Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272148.roa
File: AS272148.roa (raw, json)
Hash identifier: cbBmefgyBjFkmZHyDxviR5azZYpVXwRfHwZEmeZtCaQ=
Subject key identifier: E8:B2:88:C3:41:45:04:E4:EE:FA:3F:4C:D3:41:AC:56:71:B6:DD:B3
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2FA85F95E1FABA0688B0C51D00B787152B72CEE6
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272148.roa
Signing time: Fri 31 Mar 2023 00:00:15 +0000
ROA not before: Thu 30 Mar 2023 23:55:15 +0000
ROA not after: Fri 29 Mar 2024 00:00:15 +0000
asID: 272148
IP address blocks: 191.101.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:a8:5f:95:e1:fa:ba:06:88:b0:c5:1d:00:b7:87:15:2b:72:ce:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 30 23:55:15 2023 GMT
Not After : Mar 29 00:00:15 2024 GMT
Subject: CN=E8B288C3414504E4EEFA3F4CD341AC5671B6DDB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a3:34:5d:44:7e:88:98:7e:4c:9d:e4:d0:40:
92:94:27:2c:ed:c3:40:c3:d0:c7:26:75:bf:c2:58:
35:de:5b:19:5d:f1:dc:36:e6:27:d8:9c:36:c8:20:
a2:23:70:96:7a:bb:f6:a9:6a:c1:bc:de:c3:9e:16:
de:99:c0:45:7c:62:d0:66:fb:4f:00:79:15:f4:e1:
f7:4d:1f:e8:3f:55:20:9e:16:a9:8c:fa:d3:d8:be:
c7:91:88:6e:14:52:e0:ac:68:49:a2:82:04:d2:8d:
02:90:b0:0f:45:a8:62:2f:84:79:fe:a1:4c:0d:5d:
19:fc:ea:31:07:fa:db:e5:17:4e:3f:ba:44:4a:03:
85:d8:2e:f7:0d:54:86:0e:02:aa:7d:83:14:a6:7a:
ed:8d:a7:17:1b:08:44:12:e2:94:ad:d5:1f:de:22:
50:da:71:24:d6:0d:0e:1d:f6:99:ca:34:1b:30:6e:
79:23:b9:21:b7:63:7a:7c:db:6e:3c:3f:7b:02:d2:
8f:57:4b:70:1f:4d:cc:70:ca:a5:24:79:6d:51:8d:
b2:46:11:01:1a:5d:64:5a:82:49:a6:8d:c0:61:16:
6f:ce:a0:7c:10:91:d6:c2:11:bc:a2:cf:f1:e0:7b:
74:2d:ab:18:af:25:95:e1:b7:0b:9a:aa:ff:96:4b:
2e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B2:88:C3:41:45:04:E4:EE:FA:3F:4C:D3:41:AC:56:71:B6:DD:B3
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS272148.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.58.0/24
Signature Algorithm: sha256WithRSAEncryption
49:c1:9e:b5:44:ec:6c:f8:2f:20:00:75:5a:ec:54:8e:50:97:
6a:1b:5e:74:a4:64:87:2a:35:21:c0:f4:39:8e:f2:5b:5d:71:
81:bc:b9:ae:28:92:3b:8c:4c:42:ea:82:f3:af:ee:37:23:e1:
12:84:24:d1:22:a7:39:29:9a:7d:1f:9c:ac:e8:e4:43:9b:b9:
0b:7d:9b:83:1a:d6:76:aa:85:7a:c5:53:12:38:5f:b5:5b:46:
85:55:53:2f:d7:e1:eb:0c:9e:d6:7b:d3:56:2e:2c:66:3e:8f:
86:21:24:4b:5a:90:cc:3c:20:8d:c8:37:56:c0:41:8a:13:f8:
bc:17:97:cc:a8:26:6c:8c:15:59:64:7e:5a:87:a4:b7:15:d2:
e9:a7:10:f2:fd:4d:87:b2:0d:30:79:f7:27:69:b6:62:5a:a6:
f3:a3:6d:45:b4:f2:b7:43:e2:d1:e2:25:5a:40:41:ae:2e:00:
14:5a:40:f1:58:c3:2a:6f:7c:a6:07:44:3a:17:89:8b:8f:e7:
52:8a:0b:99:3f:09:ce:18:bb:22:65:c2:bf:e0:a6:3c:22:38:
3f:14:b8:e5:93:6e:a7:e0:20:d4:c9:32:d7:64:dd:50:1d:80:
a1:31:46:f6:90:f2:7d:d1:6f:a5:a2:48:fc:81:7b:68:5a:75:
00:4c:b4:fc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUL6hfleH6ugaIsMUdALeHFStyzuYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzAzMzAyMzU1MTVaFw0yNDAzMjkwMDAwMTVaMDMxMTAvBgNV
BAMTKEU4QjI4OEMzNDE0NTA0RTRFRUZBM0Y0Q0QzNDFBQzU2NzFCNkREQjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ozRdRH6ImH5MneTQQJKUJyzt
w0DD0Mcmdb/CWDXeWxld8dw25ifYnDbIIKIjcJZ6u/apasG83sOeFt6ZwEV8YtBm
+08AeRX04fdNH+g/VSCeFqmM+tPYvseRiG4UUuCsaEmiggTSjQKQsA9FqGIvhHn+
oUwNXRn86jEH+tvlF04/ukRKA4XYLvcNVIYOAqp9gxSmeu2NpxcbCEQS4pSt1R/e
IlDacSTWDQ4d9pnKNBswbnkjuSG3Y3p82248P3sC0o9XS3AfTcxwyqUkeW1RjbJG
EQEaXWRagkmmjcBhFm/OoHwQkdbCEbyiz/Hge3QtqxivJZXhtwuaqv+WSy71AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU6LKIw0FFBOTu+j9M00GsVnG23bMwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjcyMTQ4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAv2U6
MA0GCSqGSIb3DQEBCwUAA4IBAQBJwZ61ROxs+C8gAHVa7FSOUJdqG150pGSHKjUh
wPQ5jvJbXXGBvLmuKJI7jExC6oLzr+43I+EShCTRIqc5KZp9H5ys6ORDm7kLfZuD
GtZ2qoV6xVMSOF+1W0aFVVMv1+HrDJ7We9NWLixmPo+GISRLWpDMPCCNyDdWwEGK
E/i8F5fMqCZsjBVZZH5ah6S3FdLppxDy/U2Hsg0wefcnabZiWqbzo21FtPK3Q+LR
4iVaQEGuLgAUWkDxWMMqb3ymB0Q6F4mLj+dSiguZPwnOGLsiZcK/4KY8Ijg/FLjl
k26n4CDUyTLXZN1QHYChMUb2kPJ90W+lokj8gXtoWnUATLT8
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org