Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3132392e302f32342d3234203d3e20383334.roa
File: 39312e3132342e3132392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: nOeHuHE2ur0bPzspgWtFNFAGLGpiuEf1o6K5bL2rKNs=
Subject key identifier: F9:EB:C3:0C:A5:E4:0A:5F:71:7E:BF:5C:78:CB:4D:EC:2C:98:F3:5E
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 537F4DEFDD179F4AABBAA58724A546CF74E124E4
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3132392e302f32342d3234203d3e20383334.roa
Signing time: Thu 22 Feb 2024 06:40:39 +0000
ROA not before: Thu 22 Feb 2024 06:35:39 +0000
ROA not after: Thu 20 Feb 2025 06:40:39 +0000
asID: 834
IP address blocks: 91.124.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:7f:4d:ef:dd:17:9f:4a:ab:ba:a5:87:24:a5:46:cf:74:e1:24:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 22 06:35:39 2024 GMT
Not After : Feb 20 06:40:39 2025 GMT
Subject: CN=F9EBC30CA5E40A5F717EBF5C78CB4DEC2C98F35E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6a:e2:f5:bd:c9:c4:3a:7e:bf:4c:4f:bc:af:
f5:4b:cc:e6:81:21:fe:ee:f1:54:37:f3:90:22:21:
70:29:1c:e7:68:a7:6d:0b:b6:22:8e:16:0f:ca:cc:
9b:9f:34:56:27:3e:c4:eb:7c:70:cf:36:d3:bb:92:
dd:c2:03:44:9a:89:3c:c6:fd:e1:69:b8:66:e3:74:
3b:2e:e6:fb:7d:55:e9:ec:cd:eb:5a:a6:77:30:9e:
31:09:6f:ae:81:99:cb:11:25:0f:3f:a7:7c:c0:a3:
7c:24:90:80:19:e6:0c:92:74:b2:f6:3c:ee:d0:5c:
2f:f2:c8:24:6c:75:f3:10:65:03:f9:10:74:4a:04:
e2:3f:1c:86:0e:c9:09:85:41:6e:f3:ad:1e:99:5b:
eb:ed:03:5c:3b:ce:9e:59:3e:d5:b3:d0:38:5e:90:
1a:27:3c:f0:5c:1b:1d:57:84:00:ef:21:e5:cf:23:
72:4e:1b:69:07:fe:66:e0:fe:32:ad:39:d6:ad:f5:
00:54:d7:e0:06:df:6f:6c:6a:98:d4:44:25:69:5b:
8e:5e:6d:22:ad:4b:fb:af:18:24:b6:6d:e2:da:65:
4a:78:6d:31:e6:1b:f2:8e:0b:1e:3f:79:39:cb:86:
e3:2b:32:97:70:7e:cb:fa:39:6e:de:fe:f2:d3:22:
63:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EB:C3:0C:A5:E4:0A:5F:71:7E:BF:5C:78:CB:4D:EC:2C:98:F3:5E
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3132392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:37:f0:eb:e9:8b:78:3c:c2:49:da:75:cc:f5:dc:25:5b:88:
62:7b:fc:ab:e4:5f:9a:03:1b:01:a8:29:99:aa:89:e2:18:d6:
d4:30:80:3e:70:89:34:f8:34:58:4f:9f:91:e1:a4:b2:f7:e6:
d4:73:9f:b6:a9:a3:34:62:1a:b2:12:70:c4:b9:99:be:5b:97:
1e:e3:cd:68:40:64:b9:e1:db:7e:b2:57:00:42:80:e3:ca:8e:
16:e6:42:05:41:9d:51:17:56:8e:a4:98:ce:ad:7a:2f:13:e3:
96:0f:c5:20:b7:51:78:39:6e:f0:54:f1:bd:dc:24:44:28:2f:
b3:7a:15:e3:6c:dc:b8:65:1b:61:db:ea:ab:f9:1d:9d:2d:38:
4a:0f:2a:4e:21:6b:32:f9:11:ba:b8:91:e2:08:2c:9e:d1:1e:
b0:40:94:22:0f:9b:2c:fc:e8:b7:f7:0d:a4:43:f0:8b:4e:78:
43:84:4e:e0:0c:31:17:3d:1e:df:10:c6:dd:91:b4:22:ef:ee:
1e:33:ed:82:4b:d6:2a:79:9b:a7:fe:eb:8a:c2:64:76:7b:23:
e9:c4:96:6f:3d:01:a8:83:df:d1:6a:ca:e5:42:e3:e7:1f:1f:
86:e4:84:7b:47:6a:7b:93:3a:34:6d:be:6b:91:a2:19:09:f4:
1a:31:55:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:43:58 2025 by rpki-client