Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS3320.roa
File: AS3320.roa (raw, json)
Hash identifier: 3g5XRBq6nPPyGghp36O5yp8+RVz6SRPyB43sG4XFgtw=
Subject key identifier: 79:63:97:78:82:0A:6F:DA:D1:D3:F6:52:23:F8:D3:21:51:63:CE:4E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5A8E4A6F68AD373A969FB8AA190067CA82823BB2
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS3320.roa
Signing time: Mon 31 Jul 2023 00:00:25 +0000
ROA not before: Sun 30 Jul 2023 23:55:25 +0000
ROA not after: Mon 29 Jul 2024 00:00:25 +0000
asID: 3320
IP address blocks: 179.61.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:8e:4a:6f:68:ad:37:3a:96:9f:b8:aa:19:00:67:ca:82:82:3b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 30 23:55:25 2023 GMT
Not After : Jul 29 00:00:25 2024 GMT
Subject: CN=79639778820A6FDAD1D3F65223F8D3215163CE4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7e:6e:a9:49:4c:21:cd:0b:34:55:1a:5d:87:
9e:fe:21:f8:40:3f:71:c3:c1:e9:67:c2:98:4d:47:
85:2b:87:c0:d0:4b:f8:dd:db:93:e5:af:97:f4:37:
3d:95:a3:d0:94:71:b9:8e:e4:1a:7c:04:e1:55:6a:
ef:fb:91:ca:b9:44:ba:09:ef:aa:90:cb:c1:c2:3d:
1c:6d:ed:ab:94:1a:2c:e8:6c:13:65:18:81:b6:83:
b7:49:3c:2e:36:f0:f1:45:c2:a7:ca:d3:6e:2a:09:
94:58:00:61:66:39:f7:b3:0e:cd:b2:09:c2:7e:35:
8c:75:31:a9:e9:03:04:48:9e:06:78:77:a5:ca:08:
f5:04:47:a5:ff:7a:b8:e0:c1:cf:c4:a7:79:45:37:
a3:11:6d:a7:c0:a1:55:62:3e:05:d7:d9:22:8c:a3:
68:f0:64:bf:ce:30:2c:b3:34:66:c6:c7:8b:0c:34:
9b:0a:fe:cd:4b:8d:06:bb:3c:d1:80:70:69:ea:06:
56:54:ff:69:b6:26:e0:19:82:e0:8b:43:36:ac:36:
da:c7:66:4a:83:42:01:22:62:6e:e1:5c:30:cf:0f:
b4:86:d5:9b:0a:c1:c4:80:d5:af:80:af:7f:5a:5f:
d6:4b:57:d3:cf:d8:c1:dd:55:35:37:c9:44:2a:f1:
34:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:63:97:78:82:0A:6F:DA:D1:D3:F6:52:23:F8:D3:21:51:63:CE:4E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS3320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.160.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:cc:96:9e:97:f4:06:18:97:5e:57:04:cd:89:36:ad:e8:f6:
ad:d7:b7:eb:78:3a:a2:01:b0:35:cf:ef:78:32:7a:e3:4c:f2:
c3:c1:a5:44:c6:32:6a:42:29:71:70:df:c3:7f:02:41:a1:52:
3f:85:26:0f:d6:8f:40:e8:f6:e6:cf:a0:2e:3c:e7:2f:2b:5c:
63:64:80:b6:fd:18:8d:42:da:da:1f:fe:f7:bf:d2:3f:85:13:
36:c9:ad:20:a1:69:5d:e2:98:c3:04:7b:3f:ee:b0:c7:f8:d7:
31:6c:9e:d8:4b:c6:33:e2:af:47:04:99:f8:38:c6:af:02:ec:
9a:f2:a8:de:54:e3:a8:b6:68:ab:0f:87:7b:a8:7f:73:b5:ea:
1b:8b:4c:a3:28:17:d2:7d:49:13:e3:2d:9a:14:16:f7:c0:e3:
55:1c:56:4b:42:47:65:02:31:55:69:4a:19:b9:0f:7f:9f:e8:
d7:4b:8c:10:75:6e:28:56:0b:0a:fb:dc:e8:c0:27:79:71:ac:
f7:71:af:4a:77:e7:dc:51:cd:6a:6f:5c:77:ed:52:e5:c2:b7:
85:4a:dd:94:34:97:ca:f1:99:e7:c9:63:d3:85:a3:e2:72:9f:
a7:41:cb:96:b2:22:da:e8:7c:53:38:74:45:6a:ae:d2:b2:dd:
d2:fa:eb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:15 2025 by rpki-client