Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141718.roa
File: AS141718.roa (raw, json)
Hash identifier: b06n8+cQMVNhwyKn/Zo74VsUa/ABEm7r3mM5xlWcCV4=
Subject key identifier: 49:B2:83:57:0A:96:29:2D:D5:6A:BB:E3:DC:39:8E:6B:C2:81:E7:CC
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 76930E90F16999E9C2518EA6F9D20A30FBC9E0BE
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141718.roa
Signing time: Wed 01 Mar 2023 07:08:20 +0000
ROA not before: Wed 01 Mar 2023 07:03:20 +0000
ROA not after: Wed 28 Feb 2024 07:08:20 +0000
asID: 141718
IP address blocks: 179.61.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:93:0e:90:f1:69:99:e9:c2:51:8e:a6:f9:d2:0a:30:fb:c9:e0:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:20 2023 GMT
Not After : Feb 28 07:08:20 2024 GMT
Subject: CN=49B283570A96292DD56ABBE3DC398E6BC281E7CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:31:54:7c:b0:6c:eb:83:98:bd:c3:83:94:d1:
e0:89:cf:e0:7b:55:ab:83:0f:81:1c:77:38:a2:6d:
5c:b3:a3:b5:0a:ca:91:a1:e4:42:1e:22:6f:ee:91:
84:95:05:68:1a:1f:9e:57:a3:e4:fe:c8:ed:41:49:
e4:ff:c2:ba:1e:9c:7c:82:20:53:f1:f5:fa:34:0f:
11:a6:cd:aa:30:8d:01:b9:5f:f8:b9:43:1a:7e:29:
f8:ea:49:20:58:23:58:a9:ab:82:4f:99:b1:83:14:
bc:45:45:fa:41:64:ab:96:94:2e:50:3d:ef:ca:03:
e6:32:bd:7e:06:c5:b9:21:ad:15:bd:a9:c8:84:9d:
2c:8f:03:b6:b6:a9:16:d0:b5:15:6f:28:e6:37:a6:
d5:11:f6:35:36:c5:87:99:18:93:e7:bf:51:70:12:
db:2e:3a:87:ae:cb:20:4a:96:13:ef:97:70:65:1f:
f0:2d:b7:63:9d:a5:44:26:e7:7e:d3:9d:84:4b:88:
c4:42:67:42:e1:27:81:fd:c8:5f:db:82:0c:b1:29:
7b:fa:af:80:fe:17:b0:93:10:28:ab:0d:a7:a0:c4:
9b:3a:be:54:83:d0:b5:a4:2b:04:9d:fe:51:e6:1a:
41:70:eb:fe:7c:df:5e:2c:34:f3:0e:f1:80:90:1a:
0d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B2:83:57:0A:96:29:2D:D5:6A:BB:E3:DC:39:8E:6B:C2:81:E7:CC
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS141718.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.168.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e3:da:db:e2:ea:dd:b6:49:0e:68:5c:a7:63:5e:5c:e2:e1:
71:d1:7a:3e:33:28:40:15:45:dd:48:ac:74:68:cf:c7:39:a2:
34:82:ff:a8:30:ff:52:1b:bf:c3:00:1d:c8:b5:d7:35:21:ad:
47:d9:d7:07:b0:eb:e0:f5:d6:52:ea:a1:d7:09:43:c0:9d:19:
2d:8e:83:48:b3:67:63:bb:35:3d:64:25:d7:68:13:15:d4:b7:
4c:68:a0:c7:56:5d:7d:7a:12:ef:31:6b:a6:9b:28:52:2c:17:
b9:8b:78:ed:f7:e9:6f:35:6c:a9:f0:2b:33:60:7c:fe:06:c4:
74:62:d1:86:2d:a9:5c:50:82:43:23:3e:60:f9:b7:33:ab:e8:
83:72:fd:54:3f:ce:96:b9:c1:12:2f:ec:bf:60:70:a9:dc:07:
cb:26:0e:93:92:b2:1c:06:b4:14:66:05:f4:19:f7:35:90:2c:
1e:13:9c:01:23:8e:ce:78:86:47:9a:2c:83:58:02:85:27:92:
37:f3:f8:65:9c:77:b7:4e:2e:b5:55:3e:2a:31:e3:8f:d8:2d:
be:ac:45:95:7f:4c:e9:5c:cf:25:db:7b:7a:d2:80:7f:ee:7f:
26:89:45:c8:44:3e:94:f3:06:ab:8f:de:c8:89:cc:70:27:18:
45:8b:1f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:13 2024 by rpki-client on console-fra.rpki-client.org