Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213305.roa
File: AS213305.roa (raw, json)
Hash identifier: 2hw/9ZGGr430uaxsZwxLuUBybTjnBtb55hgK2MIHTNg=
Subject key identifier: 7B:24:9C:34:BB:FA:09:03:F1:DA:B6:2E:A7:8C:3E:C0:57:56:4D:E8
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 25540BCECAECEDFB536F77B793AB5F0558B37F1B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213305.roa
Signing time: Thu 09 Mar 2023 14:58:27 +0000
ROA not before: Thu 09 Mar 2023 14:53:27 +0000
ROA not after: Thu 07 Mar 2024 14:58:27 +0000
asID: 213305
IP address blocks: 45.93.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:54:0b:ce:ca:ec:ed:fb:53:6f:77:b7:93:ab:5f:05:58:b3:7f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 9 14:53:27 2023 GMT
Not After : Mar 7 14:58:27 2024 GMT
Subject: CN=7B249C34BBFA0903F1DAB62EA78C3EC057564DE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:35:59:28:c0:14:8e:ac:f1:77:83:41:67:
8d:23:6d:08:bb:45:a6:8f:22:a8:b3:4f:cc:0c:a6:
c2:77:ef:29:03:b0:d9:c3:14:b3:a2:9c:6c:b4:e7:
fa:67:49:48:40:65:3f:6d:58:04:99:4a:b4:8c:39:
a0:b6:7e:d0:7e:8d:5d:6d:0e:8f:dd:29:92:21:c2:
e8:48:ce:e3:8c:57:2d:ef:ba:01:67:f7:65:3e:69:
0c:c1:42:c8:19:75:7e:79:52:57:09:ba:a1:87:0c:
2f:2c:2c:5d:47:72:64:f7:5d:a2:57:59:dd:d0:38:
5b:8d:77:81:7c:b9:c0:f9:8d:2c:01:e4:c9:ec:c4:
6f:b9:95:f0:dd:8b:6f:16:87:3b:da:ac:a8:77:4b:
a4:64:8d:af:fd:71:a1:1a:ba:0e:cd:52:38:1f:82:
17:47:5a:14:5f:93:88:af:bf:8b:89:b8:38:98:88:
35:6b:d4:46:34:ba:2b:f0:6d:3f:01:4e:80:fc:d9:
b0:2f:94:2e:97:67:84:75:64:1e:dd:9b:ce:cd:cb:
4e:f6:0d:33:e6:2d:a8:20:c1:de:07:29:29:b4:ae:
80:aa:e3:55:8c:54:56:4e:a4:98:92:ec:98:d2:80:
37:d4:2f:ad:e8:d4:ff:ea:77:06:95:8c:91:5a:6e:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:24:9C:34:BB:FA:09:03:F1:DA:B6:2E:A7:8C:3E:C0:57:56:4D:E8
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213305.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.47.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a7:4f:bc:2f:86:cc:f7:23:2c:01:84:59:b4:52:96:22:fd:
94:98:d8:f5:0e:7a:b1:30:a1:bb:db:f6:2e:fb:2d:78:9f:f7:
45:e3:6d:b4:15:2a:ea:77:42:2c:c9:23:df:8b:03:04:be:34:
50:30:51:9f:ec:25:1e:83:93:11:9a:7d:dd:12:70:e3:78:54:
96:23:56:13:42:bf:55:46:ff:91:c3:24:15:6c:6a:2f:b1:04:
73:9d:7a:e4:04:0a:13:0e:78:86:3a:40:31:f1:00:d0:1e:4e:
92:64:ce:7e:ab:c1:6e:54:e5:bc:f7:6d:81:eb:d6:cf:06:a4:
6d:41:ad:4e:7d:38:af:bf:b7:e0:53:65:01:f8:ea:1f:aa:70:
a0:b6:cb:3d:db:30:16:84:7f:59:5a:4e:56:68:cb:ea:f1:13:
80:f5:cc:96:b0:56:59:74:68:e6:f5:7d:8f:65:ce:a9:b5:5d:
b0:15:3f:9a:27:ea:7d:19:11:69:27:39:0b:74:c7:19:c7:b4:
34:ca:4d:78:27:8f:19:5f:bc:2c:d6:52:be:16:43:ef:49:c0:
6e:4b:5b:38:9a:3c:b7:34:e1:f2:f3:98:fd:7c:3d:9f:71:49:
5c:20:06:e6:53:a4:cf:54:9f:ca:85:a0:dc:ad:07:fe:b8:f2:
4a:a2:1b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:17 2025 by rpki-client