Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272070.roa
File: AS272070.roa (raw, json)
Hash identifier: 6Lu2LcyOf/OiD9FCFEU6ehOdEqruyKziHDOyHSgKPzU=
Subject key identifier: 6E:A7:2E:64:0A:83:F8:51:EB:E5:04:35:0A:A3:64:AF:2D:10:54:4D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 767FEA1691729B80651ED0E333F8EC83555246BF
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272070.roa
Signing time: Mon 08 May 2023 22:19:00 +0000
ROA not before: Mon 08 May 2023 22:14:00 +0000
ROA not after: Mon 06 May 2024 22:19:00 +0000
asID: 272070
IP address blocks: 191.101.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:7f:ea:16:91:72:9b:80:65:1e:d0:e3:33:f8:ec:83:55:52:46:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 8 22:14:00 2023 GMT
Not After : May 6 22:19:00 2024 GMT
Subject: CN=6EA72E640A83F851EBE504350AA364AF2D10544D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4f:32:24:5e:87:2d:09:43:25:28:e6:ca:42:
cf:8f:1c:a5:c9:c6:ca:d9:e6:5e:89:f8:a0:13:c6:
66:52:5c:a2:8e:3e:cf:7a:16:5a:3b:d5:5b:1e:95:
ed:f6:b7:ab:de:b3:7b:bd:8a:18:68:73:1c:d5:81:
4a:a3:9b:4a:00:17:94:7b:d4:f0:35:dc:13:a0:08:
19:5a:49:69:c0:8e:0e:2b:a5:4b:e5:ec:83:84:57:
1b:8d:76:69:33:d2:1c:b1:70:d9:c5:19:38:c4:b6:
6f:11:f0:29:c9:f0:4c:c1:cc:70:51:4b:19:db:eb:
80:16:97:f5:6b:72:c0:b1:0f:78:6a:4c:e7:ef:10:
bf:e2:5f:70:46:86:d7:07:a9:21:68:0b:a4:0b:24:
4d:c7:f3:f0:9f:62:a3:2d:90:30:fe:e4:9a:88:d2:
1b:1f:df:14:5e:34:27:d7:27:cc:e9:91:86:58:87:
25:b2:d0:e5:6a:d8:ed:64:0e:fc:fe:92:5e:3c:2d:
81:91:ea:fa:96:f6:da:e6:80:e2:94:51:0e:7b:99:
e2:e6:29:08:e7:5d:ee:42:07:a3:d4:cd:a3:aa:b3:
55:a3:67:f8:f8:3c:c0:5b:80:30:ab:fc:65:51:83:
16:91:bd:5a:5d:21:a2:d0:1c:e0:13:29:7e:cb:ac:
4f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A7:2E:64:0A:83:F8:51:EB:E5:04:35:0A:A3:64:AF:2D:10:54:4D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.63.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b3:02:23:f6:71:b8:04:87:9c:cc:53:02:b3:3f:d2:13:c0:
d6:55:16:28:90:aa:5d:8d:51:7d:4a:4c:cc:24:1d:d1:f5:66:
c1:57:c7:8c:39:c4:87:52:ac:d1:60:5c:5c:70:65:71:78:0f:
99:3e:d8:a6:0c:09:10:9b:22:9e:69:dd:06:9f:4b:87:5c:93:
3a:ba:1d:10:f9:32:6e:ef:c5:64:59:0a:4c:d1:60:bd:ee:44:
2e:70:55:10:bb:61:bf:57:52:a0:cf:39:88:d8:14:64:1e:dd:
0b:65:c1:87:65:55:b2:85:ba:9a:99:01:48:2d:7c:68:2d:19:
cc:9b:d2:3a:7a:6e:55:87:2a:63:c3:18:b4:44:58:53:fe:02:
0b:d1:a5:a3:95:d5:4e:fd:42:5d:71:98:af:97:c8:97:a1:6e:
f5:55:6b:57:4e:3d:e2:25:8f:4a:8e:01:f0:b8:5e:8a:71:a6:
9e:bc:39:9c:8d:cb:fa:3f:6c:f9:6c:d3:59:7b:0f:bc:7a:24:
95:14:ba:c0:60:21:41:3d:5c:18:b9:2d:59:ed:a0:8f:fd:4c:
67:90:1c:62:50:6a:49:a3:ec:17:3a:30:f7:71:dc:25:20:a2:
3e:27:da:64:87:03:42:33:e4:05:06:fb:b1:b5:4e:c9:75:fb:
26:de:dc:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org