Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204774.roa
File: AS204774.roa (raw, json)
Hash identifier: T5G9Y5+XOT73OhQumUm57CNRABYF5DO7A1flhKaMMic=
Subject key identifier: FB:30:C5:48:B1:A3:4B:39:48:8F:20:D2:20:14:69:62:7C:D6:79:F2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 640B14F3233EFE38078EE103BBA80F9B71322990
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204774.roa
Signing time: Fri 17 Mar 2023 11:41:22 +0000
ROA not before: Fri 17 Mar 2023 11:36:22 +0000
ROA not after: Fri 15 Mar 2024 11:41:22 +0000
asID: 204774
IP address blocks: 179.61.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:0b:14:f3:23:3e:fe:38:07:8e:e1:03:bb:a8:0f:9b:71:32:29:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 17 11:36:22 2023 GMT
Not After : Mar 15 11:41:22 2024 GMT
Subject: CN=FB30C548B1A34B39488F20D2201469627CD679F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:db:7e:9b:25:7b:9c:d3:7a:92:64:5c:8f:06:
69:98:ef:ba:ce:44:6e:72:bb:82:e2:04:ae:80:09:
50:70:9b:f4:f9:a3:2c:00:16:7d:34:00:e5:1c:89:
f3:be:11:32:42:34:3a:21:a2:2d:9d:cd:a3:37:17:
6d:db:53:e1:37:2f:71:cf:c8:a2:16:fc:ef:a6:c0:
c8:9a:14:73:a3:2d:51:88:93:d3:03:7f:df:ca:39:
a3:47:ac:86:4e:29:98:6e:ed:7a:ba:eb:c0:b5:00:
08:71:95:e5:6a:b2:69:03:67:08:4e:4a:65:bb:13:
a9:45:0e:82:14:ed:86:33:b7:23:ab:1e:c7:68:28:
67:7c:8f:c9:90:8e:bc:66:cd:d1:66:3e:ca:47:9f:
a5:66:a5:df:29:7d:68:48:ef:0c:c4:a0:81:05:ec:
4b:ae:74:4e:5f:66:16:67:37:8d:22:0d:13:e8:9b:
45:06:73:df:35:91:24:f4:62:f4:e2:05:31:8c:96:
31:ae:9a:3b:1f:0f:b8:a7:21:fa:0d:4e:36:17:da:
17:85:c4:79:bb:60:11:63:eb:24:fc:e2:43:90:4b:
0c:ee:72:4b:71:67:1d:35:bf:06:cf:f0:97:8b:04:
fc:50:7c:29:62:bd:0d:58:3b:58:2c:2a:c2:c6:b9:
0b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:30:C5:48:B1:A3:4B:39:48:8F:20:D2:20:14:69:62:7C:D6:79:F2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204774.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.153.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e4:f4:84:c3:8e:87:ce:a0:af:39:2e:a9:bd:21:6f:ec:11:
cf:88:48:87:73:c7:5d:60:bb:67:73:50:d7:b7:4a:3d:72:07:
01:5a:77:91:48:25:7d:bc:52:00:81:70:a9:7b:cd:b4:2e:68:
00:1d:99:3c:c2:73:4d:0d:c0:0c:5c:7a:a2:5c:02:d6:67:b0:
12:2b:b1:ff:e6:c1:9d:15:34:e8:95:df:2c:92:c7:6d:b6:dc:
db:99:56:aa:6f:55:ac:39:6b:57:7c:16:17:dd:d7:24:ae:48:
71:3c:3e:bf:37:b8:08:12:6b:4b:12:d0:4c:25:fa:84:6c:64:
dd:0c:c3:ca:1b:09:a7:04:7e:d1:43:91:5d:e3:c1:4a:94:8a:
2e:fb:b6:10:14:4f:99:50:11:58:1a:17:5b:16:46:5b:60:79:
07:90:36:ae:12:45:0e:9f:78:a2:61:17:a7:74:55:1d:35:0d:
00:dd:25:71:02:71:91:98:62:7f:84:32:83:87:14:2e:c7:85:
ea:c0:13:23:23:c8:19:68:54:95:64:a3:40:ce:a7:5d:7f:3a:
74:44:42:e0:ea:ef:31:87:0f:74:ea:74:0a:55:e8:fe:0d:6c:
96:42:3f:cc:25:6e:fb:5a:0c:a5:46:ca:c9:92:16:79:84:23:
c0:1e:19:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:06 2025 by rpki-client