Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS147287.roa
File: AS147287.roa (raw, json)
Hash identifier: bi1dhbhXukjesk6p8vLpnbwTrOZvDD5Mv0rg8TxNnQ0=
Subject key identifier: 7D:91:B1:F4:24:5B:5D:AD:5C:33:A0:E9:7A:FD:07:A5:EC:4C:56:90
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1DD5246AF5A3D43C011F3A27D90AF3353EB3D4B2
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS147287.roa
Signing time: Tue 04 Jul 2023 17:09:07 +0000
ROA not before: Tue 04 Jul 2023 17:04:07 +0000
ROA not after: Tue 02 Jul 2024 17:09:07 +0000
asID: 147287
IP address blocks: 45.89.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:d5:24:6a:f5:a3:d4:3c:01:1f:3a:27:d9:0a:f3:35:3e:b3:d4:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 4 17:04:07 2023 GMT
Not After : Jul 2 17:09:07 2024 GMT
Subject: CN=7D91B1F4245B5DAD5C33A0E97AFD07A5EC4C5690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:30:78:0a:5d:cd:89:94:bc:29:00:8a:37:dc:
39:f8:00:11:ae:22:0d:1d:79:43:93:94:67:6a:b8:
60:49:1d:f6:56:b2:e3:cf:c7:d4:4e:7f:3c:01:59:
36:77:ed:f1:87:37:32:c9:94:b2:d1:ac:81:2e:19:
15:2a:28:54:3a:52:ed:a1:4e:c7:f5:1d:8b:8b:65:
a4:da:f8:b0:e9:b2:68:d0:50:2e:ac:f7:10:a4:7a:
e5:e7:46:4e:3b:5d:66:5a:ed:03:ef:23:cc:7c:f0:
f1:b9:88:13:63:56:fe:1c:ef:2a:6e:ec:4f:2f:d6:
c9:46:3d:6c:58:47:3d:d2:32:f5:7a:10:5e:0c:e0:
02:76:7f:4f:70:23:32:35:00:4f:bb:38:9d:d0:fe:
c8:ae:6d:ec:da:a5:93:ac:cb:db:dc:a5:f4:bd:9b:
2d:c4:1f:c0:31:4d:4d:c5:42:44:6a:1e:5e:76:f0:
11:39:8e:b2:ad:48:74:c9:67:8f:18:43:0f:58:29:
1b:01:fe:af:dc:e8:90:63:cb:4e:8a:46:9d:30:30:
2d:21:57:80:29:4a:da:a6:60:4d:89:74:ed:98:10:
66:2c:5b:4a:09:03:a0:2c:a3:b3:e9:5a:49:b8:1b:
a4:90:8b:42:38:14:34:e5:b3:ac:9f:c5:04:78:3c:
ae:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:91:B1:F4:24:5B:5D:AD:5C:33:A0:E9:7A:FD:07:A5:EC:4C:56:90
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS147287.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.248.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d0:3c:44:c8:7f:8b:5d:8f:a0:92:c7:ad:7e:06:ab:d8:88:
d5:02:50:9e:99:7c:6f:fe:1a:24:f3:20:f4:61:60:68:37:dd:
08:6b:fc:3f:10:e4:a5:31:61:a6:a4:40:28:ca:08:37:6c:38:
fe:b4:d8:65:20:54:39:1c:16:ba:47:f7:76:a0:5c:8e:6e:c8:
d5:df:f5:16:4c:58:b0:e8:7c:2a:35:6d:43:e9:c7:f3:da:96:
b8:37:69:a6:f5:b9:2c:dd:33:41:f7:df:2c:4b:7c:9a:ed:82:
4b:ea:d8:90:5b:2c:d3:60:b1:d7:a5:84:2b:2f:dc:4a:04:b8:
4e:e7:d0:b6:99:ef:c0:77:19:65:cf:4e:c1:b0:32:81:f2:41:
48:8f:fa:14:c2:ff:08:29:02:de:56:6a:cf:68:b0:01:da:3b:
44:0e:a9:b0:85:e6:60:22:55:87:0e:dc:bd:33:17:58:f2:2d:
38:35:8b:0c:65:7b:e7:c3:b8:40:63:a4:57:14:aa:cd:4c:10:
27:ea:27:43:bd:66:e3:29:6e:cb:84:2e:75:21:8e:41:b1:dd:
f7:c2:ba:2a:47:ed:8d:dd:c5:ac:d4:05:ad:96:35:0b:4f:42:
ce:fa:82:08:2f:8f:7d:49:50:11:92:12:c3:89:9b:d8:59:7c:
61:a7:1e:50
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUHdUkavWj1DwBHzon2QrzNT6z1LIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzA3MDQxNzA0MDdaFw0yNDA3MDIxNzA5MDdaMDMxMTAvBgNV
BAMTKDdEOTFCMUY0MjQ1QjVEQUQ1QzMzQTBFOTdBRkQwN0E1RUM0QzU2OTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJMHgKXc2JlLwpAIo33Dn4ABGu
Ig0deUOTlGdquGBJHfZWsuPPx9ROfzwBWTZ37fGHNzLJlLLRrIEuGRUqKFQ6Uu2h
Tsf1HYuLZaTa+LDpsmjQUC6s9xCkeuXnRk47XWZa7QPvI8x88PG5iBNjVv4c7ypu
7E8v1slGPWxYRz3SMvV6EF4M4AJ2f09wIzI1AE+7OJ3Q/siubezapZOsy9vcpfS9
my3EH8AxTU3FQkRqHl528BE5jrKtSHTJZ48YQw9YKRsB/q/c6JBjy06KRp0wMC0h
V4ApStqmYE2JdO2YEGYsW0oJA6Aso7PpWkm4G6SQi0I4FDTls6yfxQR4PK5TAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUfZGx9CRbXa1cM6Dpev0HpexMVpAwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ3Mjg3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVn4
MA0GCSqGSIb3DQEBCwUAA4IBAQAq0DxEyH+LXY+gksetfgar2IjVAlCemXxv/hok
8yD0YWBoN90Ia/w/EOSlMWGmpEAoygg3bDj+tNhlIFQ5HBa6R/d2oFyObsjV3/UW
TFiw6HwqNW1D6cfz2pa4N2mm9bks3TNB998sS3ya7YJL6tiQWyzTYLHXpYQrL9xK
BLhO59C2me/Adxllz07BsDKB8kFIj/oUwv8IKQLeVmrPaLAB2jtEDqmwheZgIlWH
Dty9MxdY8i04NYsMZXvnw7hAY6RXFKrNTBAn6idDvWbjKW7LhC51IY5Bsd33wroq
R+2N3cWs1AWtljULT0LO+oIIL499SVARkhLDiZvYWXxhpx5Q
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:03 2025 by rpki-client