Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141376.roa
File: AS141376.roa (raw, json)
Hash identifier: ZMXgCDCUG0V+qDJsMgvBUgoFC6+IDFsgrubWZWrIM44=
Subject key identifier: 7C:99:6B:8A:3B:3F:04:0B:72:79:4B:3F:CF:9F:C4:9F:BC:CA:CA:E6
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7F676BD431F95FA26918A9A1F7F7C532F6DADC3B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141376.roa
Signing time: Wed 01 Mar 2023 07:08:12 +0000
ROA not before: Wed 01 Mar 2023 07:03:12 +0000
ROA not after: Wed 28 Feb 2024 07:08:12 +0000
asID: 141376
IP address blocks: 181.214.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:67:6b:d4:31:f9:5f:a2:69:18:a9:a1:f7:f7:c5:32:f6:da:dc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:12 2023 GMT
Not After : Feb 28 07:08:12 2024 GMT
Subject: CN=7C996B8A3B3F040B72794B3FCF9FC49FBCCACAE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:9b:e2:79:7a:e8:3c:11:96:54:d4:e2:14:
cc:15:ff:35:1b:42:2c:59:29:2f:5b:8b:71:a3:89:
b2:9c:06:b3:de:6b:9e:ea:23:18:18:60:5f:d6:43:
c0:14:1b:26:d5:46:f7:cf:a6:ca:fd:c9:29:70:54:
73:e6:7e:e0:5c:ab:9d:7d:47:a1:2e:bc:da:5f:31:
a3:98:9f:84:08:72:53:c4:1c:52:05:55:cf:0b:25:
0b:c3:3a:4e:22:c4:f3:16:f0:87:42:ca:d3:e9:40:
f9:eb:88:54:a0:be:c5:2f:19:20:fc:55:0a:2b:a2:
86:f3:4f:de:f6:55:33:d9:28:fd:72:d3:f7:67:70:
6d:71:47:18:4d:53:26:5b:32:ef:fb:10:71:1e:ae:
25:88:90:10:1d:fa:2a:c0:4c:23:c2:6f:dc:3a:a6:
bf:c9:09:1c:82:3c:f2:6f:49:02:4c:ef:c5:b9:12:
f5:e0:fe:d3:fa:91:43:3a:a2:ab:37:e2:05:c1:df:
01:12:6c:ac:4e:30:8d:88:88:f0:f5:45:c3:e1:4a:
97:41:c2:78:e8:03:5a:63:e3:f4:d6:c7:53:b8:ad:
00:c8:ba:a6:cf:fc:8d:89:23:af:6a:66:00:1f:7a:
b6:03:55:a6:b8:60:5a:73:b1:8d:c1:2e:17:75:63:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:99:6B:8A:3B:3F:04:0B:72:79:4B:3F:CF:9F:C4:9F:BC:CA:CA:E6
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141376.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.21.0/24
Signature Algorithm: sha256WithRSAEncryption
23:0a:31:4b:53:cc:dd:3a:17:02:0e:f1:d1:6a:82:51:3f:f4:
82:00:41:c8:28:2d:b3:25:0f:ca:b1:bd:c5:dd:be:01:bb:6c:
f0:1a:fd:ca:fb:e7:99:36:d0:ac:3c:08:43:c1:55:aa:70:d9:
75:10:71:dc:0d:d4:da:2e:78:19:b5:e0:1a:0d:27:ec:97:44:
93:5b:4a:dd:24:d0:cb:13:17:87:99:20:b2:f6:35:0d:c3:30:
a1:5c:45:0f:e0:6f:88:dc:ae:7f:71:7e:9f:ef:10:bc:91:06:
5d:ba:72:aa:a2:d9:b0:f7:08:ab:f2:b0:08:50:e6:c3:6a:40:
6f:f5:4f:0a:75:f2:52:b9:09:75:6a:6f:ef:70:3d:00:3a:33:
d2:c8:5a:91:ae:43:72:f3:5a:2d:89:bf:1e:82:62:ab:0a:f4:
f8:6f:65:7c:29:58:87:a7:38:11:9e:89:e7:cb:6d:a1:11:ca:
55:24:87:68:a8:db:47:7f:d4:d4:5a:1e:98:ed:33:e7:af:40:
37:a9:f5:52:e7:ef:76:c3:08:3f:fb:dd:8b:a0:3b:a8:2f:9e:
ce:cf:cf:58:ae:75:58:9f:4e:b4:d3:e1:87:f8:43:0d:ed:1d:
ee:c8:af:39:06:b2:bb:d2:bc:e1:e0:9a:94:42:b1:9e:27:20:
c4:6e:1d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:13 2024 by rpki-client on console-fra.rpki-client.org