Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212027.roa
File: AS212027.roa (raw, json)
Hash identifier: R9lFW6RCrcy6acB4nCTvVgziChK/fGgaWnzK8DMFiF8=
Subject key identifier: 9E:EB:60:36:06:01:56:E4:9D:8F:B6:44:96:1E:D0:01:3C:85:9D:4C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3B05AD49FAEA4561F778FE9FC682464E35A4C7EB
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212027.roa
Signing time: Fri 06 Oct 2023 20:33:52 +0000
ROA not before: Fri 06 Oct 2023 20:28:52 +0000
ROA not after: Fri 04 Oct 2024 20:33:52 +0000
asID: 212027
IP address blocks: 191.96.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:05:ad:49:fa:ea:45:61:f7:78:fe:9f:c6:82:46:4e:35:a4:c7:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Oct 6 20:28:52 2023 GMT
Not After : Oct 4 20:33:52 2024 GMT
Subject: CN=9EEB6036060156E49D8FB644961ED0013C859D4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b0:ac:45:96:e2:60:12:66:e2:c9:9d:72:99:
ab:47:c1:50:4f:d4:c3:00:93:2e:10:94:f0:37:1b:
45:e7:9d:c8:27:28:40:85:f1:11:97:e6:a1:4c:2c:
9f:03:05:09:cf:e4:55:01:c8:9b:c6:fa:01:a5:59:
b7:86:2b:69:77:80:76:a5:3c:64:5e:80:ca:e2:51:
c3:fb:36:80:f4:60:3d:bb:97:af:8c:3d:c1:96:01:
38:00:ac:6e:cd:7a:b9:9b:2b:8c:00:fb:19:a8:52:
37:5f:3b:ed:db:c3:3f:8d:cf:8b:da:a3:75:e3:cf:
49:b3:59:a2:83:e5:8c:17:0b:45:54:59:e6:97:b1:
4a:85:6d:77:b6:a1:49:14:49:5e:ce:17:5a:93:cf:
41:51:11:eb:ba:3c:53:74:e3:96:87:ca:b9:7b:36:
2b:93:5e:37:78:8f:0c:09:50:41:99:66:ba:e0:52:
1e:ad:20:52:1f:c3:9c:1c:60:0f:43:60:86:20:4e:
56:39:a2:f3:82:9d:55:bb:bb:1e:9d:f0:fc:e8:4d:
b9:7b:4e:1a:47:5a:d8:cd:61:1c:a2:b4:23:f9:45:
6b:f9:46:62:a5:b2:4d:7a:10:9a:ec:a7:18:2b:78:
3e:e8:36:f6:66:47:98:ad:6c:4f:37:b2:00:19:b9:
f9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EB:60:36:06:01:56:E4:9D:8F:B6:44:96:1E:D0:01:3C:85:9D:4C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212027.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:4e:cc:87:25:f5:04:02:f3:82:f0:f9:5e:9d:8a:ec:93:69:
72:f2:5a:70:5a:1f:ea:8c:10:be:f8:be:2c:0c:bf:29:3a:3a:
ac:f9:4d:fc:2d:23:20:d4:62:e4:95:36:13:b2:92:03:fd:7b:
68:ef:1d:fd:5c:c2:54:3d:81:71:d3:24:c7:f4:1e:b0:cb:c6:
57:cb:ae:f6:f9:c0:ae:cd:49:cd:72:7a:05:56:d1:26:49:e9:
09:76:7a:ee:de:34:94:d6:30:a3:c8:04:c7:89:94:9e:91:c2:
3d:79:d4:bf:1b:80:10:62:19:07:0f:eb:bb:31:57:7f:b5:27:
c2:d5:e8:5d:89:24:cf:7e:5a:84:ec:dc:ce:52:99:f8:02:03:
f1:d2:08:86:47:7c:ed:89:2e:69:ee:cc:ea:56:52:e8:b3:5d:
96:66:e7:b5:44:1b:17:f8:56:f8:a1:ad:ff:59:8f:76:8a:ae:
18:6e:61:ec:20:db:01:66:b8:40:31:03:28:43:d8:8a:30:bc:
f6:44:39:c2:a3:38:9d:fc:6d:54:d2:b3:2c:e6:6d:87:38:fb:
4f:ad:b4:9f:ee:11:e5:45:f7:63:5f:96:27:aa:8f:97:a8:64:
89:a1:3c:6c:e3:a2:50:b4:56:04:06:bb:9a:34:11:81:e0:39:
97:dd:50:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:58 2025 by rpki-client