6e:5d:60:30:1e:a1:0e:40:93:af:55:5c:19:
85:0b:e7:2e:96:4b:53:d8:cc:16:52:31:fc:3f:28:9c:8d:54:
f7:02:f0:b2:22:31:55:58:7e:b9:b1:40:77:2b:75:e6:1d:da:
df:e8:38:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org