Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS140057.roa
File: AS140057.roa (raw, json)
Hash identifier: TSNwbM8+VVdgqQEMM1fwlv/i7I0xP6DyX8TtVSZiEgk=
Subject key identifier: 33:B5:B7:B8:C2:FC:AC:00:A3:3B:A3:62:C7:38:60:E7:5C:04:A2:8A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6C3DE4601083943FA11965CAB482130494EB21A6
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS140057.roa
Signing time: Wed 01 Mar 2023 07:08:11 +0000
ROA not before: Wed 01 Mar 2023 07:03:11 +0000
ROA not after: Wed 28 Feb 2024 07:08:11 +0000
asID: 140057
IP address blocks: 179.61.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:3d:e4:60:10:83:94:3f:a1:19:65:ca:b4:82:13:04:94:eb:21:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:11 2023 GMT
Not After : Feb 28 07:08:11 2024 GMT
Subject: CN=33B5B7B8C2FCAC00A33BA362C73860E75C04A28A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:4a:fe:2d:fe:61:f6:42:ca:47:23:aa:de:e2:
90:87:73:8c:97:3e:a4:30:55:4e:96:83:1c:99:39:
4e:97:9e:1b:12:85:08:5a:47:a4:95:c9:f7:ad:4f:
f4:ff:8d:5e:fc:c7:ca:7b:94:fd:a4:be:ce:db:c1:
4d:14:15:1f:fe:3a:f4:7d:45:f4:a3:a2:f0:a6:b9:
a4:d0:cf:82:47:a3:2e:df:7f:f9:d9:9c:fc:41:02:
8e:c0:0e:f1:66:0d:50:d2:a8:79:75:98:05:32:05:
60:6d:88:97:ee:b2:63:05:8f:4e:62:1b:cf:8a:b2:
bd:31:74:47:89:cb:6b:dd:87:dc:e2:02:4a:82:02:
ba:1b:c2:a3:ed:d6:17:d6:7a:d2:18:66:6b:b3:e3:
45:78:9d:9a:ba:59:68:e3:1b:2a:8b:26:35:cc:8f:
ca:71:5a:73:d4:c4:62:e9:df:06:cb:1b:c4:fa:fd:
70:95:7d:54:70:89:52:ff:12:4a:bf:06:65:a1:df:
0b:82:8b:9c:98:0f:94:86:b0:7b:13:0e:64:75:f9:
80:cd:ac:e3:16:c3:a8:91:a3:e1:49:88:16:78:53:
57:83:4e:e7:5f:aa:c9:cc:43:35:8a:80:56:ac:13:
85:ba:51:e4:11:51:95:d3:4a:ff:ff:f6:a0:4e:32:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B5:B7:B8:C2:FC:AC:00:A3:3B:A3:62:C7:38:60:E7:5C:04:A2:8A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS140057.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.168.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e7:56:e9:86:50:b6:f4:91:6f:3c:f1:24:f5:e1:21:c2:7c:
88:71:1c:eb:67:8b:75:a9:4d:21:e2:7c:ff:e3:95:64:9f:7c:
fb:0b:32:76:52:97:2a:8b:26:78:21:10:60:0d:ce:5b:54:aa:
2f:44:50:20:99:6e:a7:60:82:6a:df:03:2a:fa:4b:f3:16:de:
36:5b:49:e6:3f:d5:d7:5b:4d:9f:13:ab:d7:e4:b3:e7:09:14:
05:4d:8b:6b:17:43:73:22:a7:5a:f8:0e:45:df:19:fc:7e:5e:
6d:3f:ea:9b:7a:29:ea:5e:4c:27:7b:2a:c1:d3:43:c2:0f:64:
66:8f:ff:15:96:b4:81:18:dd:60:ac:e6:da:81:bf:9f:e1:21:
48:d3:38:31:1f:44:3a:1e:14:92:9d:e0:dd:a6:e7:cc:36:9c:
56:5c:48:a2:e4:97:62:48:8b:0d:74:b8:2f:06:e1:83:7e:68:
fd:c3:16:06:37:b4:1b:7d:90:a1:01:ba:9a:c6:9c:66:b0:11:
a3:2b:62:3c:11:97:d6:79:72:71:d1:d6:09:71:ad:13:95:51:
68:97:66:47:e8:cb:15:b9:e0:a7:31:45:e5:95:6b:96:ab:46:
66:f6:ae:80:d3:dc:77:1b:b5:69:48:7a:bb:b6:9b:c2:97:52:
cf:11:ac:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:09 2025 by rpki-client