Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198883.roa
File: AS198883.roa (raw, json)
Hash identifier: lLTXPmBMfFM/vs4DbgzaJuuRhhJPG8gwYHYd42hgi/Q=
Subject key identifier: FF:FD:06:87:51:A8:50:1F:72:DB:A5:23:A9:9C:DE:5E:36:41:ED:43
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7A99A4E49DEAA04DBF14CA639E9E0D9E6771B999
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198883.roa
Signing time: Sat 03 Jun 2023 12:53:31 +0000
ROA not before: Sat 03 Jun 2023 12:48:31 +0000
ROA not after: Sat 01 Jun 2024 12:53:31 +0000
asID: 198883
IP address blocks: 2.57.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:99:a4:e4:9d:ea:a0:4d:bf:14:ca:63:9e:9e:0d:9e:67:71:b9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 3 12:48:31 2023 GMT
Not After : Jun 1 12:53:31 2024 GMT
Subject: CN=FFFD068751A8501F72DBA523A99CDE5E3641ED43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:23:54:08:01:79:5c:84:f7:9d:c2:23:0f:83:
e6:e0:7e:82:49:69:73:52:d9:d8:9a:46:2e:ea:c5:
58:c4:78:3e:80:44:fc:8b:36:6e:0b:df:31:21:04:
9e:6b:9e:10:06:c2:68:7e:98:b2:5d:3a:b1:ab:0a:
2e:86:fe:a0:c1:b6:da:d5:78:95:7a:27:53:3d:11:
bb:f2:79:d8:92:56:36:92:12:65:8d:37:56:4b:0c:
d1:f4:01:4b:36:8c:67:e9:d4:c9:ac:6b:8b:f0:7d:
4d:09:88:86:13:b3:2a:10:e4:4f:19:f5:d7:fe:97:
c4:b9:f6:ae:61:d1:c4:2a:7f:82:9b:d4:09:1c:97:
de:9e:b6:62:0d:23:3f:03:45:50:5b:18:05:a0:ac:
75:25:b3:c0:30:94:69:7b:02:9e:ee:84:8b:27:2f:
d2:b8:87:d0:61:8d:90:32:ee:31:9c:7a:ab:9b:7d:
22:35:d9:9f:cb:51:23:8a:53:ce:2b:fc:58:b6:a4:
7a:54:e7:bc:1b:f1:73:d1:f0:b4:9c:e5:1a:2b:a1:
3e:ca:99:6f:9b:13:f6:c5:aa:02:02:6f:2c:16:97:
17:24:f6:8f:26:13:0c:7b:aa:e8:55:d3:f9:7f:c6:
24:80:84:fd:d4:a3:73:bc:d1:e0:9c:4b:47:43:5c:
c5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FD:06:87:51:A8:50:1F:72:DB:A5:23:A9:9C:DE:5E:36:41:ED:43
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198883.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.18.0/24
Signature Algorithm: sha256WithRSAEncryption
87:86:76:21:d2:f8:b0:9f:19:bb:bb:7b:ff:89:86:75:be:d7:
11:36:4a:19:80:3b:e8:28:ad:00:9b:91:65:8f:16:11:b8:b4:
9c:e7:27:d9:5f:be:40:1d:49:98:9a:82:1e:47:eb:c9:4c:a9:
0e:83:7e:c9:14:f1:a6:87:b0:0a:d4:e5:2a:2e:e2:4b:79:af:
cb:f3:7a:00:bd:0f:f5:28:78:b4:83:db:fa:5d:b7:74:99:a6:
5f:65:81:e9:1a:11:e8:73:de:4e:57:ab:2d:94:1d:55:c8:8c:
59:aa:50:53:89:1e:97:2a:33:c5:cf:37:61:f2:29:8e:06:1c:
df:a2:8f:c7:6b:0c:8c:c7:f4:b9:d5:e9:49:07:80:52:15:86:
d3:58:a3:89:36:24:0e:0b:08:35:61:42:07:21:52:00:23:5b:
fe:26:5e:42:38:d1:b4:2f:9f:3c:52:4c:10:88:73:73:c0:4b:
59:29:98:26:d5:4a:92:82:e0:a8:c9:1f:ba:cc:bd:a1:80:fc:
a3:69:d6:22:7e:1d:54:ca:c2:4d:1c:f1:31:25:aa:26:2f:5c:
16:a1:ea:17:a2:2c:b3:61:e7:60:77:ea:01:c8:bd:2a:65:e8:
cc:71:c3:f6:22:62:44:c8:ca:06:a2:81:d3:5e:b0:ec:86:04:
19:cc:fa:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org