Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216091.roa
File: AS216091.roa (raw, json)
Hash identifier: N77LiI3G6hjUplre+Vm+AzqZKptv6pEbZnxgoId1txk=
Subject key identifier: 51:CB:9A:18:5C:D0:53:72:2D:6F:D0:09:43:FF:62:39:23:6D:84:FF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1056775AE79A3B15C48E60F13E68BE5E633DCC9D
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216091.roa
Signing time: Fri 08 Dec 2023 14:33:59 +0000
ROA not before: Fri 08 Dec 2023 14:28:59 +0000
ROA not after: Fri 06 Dec 2024 14:33:59 +0000
asID: 216091
IP address blocks: 191.101.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:56:77:5a:e7:9a:3b:15:c4:8e:60:f1:3e:68:be:5e:63:3d:cc:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 8 14:28:59 2023 GMT
Not After : Dec 6 14:33:59 2024 GMT
Subject: CN=51CB9A185CD053722D6FD00943FF6239236D84FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2b:07:3b:89:bb:b4:8f:34:fc:cc:dd:d8:51:
bb:a5:40:ee:15:85:b2:0a:d0:ed:c7:16:77:30:89:
1c:a1:01:1f:53:39:51:58:da:6e:49:56:86:79:c9:
5f:99:09:7b:46:c4:37:b7:24:03:16:a0:bf:da:8a:
28:d4:b2:a9:4b:75:98:76:42:06:e2:a9:f8:44:03:
74:93:b2:e3:71:da:3f:a3:a1:1e:cf:1d:76:d5:57:
30:c6:03:45:31:ae:b1:dc:dd:81:51:6e:d1:e3:20:
13:90:d1:e9:e6:04:e0:0e:30:49:06:0b:a2:4c:4b:
31:8b:f3:0d:56:56:87:0e:5b:7a:bc:3e:4a:28:98:
89:55:4d:32:d5:d0:0b:de:42:dd:ec:5b:d2:2d:bb:
c1:f7:15:8d:23:d9:b4:f5:8a:36:cc:b1:d9:e4:cb:
fb:c8:4a:aa:61:f8:54:9c:8c:29:a4:97:8c:d8:d9:
4f:1a:a9:ec:ed:de:a6:d7:c8:1b:01:ab:0c:5a:55:
00:b1:31:06:04:c3:d3:4a:d0:f7:f1:fb:14:04:14:
73:04:fe:8d:c1:bf:98:8a:d2:7c:a4:42:52:86:db:
2f:ce:14:9a:af:bc:58:aa:99:87:3b:6d:d3:58:94:
09:0d:92:17:9c:dd:e2:ec:b6:ac:d2:4d:1f:c6:a7:
36:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CB:9A:18:5C:D0:53:72:2D:6F:D0:09:43:FF:62:39:23:6D:84:FF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216091.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.25.0/24
Signature Algorithm: sha256WithRSAEncryption
28:03:d5:19:3e:1e:7a:a6:7c:f5:ca:79:e8:cc:2c:36:c1:09:
f9:ea:0c:6d:38:33:ba:e2:24:56:f7:03:4d:16:b6:93:5a:a9:
90:98:69:5c:25:18:c3:64:51:f4:5b:7b:ee:5e:7e:31:31:bf:
b8:83:e3:b1:07:4f:70:37:84:21:09:d4:cb:1b:2a:57:f1:8d:
a8:ba:3f:bf:fb:ee:9c:39:82:06:e3:86:08:a1:dd:59:d8:0d:
e4:47:9f:4c:00:61:23:ff:15:7a:ea:73:d8:bc:8b:62:52:08:
d6:19:b9:55:3d:91:ef:37:49:03:dc:94:81:a4:20:0c:46:a3:
be:e7:29:f8:15:b7:85:7a:b4:23:b1:f3:3c:ba:e3:72:5b:33:
76:53:eb:43:2f:16:81:48:93:d1:57:31:f3:25:e3:95:86:1b:
32:7e:2c:38:74:77:98:07:de:57:86:99:d4:57:04:d1:ef:81:
6c:d8:38:92:b1:3f:6d:84:50:8f:84:fd:a2:38:16:ca:19:29:
c1:05:97:ab:42:a5:48:b3:df:e5:d2:94:f1:62:8f:74:b3:1b:
90:df:6a:59:58:42:c4:50:9b:46:ae:b6:b0:2a:f9:fa:8f:f7:
ec:16:f5:dd:b4:21:c0:7f:84:01:7a:91:94:4b:fc:3b:40:c4:
4c:9a:05:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:25 2025 by rpki-client