Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22773.roa
File: AS22773.roa (raw, json)
Hash identifier: L0BPF9wd8Y3gHRoRKG/OanD1K/BLxmVBh4l2fHkkMYI=
Subject key identifier: C1:0C:DA:51:C5:FA:F9:04:33:6C:CC:F4:8C:C3:4D:D1:06:7D:98:D2
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6DB10CC7B7D043F8BD85EC53BB768875747AC257
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22773.roa
Signing time: Wed 01 Mar 2023 07:08:15 +0000
ROA not before: Wed 01 Mar 2023 07:03:15 +0000
ROA not after: Wed 28 Feb 2024 07:08:15 +0000
asID: 22773
IP address blocks: 181.214.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:b1:0c:c7:b7:d0:43:f8:bd:85:ec:53:bb:76:88:75:74:7a:c2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:15 2023 GMT
Not After : Feb 28 07:08:15 2024 GMT
Subject: CN=C10CDA51C5FAF904336CCCF48CC34DD1067D98D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:c1:89:fa:e9:88:fa:50:3f:c0:7d:69:89:
d2:d5:92:bb:41:b9:5d:c7:0c:db:b6:98:c6:8d:74:
8c:89:85:6f:c0:0b:bd:c1:b2:0e:00:bb:00:ed:2a:
57:4e:a6:9f:3a:89:0d:98:d1:f1:4c:ee:c2:76:44:
66:89:6e:26:19:9e:0a:42:0a:56:1d:f2:df:2e:a6:
3b:c2:1c:ad:c6:ed:45:1d:71:8b:c7:69:5e:bf:22:
91:15:ae:76:18:7d:5b:a8:c9:dc:16:ab:31:33:d8:
c8:89:27:8a:eb:37:6e:97:fd:9b:06:8a:cc:8f:ad:
d3:c0:48:4c:2b:03:1b:3d:d8:78:20:64:15:fe:2f:
21:11:1b:54:e8:c7:a1:8b:c6:4a:96:9c:2b:ef:e5:
f3:56:7f:66:e5:09:31:3a:92:ad:8d:56:ba:da:ad:
4d:44:2c:7a:fa:bf:d0:ea:72:a0:83:47:cc:3c:75:
65:f1:55:30:a0:8d:bd:01:6e:0d:fa:3b:6a:03:ae:
b0:b4:2f:f6:19:33:45:94:bf:52:4b:a4:4f:95:bb:
f3:e7:36:a6:32:97:94:06:0b:1b:f1:61:73:f3:30:
94:f6:68:e9:f9:26:19:b8:6c:b5:a5:0f:3f:f8:52:
0b:fe:12:50:11:81:5a:92:4e:3e:79:6b:4a:3f:9f:
25:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0C:DA:51:C5:FA:F9:04:33:6C:CC:F4:8C:C3:4D:D1:06:7D:98:D2
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS22773.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:cc:ca:46:ea:01:84:8a:09:31:5e:c6:d0:76:a4:25:83:e8:
6a:5f:3a:fe:0b:c7:31:e6:7c:c3:94:07:2f:57:4e:d6:45:df:
ff:e3:1a:d2:61:0e:4f:8b:0c:3f:e3:91:3d:80:e2:f7:27:5e:
d1:f8:4e:f4:c2:45:b0:4d:20:f5:82:f6:0d:d6:92:a3:83:83:
3e:e9:88:f3:8d:2e:9c:89:89:ef:43:7e:e6:ba:dd:d0:42:e8:
68:a8:2d:73:4a:46:7f:1d:18:10:dd:b6:c3:72:d2:cd:c9:65:
43:6c:eb:2b:ba:c7:c6:f7:d4:05:5d:3e:55:9e:2c:e5:c5:1d:
11:46:08:bd:34:f5:cf:1c:9f:01:cc:03:c6:34:df:86:1a:78:
d9:09:cd:d4:73:c3:01:d4:1d:45:a3:df:07:63:46:16:77:20:
b3:6c:e1:02:05:b1:ea:c4:ab:20:eb:b1:c4:05:f3:31:71:22:
e8:c7:6d:fb:98:86:a8:e4:2f:bc:c4:7f:65:7f:7e:0d:39:84:
ee:bc:17:45:70:fc:1d:03:a9:94:6f:f2:77:0a:9e:88:03:bb:
27:3a:3e:f5:8c:a8:f3:be:35:a1:31:93:b6:8a:44:9b:d4:db:
6f:58:5c:a5:03:ee:7a:89:2d:2f:44:07:d0:3b:96:bc:22:86:
26:f2:3d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:56 2025 by rpki-client