Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS2518.roa
File: AS2518.roa (raw, json)
Hash identifier: NwmiZRFMVMF2VXdjhY3UhPLntc57RJFv6erFysT17u8=
Subject key identifier: 0B:7A:84:B6:29:90:45:81:60:EA:58:01:9F:9C:74:9D:67:99:1C:3C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1883A191FA6BD0AB1A2181D45383D3C77EF1E33F
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS2518.roa
Signing time: Wed 31 May 2023 20:26:10 +0000
ROA not before: Wed 31 May 2023 20:21:10 +0000
ROA not after: Wed 29 May 2024 20:26:10 +0000
asID: 2518
IP address blocks: 181.215.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:83:a1:91:fa:6b:d0:ab:1a:21:81:d4:53:83:d3:c7:7e:f1:e3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 31 20:21:10 2023 GMT
Not After : May 29 20:26:10 2024 GMT
Subject: CN=0B7A84B62990458160EA58019F9C749D67991C3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:c3:f2:7a:c2:f3:8b:86:18:71:d7:17:a3:
b5:94:fe:e6:8a:df:a0:b4:53:3a:2d:0e:57:7d:35:
6b:2c:55:e0:dc:b2:8b:11:a6:ae:47:60:b0:c2:b4:
9e:b2:85:ab:40:30:22:45:1f:49:e5:c2:a9:68:90:
e7:d1:d7:67:5c:ae:10:06:73:df:b8:5d:bd:b8:9e:
a7:32:e1:45:20:b6:52:1c:66:46:51:c7:77:d3:9f:
86:c9:e1:72:77:ad:98:cb:f5:8a:c6:a8:36:ca:4f:
47:2e:de:76:9f:58:96:ed:89:4d:1d:df:9e:a7:b5:
fa:29:a7:14:ae:1f:03:61:04:de:81:7e:43:36:88:
d5:2b:63:33:5b:5c:63:50:b4:43:df:16:92:73:63:
ad:15:a7:ca:1b:47:75:8f:38:a0:60:47:45:8e:86:
7a:0c:f7:4d:04:88:60:b4:9a:6e:52:31:16:4a:69:
b7:5c:83:3b:d9:3a:9d:10:7c:b1:f9:83:71:29:d1:
de:5e:62:f2:13:1a:04:09:b8:f0:ab:99:d4:ff:fe:
20:29:72:eb:16:8e:2e:f4:1e:e4:da:c0:81:a7:cf:
a6:52:9d:d4:de:f1:84:a7:4c:22:65:2e:7d:43:50:
b5:53:d1:0b:f5:85:6d:b3:ed:ba:41:b1:9e:0b:e1:
ff:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7A:84:B6:29:90:45:81:60:EA:58:01:9F:9C:74:9D:67:99:1C:3C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS2518.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.171.0/24
Signature Algorithm: sha256WithRSAEncryption
50:a6:af:6c:97:c1:03:39:86:0a:58:fd:4c:c2:5f:8f:6d:44:
92:87:26:8e:8a:67:0a:98:5b:f9:d0:b1:4b:fc:6a:98:8f:c8:
32:84:c5:14:ee:1f:1e:3c:4e:ad:87:07:70:09:29:8c:30:b3:
fb:cd:c9:86:25:34:16:e6:b1:8c:87:03:85:25:8f:ad:b8:b6:
66:69:e3:73:47:0c:f9:4f:76:3f:b6:2e:f5:b5:50:73:89:97:
47:51:fc:ef:0a:3d:7e:02:fc:0a:22:c9:32:e2:15:dd:99:29:
ac:8e:5c:5d:59:88:10:95:2d:fd:a9:06:f3:f9:56:73:84:44:
08:f7:3a:27:ef:53:27:7e:fa:28:03:1f:45:d2:76:be:ee:a3:
57:55:bf:24:d6:d5:b9:61:e9:71:fb:ec:44:d0:bf:2e:44:7b:
d7:1d:0a:5c:af:54:7a:84:c8:0d:ce:e3:9a:5e:b7:a9:3e:c7:
7e:0f:dd:25:40:4b:e2:85:46:b0:79:6d:e0:23:d2:39:a4:0f:
41:00:cc:5e:a6:1e:73:5e:eb:1c:00:ab:3c:6a:76:c1:d6:67:
3e:36:16:30:4e:f1:95:c4:27:47:1f:76:55:39:e3:73:04:78:
d5:27:b2:e3:2a:bb:4e:f2:22:e8:3f:8a:c2:59:8c:02:70:8b:
0c:ad:22:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:04 2024 by rpki-client on console-ams.rpki-client.org