Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206074.roa
File: AS206074.roa (raw, json)
Hash identifier: BRUBfUz1p00hP6iqFF9ZZCCQfvmyL5+15xhfpuMIt2c=
Subject key identifier: 4A:C3:23:D0:2C:DA:9C:3F:85:A0:98:5B:50:32:97:92:88:52:2E:F9
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 061853A7C9C8B20F1616BC98EA024E0D54D4DD16
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206074.roa
Signing time: Wed 01 Mar 2023 07:08:20 +0000
ROA not before: Wed 01 Mar 2023 07:03:20 +0000
ROA not after: Wed 28 Feb 2024 07:08:20 +0000
asID: 206074
IP address blocks: 2a0a:4e83:120::/48 maxlen: 48
2a0a:4e83:f24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:18:53:a7:c9:c8:b2:0f:16:16:bc:98:ea:02:4e:0d:54:d4:dd:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:20 2023 GMT
Not After : Feb 28 07:08:20 2024 GMT
Subject: CN=4AC323D02CDA9C3F85A0985B5032979288522EF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:8a:8f:62:82:a7:f5:f2:51:69:b6:0d:52:
bb:6d:9c:35:d4:50:a0:79:a4:41:9b:4f:68:24:e4:
16:40:a0:fe:d7:49:45:97:54:84:70:b8:1e:a8:5c:
78:57:a3:fd:f5:08:4f:94:e5:c7:e9:81:41:b4:8a:
75:98:c2:ff:3a:b4:cb:54:11:31:8c:b5:8f:25:ba:
aa:c8:0c:07:80:38:4d:2e:83:4b:db:2b:01:35:92:
24:a6:ee:6a:80:ec:a5:7d:50:f8:d5:9f:c2:69:7f:
e0:3f:fe:b7:18:bc:37:c1:08:2a:54:55:70:2f:4d:
84:c8:9d:d4:31:3c:62:62:97:2d:47:55:3a:b0:c0:
9f:85:66:39:c6:09:f7:19:b9:27:de:33:19:c8:d7:
79:6c:1c:4c:e4:21:22:bd:6d:87:a4:03:3b:85:80:
f9:3e:95:da:ea:b0:3f:ae:9c:a9:84:e3:d2:7e:e4:
d3:e7:b3:0c:40:df:50:9f:e3:21:d1:0d:0e:e6:90:
01:2e:89:f6:ee:d9:2e:da:23:32:cf:37:42:aa:f2:
e9:a8:da:b6:fe:3d:e0:9f:3b:b1:e5:d5:09:9c:ed:
12:c8:bd:1c:3b:87:8a:e0:47:82:96:84:9b:47:4e:
fc:95:39:f3:f7:94:5b:d7:49:fc:6e:37:c3:98:24:
0c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C3:23:D0:2C:DA:9C:3F:85:A0:98:5B:50:32:97:92:88:52:2E:F9
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206074.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4e83:120::/48
2a0a:4e83:f24::/48
Signature Algorithm: sha256WithRSAEncryption
4e:00:14:89:dd:a4:1a:32:45:08:c2:9b:36:0a:1d:d9:87:63:
63:cb:1f:97:64:85:a7:aa:40:2b:19:e2:ec:81:19:31:e5:5c:
b7:5a:e3:e4:a0:4c:c8:54:b1:e2:71:c4:07:09:d5:74:0e:0c:
51:32:24:0a:ec:15:62:31:d1:04:e5:4c:19:5f:94:cc:e5:50:
b1:f7:55:7d:5d:ca:8f:b3:de:a3:a2:e5:df:eb:2f:b4:30:2a:
d4:16:a6:2b:6a:cb:d9:d0:ae:0b:73:03:42:d0:83:88:3b:04:
36:d6:82:da:d7:1d:d6:e7:f1:ec:07:f5:72:dd:1f:6c:43:9c:
e3:1c:48:6b:01:ed:da:e4:69:19:3e:40:f7:a3:ce:10:da:aa:
1c:b9:5b:c6:0c:98:76:0f:5e:65:a2:53:9d:49:03:8e:23:35:
25:6a:d4:61:76:f6:4b:a1:3e:6d:ac:e2:c6:b4:06:0d:a5:00:
4e:bf:26:17:ed:17:b4:73:f8:f8:f3:0e:76:15:a7:80:e0:b4:
84:4c:9e:e8:e1:98:fd:ba:12:5e:de:b7:79:0e:e9:e5:06:cc:
d5:b7:b3:d8:d0:cf:7f:8d:13:ce:b9:70:ad:75:eb:0c:3f:97:
af:83:36:07:6e:3b:95:8e:1a:5f:04:70:3b:6d:d5:6e:4e:75:
c8:af:0b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:14 2024 by rpki-client on console-fra.rpki-client.org