Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198267.roa
File: AS198267.roa (raw, json)
Hash identifier: 1UqKIbNX7s/jyrXgZlyimLUurChEVsnaW4M6mlKlT8c=
Subject key identifier: 4C:06:DA:81:F5:CA:1C:65:04:29:EF:13:6E:DC:95:D4:D5:B0:06:17
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2958C5CA713E4AAEF06306FFAEEFA992CF253313
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198267.roa
Signing time: Sat 10 Jun 2023 10:30:29 +0000
ROA not before: Sat 10 Jun 2023 10:25:29 +0000
ROA not after: Sat 08 Jun 2024 10:30:29 +0000
asID: 198267
IP address blocks: 191.101.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:58:c5:ca:71:3e:4a:ae:f0:63:06:ff:ae:ef:a9:92:cf:25:33:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 10 10:25:29 2023 GMT
Not After : Jun 8 10:30:29 2024 GMT
Subject: CN=4C06DA81F5CA1C650429EF136EDC95D4D5B00617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:de:bc:a1:a1:ed:3c:8c:51:9f:39:03:4c:17:
8c:83:6c:9f:cb:bc:12:4c:dd:79:43:07:fb:df:96:
67:a4:a6:f7:10:93:0b:3e:06:aa:c2:5c:8f:b6:dc:
50:a4:b0:24:12:07:f4:84:fd:14:c8:63:97:49:4a:
83:9e:11:30:d0:f2:c2:71:e5:4c:94:62:e8:8b:88:
fe:98:34:8d:57:e1:09:28:6d:d2:85:b1:99:62:79:
79:5d:ea:00:c0:1d:c8:af:50:1f:e1:f8:e8:57:82:
75:93:ea:82:c9:6b:1a:86:99:7b:ca:46:a3:0f:0e:
ff:92:98:05:4c:df:b0:5e:25:0e:61:55:ec:f1:8a:
06:58:af:03:7c:b3:9f:8e:0b:41:8d:71:ed:73:9f:
d9:1b:3e:b6:7a:ed:fc:2e:f0:24:a7:5d:63:f4:e8:
c9:1c:9e:9e:c1:ec:29:3a:9f:2e:32:87:18:32:7e:
b9:95:65:16:4a:69:17:23:7a:73:0e:27:0c:d5:e5:
c3:a7:3b:fb:55:e0:8f:fe:17:40:ec:45:fd:ba:df:
39:a2:db:69:4b:1e:3e:fa:80:02:f8:04:40:b0:0f:
b3:e0:67:03:e6:a8:5d:2e:2d:b9:f9:84:ce:58:a6:
c6:8e:83:37:ae:bf:75:12:87:4f:a1:34:77:f3:e9:
06:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:06:DA:81:F5:CA:1C:65:04:29:EF:13:6E:DC:95:D4:D5:B0:06:17
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.77.0/24
Signature Algorithm: sha256WithRSAEncryption
00:af:66:74:f1:29:d9:69:6a:be:71:6c:f6:3e:6a:af:46:14:
4a:fd:65:fb:68:25:ea:2e:3c:62:52:f2:9e:ef:e0:62:1b:64:
12:31:71:3c:a3:0e:46:49:9b:94:67:e8:3b:87:f3:34:f6:7a:
3d:6b:d7:25:a3:b0:a3:5f:15:38:dc:30:12:ec:d5:f9:07:9c:
69:fd:46:67:dd:30:3d:54:9c:79:bf:f2:63:5a:9e:3f:f7:3f:
f4:cd:98:57:fb:5b:f4:a3:47:bc:da:98:bf:ac:53:23:eb:a2:
70:cf:27:df:f2:f0:45:4a:d8:a7:7f:66:52:41:f5:33:0d:91:
48:91:ac:64:f8:72:03:e3:4c:1c:30:41:25:2f:97:52:63:b0:
ac:6b:8d:a9:b1:10:92:26:23:a4:5a:6a:18:54:a9:ca:e6:bd:
6c:cf:9b:ec:24:6b:ef:0c:4a:4c:46:5c:df:74:19:e1:fb:19:
2b:96:9f:7b:97:75:3b:12:c5:7e:c6:9f:b0:52:95:4c:42:23:
52:c3:91:56:8f:10:ba:29:ed:25:4c:3a:90:f9:ec:76:ee:6f:
90:19:7b:d0:8d:50:8f:a5:bf:c0:a1:d7:5a:9c:11:3d:8d:d7:
aa:7b:71:41:7a:b6:c6:05:2b:5c:87:5f:ae:73:3c:1f:71:ce:
00:bf:81:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:32 2025 by rpki-client