Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142430.roa
File: AS142430.roa (raw, json)
Hash identifier: rQfD2rjklukI0CAsQjOTRXpmoGqvz+dGUbLdYKk0DjQ=
Subject key identifier: 3A:CF:ED:6C:7C:57:29:1B:77:9C:40:84:02:B4:F7:26:E3:6B:75:62
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 19BD6489DBED6FB2D089EE2CE106ADAE98E4619C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142430.roa
Signing time: Thu 06 Apr 2023 00:00:16 +0000
ROA not before: Wed 05 Apr 2023 23:55:16 +0000
ROA not after: Thu 04 Apr 2024 00:00:16 +0000
asID: 142430
IP address blocks: 185.170.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:bd:64:89:db:ed:6f:b2:d0:89:ee:2c:e1:06:ad:ae:98:e4:61:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 5 23:55:16 2023 GMT
Not After : Apr 4 00:00:16 2024 GMT
Subject: CN=3ACFED6C7C57291B779C408402B4F726E36B7562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5b:48:82:65:55:41:83:eb:79:7f:ae:82:af:
b8:f5:8a:d3:78:7a:af:6f:22:84:63:63:6d:36:dc:
a1:25:5c:52:8a:eb:99:b2:da:6b:a9:61:94:95:b4:
d8:c7:89:5b:2f:60:3b:83:43:db:c3:08:b2:e9:70:
bc:1b:66:a1:db:f6:8d:7d:46:52:51:99:d8:9c:1e:
45:95:28:69:59:ba:4a:fb:35:69:8e:22:92:7a:63:
85:76:5e:a4:f3:3f:55:37:68:88:f1:c5:b1:00:4e:
aa:eb:90:d4:19:d8:68:a8:97:63:56:3e:f6:e5:01:
f7:0b:5d:e2:49:f1:4a:5a:3b:98:be:1e:6c:1d:e2:
b7:7c:ff:95:44:51:01:52:15:9f:21:5c:7b:dd:b9:
1e:2b:53:c4:65:6b:ae:7e:a9:8e:72:8d:0d:ee:40:
7b:d6:71:e7:07:75:79:5e:c0:4c:0b:56:39:10:d1:
14:29:65:82:77:9e:b7:c3:e3:92:f9:7f:9c:ac:5f:
3f:2a:2e:44:7e:9e:ec:65:e6:35:02:75:32:96:fd:
fd:d0:17:3d:e8:75:5d:f3:8e:33:46:cd:fb:cb:9d:
d1:29:b9:93:40:60:50:28:e9:cd:5c:2e:1f:43:31:
3c:7f:5f:79:e3:bb:6b:44:30:9e:e8:65:30:61:66:
58:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:CF:ED:6C:7C:57:29:1B:77:9C:40:84:02:B4:F7:26:E3:6B:75:62
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS142430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.57.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:f8:fa:72:64:19:a9:df:e2:b4:ab:19:1a:93:fd:a2:91:5d:
e1:41:84:15:66:73:be:04:c2:eb:eb:a6:4c:2f:ee:b1:ed:05:
ce:87:8a:0e:66:80:8e:5d:40:7d:e3:69:9d:6a:99:8b:ce:d2:
02:d0:b1:bc:40:e5:45:94:de:d5:76:b0:6b:90:92:b0:ca:cd:
38:53:81:ee:44:57:64:43:cc:3d:2e:8d:eb:fc:30:82:1e:50:
a1:99:64:62:6b:c2:80:3c:89:b3:3a:1f:8e:92:b8:78:3b:4e:
8e:63:16:08:e1:d0:bd:bc:0e:76:b4:82:98:57:63:91:4b:cb:
6e:a6:49:d5:ef:00:43:9d:46:94:ce:c7:1c:96:1d:b7:42:42:
11:69:82:8c:14:a5:3e:54:0b:fd:56:7c:f4:5e:c8:14:75:37:
04:fe:41:7a:da:59:e2:99:c4:9e:f5:4d:88:7b:c1:be:80:ae:
a1:ad:64:c1:f1:ba:41:8f:dd:48:70:29:81:9c:9f:d3:52:8d:
ca:ff:28:71:f1:ff:b9:d4:52:44:b0:3c:a3:ce:a0:4a:79:b1:
ce:3d:2d:62:34:2e:c9:0b:19:72:0f:4a:da:59:65:d8:54:92:
5f:f8:eb:ec:c7:2c:92:a5:19:07:a5:5f:4d:6c:2c:f1:93:04:
bc:22:b3:e7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUGb1kidvtb7LQie4s4QatrpjkYZwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzA0MDUyMzU1MTZaFw0yNDA0MDQwMDAwMTZaMDMxMTAvBgNV
BAMTKDNBQ0ZFRDZDN0M1NzI5MUI3NzlDNDA4NDAyQjRGNzI2RTM2Qjc1NjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxW0iCZVVBg+t5f66Cr7j1itN4
eq9vIoRjY2023KElXFKK65my2mupYZSVtNjHiVsvYDuDQ9vDCLLpcLwbZqHb9o19
RlJRmdicHkWVKGlZukr7NWmOIpJ6Y4V2XqTzP1U3aIjxxbEATqrrkNQZ2Giol2NW
PvblAfcLXeJJ8UpaO5i+Hmwd4rd8/5VEUQFSFZ8hXHvduR4rU8Rla65+qY5yjQ3u
QHvWcecHdXlewEwLVjkQ0RQpZYJ3nrfD45L5f5ysXz8qLkR+nuxl5jUCdTKW/f3Q
Fz3odV3zjjNGzfvLndEpuZNAYFAo6c1cLh9DMTx/X3nju2tEMJ7oZTBhZlgrAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUOs/tbHxXKRt3nECEArT3JuNrdWIwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQyNDMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuao5
MA0GCSqGSIb3DQEBCwUAA4IBAQCt+PpyZBmp3+K0qxkak/2ikV3hQYQVZnO+BMLr
66ZML+6x7QXOh4oOZoCOXUB942mdapmLztIC0LG8QOVFlN7VdrBrkJKwys04U4Hu
RFdkQ8w9Lo3r/DCCHlChmWRia8KAPImzOh+Okrh4O06OYxYI4dC9vA52tIKYV2OR
S8tupknV7wBDnUaUzscclh23QkIRaYKMFKU+VAv9Vnz0XsgUdTcE/kF62lnimcSe
9U2Ie8G+gK6hrWTB8bpBj91IcCmBnJ/TUo3K/yhx8f+51FJEsDyjzqBKebHOPS1i
NC7JCxlyD0raWWXYVJJf+OvsxyySpRkHpV9NbCzxkwS8IrPn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:13 2024 by rpki-client on console-fra.rpki-client.org