Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32322d3234203d3e20383334.roa
File: 3231332e3133392e38302e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: dZYkzq3jPIXbUX/fmJ+gpf0MXcTVfrNAOldVgkLaOx0=
Subject key identifier: 42:8E:D3:AC:D6:F3:B3:19:6B:7D:DA:21:66:64:3B:DB:84:5D:43:AE
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 36620EE2DCA0F31443883EF3F3CF315A7EBC2353
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32322d3234203d3e20383334.roa
Signing time: Fri 17 May 2024 15:36:20 +0000
ROA not before: Fri 17 May 2024 15:31:20 +0000
ROA not after: Fri 16 May 2025 15:36:20 +0000
asID: 834
IP address blocks: 213.139.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:62:0e:e2:dc:a0:f3:14:43:88:3e:f3:f3:cf:31:5a:7e:bc:23:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 17 15:31:20 2024 GMT
Not After : May 16 15:36:20 2025 GMT
Subject: CN=428ED3ACD6F3B3196B7DDA2166643BDB845D43AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5b:4a:de:2e:87:c4:e1:43:31:d1:ba:f5:08:
67:21:fb:2c:b0:61:c6:9e:a0:ca:90:c3:06:0b:6c:
cb:09:6c:98:28:3b:08:5b:e5:6e:9e:51:ac:df:4e:
e9:a8:4a:ab:7a:af:bc:24:4a:14:45:4c:90:7d:da:
80:27:c8:dc:50:8a:1d:04:51:ec:50:9b:cf:75:52:
c4:9c:a3:f7:84:85:75:75:36:ba:c1:35:7c:47:c2:
65:c0:20:35:79:62:c0:8f:f7:11:db:86:29:38:a8:
24:31:d1:77:97:b6:67:a2:3e:a9:13:d7:24:4a:0d:
b5:e9:eb:94:26:13:48:c7:45:9e:8a:0b:cd:ed:f4:
c0:5e:85:9b:e3:50:f3:58:59:d5:d6:6c:a4:7e:ae:
23:dc:54:0f:da:dc:ef:60:d6:00:ca:5e:ee:76:4d:
24:12:c2:e8:91:e8:c6:b5:0a:5b:c6:3d:f7:9b:58:
45:c9:f1:6d:7b:58:7d:d3:6c:cf:8f:fb:74:4d:33:
3a:c7:62:30:02:b1:a5:bd:4f:cc:80:1c:93:2e:aa:
d2:54:f0:6a:81:4a:65:87:b8:90:2c:19:8e:2a:10:
5f:0a:de:e0:0c:ff:34:97:96:3d:0a:2b:a7:23:64:
4f:7f:41:44:69:26:b2:f5:ea:fb:5c:01:ab:f2:c9:
bf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8E:D3:AC:D6:F3:B3:19:6B:7D:DA:21:66:64:3B:DB:84:5D:43:AE
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.80.0/22
Signature Algorithm: sha256WithRSAEncryption
49:db:64:cf:d8:ff:82:aa:7e:54:59:cb:e4:14:b0:5e:11:03:
9a:d0:e2:96:3d:2d:37:6c:cb:8c:95:df:b1:c1:74:30:bc:40:
50:aa:af:52:65:2b:63:c3:41:1c:b8:a0:70:5b:a6:df:fd:94:
ff:d9:f8:d6:45:07:a4:b7:41:6a:74:82:89:fb:94:47:5f:0a:
2c:bd:bf:a8:ca:8b:28:8d:5e:d6:1f:a5:f6:6b:e0:03:82:4d:
d8:1d:35:9a:55:d9:c4:bf:cf:7b:3d:e4:1a:94:bc:ec:65:70:
7c:81:0d:da:e2:85:e5:b7:ff:b9:6c:a5:23:2b:ce:1b:ff:54:
fa:d5:d2:e0:eb:a7:51:77:68:11:b9:50:01:47:e2:f4:16:b2:
56:91:db:43:b4:76:d0:c4:93:ee:72:d0:65:8f:0f:94:e8:3a:
ec:74:9a:b2:9f:de:af:a1:3f:75:51:a2:5d:c3:98:2a:60:cd:
a4:0a:0a:a4:c7:3f:01:f6:3d:f3:24:be:5d:cd:23:11:0d:45:
b2:1a:bc:f5:9d:6e:8a:6a:f9:62:e0:ea:32:a1:1d:74:1e:49:
5b:c4:3b:eb:2e:12:7e:0c:68:13:df:72:31:a1:c3:37:25:6f:
98:48:a4:15:b9:b9:d0:14:05:54:55:a0:50:c1:ba:6c:bb:48:
37:b6:de:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:32:21 2025 by rpki-client