Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213382.roa
File: AS213382.roa (raw, json)
Hash identifier: 4A+aVso67pZURlbigOn8v7GJt9zvx58Thd4t3g8s+rI=
Subject key identifier: 04:A2:F4:34:FF:3D:17:CA:37:0F:36:21:58:39:00:00:AD:BC:15:94
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5F4EAC81EBDE000DC7D49D5B59935CE6A55C61FB
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213382.roa
Signing time: Wed 01 Mar 2023 07:08:14 +0000
ROA not before: Wed 01 Mar 2023 07:03:14 +0000
ROA not after: Wed 28 Feb 2024 07:08:14 +0000
asID: 213382
IP address blocks: 185.170.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:4e:ac:81:eb:de:00:0d:c7:d4:9d:5b:59:93:5c:e6:a5:5c:61:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:14 2023 GMT
Not After : Feb 28 07:08:14 2024 GMT
Subject: CN=04A2F434FF3D17CA370F362158390000ADBC1594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a6:ce:cb:39:50:a7:b2:34:1e:36:9c:db:ae:
60:36:3a:cb:86:2a:51:bd:68:9f:22:d8:c9:48:33:
16:e9:bb:bc:74:54:43:06:ee:6d:ae:2c:db:e8:6e:
f3:1f:ed:3b:bc:ea:f8:da:1c:aa:7a:0b:4c:09:62:
d3:a0:4a:46:ea:77:a4:49:1f:5d:de:60:02:a1:1f:
7b:63:7f:bd:b2:02:b9:ad:91:e8:8c:11:3f:d5:34:
af:3b:cb:41:58:01:e2:d7:3f:bc:e0:02:d8:ad:8f:
f9:02:9b:13:3b:e8:24:8b:b9:f4:49:70:a6:b0:f0:
f2:bc:10:73:dc:86:02:2b:c2:0d:27:d9:77:26:10:
6f:21:43:f9:2b:40:db:85:1b:96:8a:42:a7:69:56:
a1:bc:20:55:68:58:14:0c:39:e6:1c:10:bc:76:58:
68:12:8a:d6:ea:34:c3:25:9e:3f:3f:49:bb:6a:24:
59:a8:56:8e:14:ab:14:4d:7a:16:f2:43:c4:8a:28:
c2:d1:e7:ae:b3:41:51:19:56:f8:6b:d0:da:39:cd:
a8:bd:0f:81:3e:4d:bb:a9:d0:5b:d4:d2:0e:06:0a:
ff:16:b7:49:e5:1c:bc:8b:c2:87:e9:f9:35:7f:9b:
93:51:a6:bc:cc:33:88:df:5f:81:a8:c4:fb:26:8a:
ef:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A2:F4:34:FF:3D:17:CA:37:0F:36:21:58:39:00:00:AD:BC:15:94
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213382.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.58.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c5:23:42:1f:2a:b7:2b:31:f1:b3:54:2c:9a:f8:46:7c:9c:
dd:bb:af:69:d2:06:a0:f0:38:53:77:90:81:30:d3:eb:70:13:
27:3d:11:05:ee:cf:1e:cd:06:c1:2e:eb:19:4c:8b:bd:51:61:
67:d2:82:47:90:94:79:c7:a9:29:cc:57:34:e8:3a:2e:68:3f:
93:ca:24:0f:ba:c4:f9:7b:cf:78:e7:0e:74:03:35:95:54:98:
ac:65:50:4e:70:ac:d7:ff:9b:d4:b9:a2:9e:e2:52:50:2d:2d:
52:c9:7f:b5:1d:c1:19:e2:00:18:bd:57:7a:ff:15:fb:d3:77:
5b:79:6c:ea:27:35:33:01:ca:ce:c1:42:38:af:a7:66:25:8a:
bc:19:aa:64:fe:fa:e2:74:7d:2a:82:3f:9d:b0:e4:5c:90:8a:
6d:50:d4:49:a4:9c:27:cd:84:f9:44:0d:1a:47:4a:d9:f6:c3:
97:7d:ab:cf:54:fd:d2:b9:8c:d8:69:c7:35:81:6c:35:b0:e7:
46:74:77:d4:0b:0e:d4:4d:6a:d9:49:86:25:c3:e4:17:fc:f5:
af:e1:4f:55:2f:d0:9a:81:0a:f5:3e:e8:5b:d2:d2:73:b8:92:
08:27:87:d9:18:30:c8:78:22:ab:ed:47:a6:60:ec:d8:b9:33:
5f:ab:ba:6b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUX06sgeveAA3H1J1bWZNc5qVcYfswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzAzMDEwNzAzMTRaFw0yNDAyMjgwNzA4MTRaMDMxMTAvBgNV
BAMTKDA0QTJGNDM0RkYzRDE3Q0EzNzBGMzYyMTU4MzkwMDAwQURCQzE1OTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgps7LOVCnsjQeNpzbrmA2OsuG
KlG9aJ8i2MlIMxbpu7x0VEMG7m2uLNvobvMf7Tu86vjaHKp6C0wJYtOgSkbqd6RJ
H13eYAKhH3tjf72yArmtkeiMET/VNK87y0FYAeLXP7zgAtitj/kCmxM76CSLufRJ
cKaw8PK8EHPchgIrwg0n2XcmEG8hQ/krQNuFG5aKQqdpVqG8IFVoWBQMOeYcELx2
WGgSitbqNMMlnj8/SbtqJFmoVo4UqxRNehbyQ8SKKMLR566zQVEZVvhr0No5zai9
D4E+Tbup0FvU0g4GCv8Wt0nlHLyLwofp+TV/m5NRprzMM4jfX4GoxPsmiu+LAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUBKL0NP89F8o3DzYhWDkAAK28FZQwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjEzMzgyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuao6
MA0GCSqGSIb3DQEBCwUAA4IBAQAzxSNCHyq3KzHxs1QsmvhGfJzdu69p0gag8DhT
d5CBMNPrcBMnPREF7s8ezQbBLusZTIu9UWFn0oJHkJR5x6kpzFc06DouaD+TyiQP
usT5e8945w50AzWVVJisZVBOcKzX/5vUuaKe4lJQLS1SyX+1HcEZ4gAYvVd6/xX7
03dbeWzqJzUzAcrOwUI4r6dmJYq8Gapk/vridH0qgj+dsORckIptUNRJpJwnzYT5
RA0aR0rZ9sOXfavPVP3SuYzYacc1gWw1sOdGdHfUCw7UTWrZSYYlw+QX/PWv4U9V
L9CagQr1Puhb0tJzuJIIJ4fZGDDIeCKr7UemYOzYuTNfq7pr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org