Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265905.roa
File: AS265905.roa (raw, json)
Hash identifier: eQr23dvpLxLQpcILWSbHUpTexIbCVm27ytLX3bt9Xsg=
Subject key identifier: 08:36:33:2A:D1:BB:A8:D2:03:A3:D9:7C:8A:4D:78:A4:4A:24:56:B3
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7EC54CAE7080B2DF6B91D38B0D67C6A27B102930
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265905.roa
Signing time: Wed 01 Mar 2023 07:08:12 +0000
ROA not before: Wed 01 Mar 2023 07:03:12 +0000
ROA not after: Wed 28 Feb 2024 07:08:12 +0000
asID: 265905
IP address blocks: 5.252.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:c5:4c:ae:70:80:b2:df:6b:91:d3:8b:0d:67:c6:a2:7b:10:29:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:12 2023 GMT
Not After : Feb 28 07:08:12 2024 GMT
Subject: CN=0836332AD1BBA8D203A3D97C8A4D78A44A2456B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:17:6f:1c:e6:7e:dd:1b:b9:3a:41:65:cf:c5:
f4:a3:e2:b7:8d:2b:d0:9a:35:d4:a1:d1:a9:71:15:
99:75:47:3a:0f:25:0f:4b:ac:ed:38:59:c6:1c:62:
59:12:f1:79:3e:f8:e0:fa:ef:50:ee:05:7a:60:8b:
eb:e0:f8:47:b1:0b:51:82:71:57:f2:93:6b:20:ed:
90:2f:ed:46:e5:ad:26:c6:3e:ba:98:06:65:3f:90:
c2:33:ff:3c:f9:fa:ae:8b:b2:67:ce:53:c7:88:54:
a4:0f:12:2c:5f:51:db:a7:c7:ee:10:1a:1e:0b:d9:
0b:f4:5e:3c:d7:43:1f:99:36:b4:43:48:8d:aa:67:
23:68:e3:41:32:f9:65:f3:a1:2e:04:59:c8:94:d7:
f4:99:7d:cd:53:c3:60:4a:ae:08:94:d4:f7:c5:80:
67:d0:a0:74:01:3e:69:cd:49:e3:42:e8:ab:af:31:
83:25:e4:5f:8c:07:ca:7f:f9:72:16:5d:5e:12:2a:
46:58:9a:d4:14:0a:2a:73:43:e0:0f:b7:ad:2c:a9:
ad:39:c0:32:a5:29:79:9a:02:f1:7e:26:56:f5:20:
6c:3d:cb:be:d4:43:c4:2e:99:ed:fb:c1:92:e7:aa:
ff:65:58:64:12:64:10:08:0a:9c:95:2a:f8:25:af:
83:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:36:33:2A:D1:BB:A8:D2:03:A3:D9:7C:8A:4D:78:A4:4A:24:56:B3
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS265905.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.162.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:31:11:65:ba:04:6f:e9:01:1d:37:9e:bc:1c:d5:ce:75:ad:
3d:ac:9a:34:d8:40:3b:8d:2c:86:1b:5f:14:ec:a2:12:5c:bc:
b9:f6:06:12:a1:6c:19:84:7b:9e:0c:0d:11:6b:b5:1a:32:9c:
07:23:11:e9:80:24:3d:1e:5b:95:9e:ab:68:8d:ec:51:71:56:
61:47:04:b6:94:87:c7:e8:b7:6e:0f:0b:95:74:cd:47:b1:ac:
e8:f5:86:72:5a:59:24:2a:a0:ef:4d:da:0d:4a:a8:6f:3b:cb:
d7:f7:f9:60:ea:e5:e5:ea:73:7a:38:48:c4:9d:03:17:c9:15:
81:32:2f:7b:33:c7:a8:c2:22:81:1a:34:df:7d:c4:24:78:55:
cf:6a:51:fe:dc:70:27:e6:d9:29:66:cf:b3:08:93:d2:17:8f:
3e:1d:4f:cd:87:3d:98:44:44:3b:84:2a:40:b5:b5:4f:c4:5e:
4e:07:00:b6:bd:ae:7d:57:68:f4:21:0b:ed:49:31:0c:59:97:
ee:95:b5:10:e3:03:4b:df:65:7f:af:f1:4d:eb:ba:02:bc:55:
64:2e:ab:7c:33:38:08:a3:19:f8:5f:1f:6b:76:47:d2:13:c9:
77:b3:ad:45:cc:a0:8a:56:a8:a8:11:9f:7e:4e:60:5c:55:32:
72:c9:b4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org