Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272083.roa
File: AS272083.roa (raw, json)
Hash identifier: mqOzKMv28ZJoEsuMDfpx5+vn6X8e13CQ5KdGhjr02Tw=
Subject key identifier: 72:41:01:E1:4C:8B:5C:47:04:20:16:48:62:61:0E:5A:3D:2C:61:B0
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 04DC785D589FEBBDDDF1840783BB964119F5EF26
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272083.roa
Signing time: Wed 01 Mar 2023 07:08:19 +0000
ROA not before: Wed 01 Mar 2023 07:03:19 +0000
ROA not after: Wed 28 Feb 2024 07:08:19 +0000
asID: 272083
IP address blocks: 181.214.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:dc:78:5d:58:9f:eb:bd:dd:f1:84:07:83:bb:96:41:19:f5:ef:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:19 2023 GMT
Not After : Feb 28 07:08:19 2024 GMT
Subject: CN=724101E14C8B5C470420164862610E5A3D2C61B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a7:f1:3b:35:e7:65:e3:b5:a5:4a:e3:e6:5a:
02:a7:e9:71:5b:6a:77:f1:a5:79:77:17:97:8d:fc:
14:a8:29:ff:aa:ad:7a:7b:a3:70:a5:76:42:98:ba:
35:67:d3:23:12:41:d6:e0:8b:9c:3d:88:78:c8:aa:
bf:43:74:da:3f:05:5f:37:79:07:ae:91:b2:b6:2f:
cb:3e:e3:96:f3:35:d3:f5:aa:5b:3a:70:af:63:4e:
a5:6d:16:1c:f7:95:9e:37:a0:3b:2d:93:53:78:28:
d0:68:34:b6:34:99:75:9e:5f:48:72:a7:56:9b:70:
69:ba:dd:55:46:8a:72:87:b5:90:fc:cd:da:41:f6:
b6:78:e4:72:7e:3a:49:67:9b:e7:76:aa:f6:5e:94:
e5:75:6e:7c:4a:c6:77:18:b3:89:7c:e3:18:e5:bb:
e4:de:55:f4:ac:27:cf:00:4b:84:05:2b:c9:41:4e:
b7:d2:7e:fd:9a:0e:53:01:13:9e:ff:1f:68:4a:02:
50:28:dc:7e:2e:c3:a2:32:57:56:ce:7b:48:f6:54:
85:71:07:bc:1a:e2:56:f6:31:ea:62:fa:8e:34:94:
94:58:e4:7c:c1:67:c3:c4:68:f9:90:1c:7c:f5:4d:
06:8c:e5:14:e0:b4:eb:10:d6:de:e8:80:ac:7b:13:
c7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:41:01:E1:4C:8B:5C:47:04:20:16:48:62:61:0E:5A:3D:2C:61:B0
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272083.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.29.0/24
Signature Algorithm: sha256WithRSAEncryption
06:8e:a3:15:a2:27:76:36:9d:f1:6b:91:ef:d0:66:33:ea:38:
73:e6:7d:08:7c:64:33:1d:43:c8:64:9d:f6:45:e0:41:33:6b:
c0:aa:4d:fb:a2:96:70:61:83:f2:47:c5:65:b5:23:da:69:fa:
3a:ec:f9:b9:cc:09:93:0b:ef:50:8d:8c:f0:8c:53:df:9f:e6:
7a:bc:26:8e:14:8c:17:2a:4e:39:df:18:38:00:80:b8:a1:5c:
fd:c5:e1:0b:db:90:6a:fe:19:00:60:aa:9e:55:2c:24:a3:91:
db:c0:ae:0b:29:d6:91:ff:7f:7d:53:44:62:95:c0:c1:a2:5e:
5f:fb:d6:14:93:82:7c:08:e2:d6:d8:1b:75:40:6d:42:85:77:
0e:ce:1c:67:ff:ff:b7:fe:2c:8c:a2:19:27:b9:ab:36:8c:db:
bc:d6:b3:28:27:d1:2e:20:c3:02:40:1f:a2:45:29:a1:73:ac:
23:e3:20:c6:94:00:d3:49:45:dc:8f:24:de:c5:dd:d4:2d:92:
7f:6d:a7:4b:13:69:04:c5:55:ed:b0:6c:7f:49:a4:f9:7d:5d:
01:16:ea:f7:42:64:c0:10:e1:4c:8b:fd:76:ff:2e:0d:44:04:
4a:ff:6a:94:fa:ad:22:c8:75:5b:b8:b6:77:7c:d5:47:ad:73:
71:c3:7f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org