Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS150303.roa
File: AS150303.roa (raw, json)
Hash identifier: Kl4zQ5Su5PDq7jrJ2U3y1rkNpXwAMl95POWIJio4mws=
Subject key identifier: 79:51:A5:F6:B9:03:B4:43:99:FB:74:BA:37:A4:27:A3:01:8F:A6:1A
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 46A849D7ABE2FB28E372B48F4A4CF3FD965D1FC4
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS150303.roa
Signing time: Fri 31 Mar 2023 17:37:55 +0000
ROA not before: Fri 31 Mar 2023 17:32:55 +0000
ROA not after: Fri 29 Mar 2024 17:37:55 +0000
asID: 150303
IP address blocks: 181.214.180.0/24 maxlen: 24
191.101.112.0/24 maxlen: 24
191.101.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:a8:49:d7:ab:e2:fb:28:e3:72:b4:8f:4a:4c:f3:fd:96:5d:1f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 31 17:32:55 2023 GMT
Not After : Mar 29 17:37:55 2024 GMT
Subject: CN=7951A5F6B903B44399FB74BA37A427A3018FA61A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:93:76:c2:17:dd:18:37:1e:e1:1a:73:d7:d3:
46:5b:9e:68:3d:5d:bb:b0:c7:76:57:73:73:47:a6:
b4:d6:de:c0:6f:4f:0e:04:52:e2:04:8a:ba:90:0b:
3c:71:40:4f:56:f5:8e:c3:33:60:1c:07:7e:28:15:
6c:0c:11:e8:b3:cd:6a:af:b8:9d:89:ae:36:8d:57:
25:46:d7:56:cc:a7:12:c2:91:2f:20:9c:c5:bd:69:
72:fa:13:b2:66:21:12:62:d8:13:42:32:6c:32:a8:
e6:f0:38:58:74:d7:5a:2e:e2:85:97:58:c9:0b:54:
56:26:4e:9c:3c:da:5b:a7:93:e2:88:fc:7f:58:ec:
94:25:8d:b6:96:57:a4:cb:58:94:92:63:12:e3:46:
af:a4:8b:44:a8:b3:13:49:11:79:5b:3f:c0:66:18:
5c:7b:de:87:6b:7f:33:41:68:42:d5:28:ae:a6:12:
10:cd:b3:04:ea:22:f6:d3:2a:02:7b:7f:f6:b1:64:
ad:ce:6f:f5:f0:58:b5:d9:39:18:8c:78:e1:bb:a0:
b9:20:55:3a:4f:e2:64:c9:02:14:a4:6a:35:23:d4:
85:1f:81:ef:40:2e:e1:50:74:b9:96:55:e1:c8:37:
c4:b1:34:0f:d2:f2:63:f0:a0:dd:f6:74:20:12:77:
fd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:51:A5:F6:B9:03:B4:43:99:FB:74:BA:37:A4:27:A3:01:8F:A6:1A
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS150303.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.180.0/24
191.101.112.0/24
191.101.122.0/24
Signature Algorithm: sha256WithRSAEncryption
41:82:25:a8:dd:b4:c8:6d:be:57:29:4e:de:5c:dd:82:29:fd:
cd:9f:fc:95:b4:2f:6e:44:c0:0b:d8:42:4c:af:00:74:8e:cb:
88:71:0d:df:71:41:af:f7:fe:b6:a0:a0:0f:ca:f8:a0:e3:79:
a8:5c:e8:47:0c:b1:00:2e:af:97:46:c0:b5:a0:96:e2:48:3c:
d2:24:f0:aa:c2:07:49:98:ba:1a:6f:7a:50:47:3d:36:ac:bf:
a7:8d:ad:92:f1:be:ad:d1:9b:c4:07:73:be:2a:2e:46:0e:7d:
af:4a:22:39:80:16:07:b9:a7:3f:3e:42:dd:77:f9:13:2c:c3:
31:33:89:ed:a2:98:4d:6b:09:cd:a4:75:3a:17:05:1a:19:41:
df:c0:03:d7:dd:4c:57:8c:83:9e:e6:79:ba:39:eb:41:13:3e:
78:a8:a9:50:a8:12:c4:cc:7f:f6:83:d5:d3:fe:52:26:7c:c4:
1d:01:09:c2:69:d6:53:90:5e:4f:2d:fb:de:af:39:1e:f1:41:
c1:5b:ec:a8:b4:f8:37:fb:dc:26:e2:cb:a5:23:da:0c:0c:20:
c7:b4:88:14:e3:24:f9:6e:3a:b0:47:61:3e:4d:a6:39:b4:0e:
7e:46:d8:d4:40:c1:09:50:a4:e0:c2:e7:89:b8:37:4a:75:80:
8f:88:2b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:14 2024 by rpki-client on console-fra.rpki-client.org