Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS208287.roa
File: AS208287.roa (raw, json)
Hash identifier: qxgUi1H0+2y4kVcAzn/DFa64LtURx5Y9f0bViXDVKhU=
Subject key identifier: 27:40:B7:ED:91:24:74:5D:71:39:5F:E2:73:C5:8C:68:94:B0:08:EB
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2C0AA592DDC8A1C8B0F34C90282B6F3CBFB87150
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS208287.roa
Signing time: Sat 12 Aug 2023 11:30:06 +0000
ROA not before: Sat 12 Aug 2023 11:25:06 +0000
ROA not after: Sat 10 Aug 2024 11:30:06 +0000
asID: 208287
IP address blocks: 191.96.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:0a:a5:92:dd:c8:a1:c8:b0:f3:4c:90:28:2b:6f:3c:bf:b8:71:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 12 11:25:06 2023 GMT
Not After : Aug 10 11:30:06 2024 GMT
Subject: CN=2740B7ED9124745D71395FE273C58C6894B008EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a3:f9:11:a2:c5:8c:a1:5c:32:cf:d3:ec:19:
49:3b:90:00:e4:61:98:66:8a:1c:64:cd:77:c8:8e:
36:4d:00:32:3a:f2:51:74:bf:d4:5c:57:13:46:81:
f2:89:be:95:cb:c4:66:8b:2c:8f:b3:24:f5:9a:69:
f6:a7:54:3d:f1:39:26:cc:2f:26:c6:97:c0:1c:87:
4f:80:25:71:68:93:21:53:c2:19:70:77:f2:00:dd:
2a:fc:75:0f:c8:5e:71:32:e0:8d:08:ea:6d:f6:aa:
4c:ef:56:c2:21:9e:c2:82:fd:0d:5c:25:c4:50:5b:
40:47:60:69:83:be:65:e0:67:44:2d:bd:e5:88:86:
57:2e:51:50:5f:82:15:09:18:d9:75:41:f8:53:91:
ce:08:51:18:17:a5:31:ca:08:6f:e6:ec:53:fe:94:
61:af:d5:48:dd:69:f7:48:a4:fb:d4:00:4d:4f:db:
01:da:58:85:80:91:5d:3d:28:aa:3a:7d:24:e7:c8:
64:ee:3d:88:36:80:67:d9:b8:d8:ab:e9:a9:c9:35:
49:20:10:27:f6:f6:39:a6:76:95:a6:16:4c:38:d1:
66:bf:d4:f6:f2:57:ff:5a:9d:fc:24:d8:d1:9e:18:
b7:33:e7:8f:dc:28:7b:a7:19:0e:dd:3b:0f:bd:39:
3a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:40:B7:ED:91:24:74:5D:71:39:5F:E2:73:C5:8C:68:94:B0:08:EB
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS208287.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.85.0/24
Signature Algorithm: sha256WithRSAEncryption
43:70:0e:79:5f:7f:7b:7d:6e:77:b4:ef:e6:f9:35:f8:01:32:
a6:6a:28:1c:c3:b3:d8:a1:35:54:13:92:56:18:48:e9:80:6b:
f1:37:77:f4:fd:a6:5b:21:6d:dc:0b:fc:c7:ed:8c:ab:55:5e:
c2:fc:4b:4f:59:d9:f7:60:20:ff:34:41:7b:cb:21:16:73:a4:
33:1d:9f:40:52:c4:db:82:6a:af:91:e3:cf:04:32:38:fa:03:
8a:4d:10:3e:c1:92:ba:24:8d:af:e5:aa:85:57:5f:87:c5:51:
33:f2:a0:10:45:2d:68:34:02:75:ff:64:cf:6f:7f:1b:10:94:
a6:66:06:d0:b2:fa:4f:32:cc:b7:fe:8d:8f:72:09:45:8d:86:
2d:c0:c8:29:93:18:dd:54:f7:e6:db:32:d6:0f:63:9f:78:43:
12:7e:e0:e7:1a:33:68:62:2c:e0:f2:41:7f:55:08:2d:dd:06:
26:54:08:82:92:b6:19:88:1a:31:8e:29:26:fb:12:ea:f4:07:
c4:89:9f:7b:83:de:84:d9:15:cd:f6:d4:58:d3:60:b9:3e:d5:
18:6d:b2:77:0f:f5:18:5b:39:5c:b1:02:66:c7:0f:1e:f4:c9:
14:56:b5:b4:e7:ae:68:ba:ac:90:9e:5d:b3:8a:40:a1:07:c2:
fe:d5:b5:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:12 2025 by rpki-client