Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS35913.roa
File: AS35913.roa (raw, json)
Hash identifier: 2xmWHjW3CtHTblNK6tSvdhcmN9PZWsW1Zl/RMo0DnZc=
Subject key identifier: 0F:32:C0:6B:0A:1F:84:FA:94:A5:32:B2:A2:96:C9:BB:8E:40:67:02
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 18840B607E9B59C524D31351CDAFD1041EDED615
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS35913.roa
Signing time: Fri 01 Sep 2023 17:32:12 +0000
ROA not before: Fri 01 Sep 2023 17:27:12 +0000
ROA not after: Fri 30 Aug 2024 17:32:12 +0000
asID: 35913
IP address blocks: 181.214.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:84:0b:60:7e:9b:59:c5:24:d3:13:51:cd:af:d1:04:1e:de:d6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 1 17:27:12 2023 GMT
Not After : Aug 30 17:32:12 2024 GMT
Subject: CN=0F32C06B0A1F84FA94A532B2A296C9BB8E406702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:d7:36:20:9c:da:c9:d6:5a:11:11:2a:cb:
6e:1f:4e:69:71:fc:5d:c3:75:83:e4:a2:16:e8:cf:
89:e5:83:ab:b0:73:cb:e5:49:28:27:32:32:95:a7:
21:6d:7d:c5:fa:c9:eb:c0:ff:d2:32:16:c4:d6:cc:
5e:81:9b:87:fb:2a:7d:9e:f9:37:08:aa:39:85:d7:
ea:81:16:29:79:74:a7:c3:23:58:65:1c:11:b7:74:
bf:80:e1:78:6b:a2:e7:49:95:da:6a:1a:3b:ab:1e:
6a:94:a9:5a:2d:95:c0:94:42:9b:0b:00:65:e7:69:
ad:c7:d9:1e:e4:7e:14:29:e8:e9:a6:27:f6:9e:81:
19:e1:5a:7a:e9:95:56:0e:0a:59:2c:bb:58:a6:43:
49:26:4c:4c:f9:e3:13:9b:7f:69:f9:bf:4d:fc:2b:
63:32:1f:45:a2:b6:6b:ba:45:38:23:ae:4d:9b:f4:
8c:ca:55:4b:91:4f:eb:42:57:df:8a:33:bd:1a:c3:
ca:0d:42:f5:c9:88:57:ce:dc:26:af:d5:9a:32:4d:
29:fe:6b:fd:1f:4b:b8:19:3a:0f:a7:f7:3a:71:ae:
38:ae:d6:03:89:e9:91:6d:85:58:a2:d2:68:89:2a:
ad:cf:82:27:af:5f:99:0d:8e:9c:f8:36:54:12:91:
e6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:32:C0:6B:0A:1F:84:FA:94:A5:32:B2:A2:96:C9:BB:8E:40:67:02
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS35913.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:4e:7b:58:5d:cc:0d:74:e7:b7:62:59:ce:e9:82:62:19:f6:
88:fc:69:fc:95:d9:94:a9:88:53:7e:0a:e6:54:9e:0b:7c:c2:
c4:3e:be:a5:7e:63:02:5d:eb:0b:77:3f:6b:70:0d:95:61:c2:
d5:39:63:61:2e:8b:74:8c:2a:69:4f:0a:8b:20:f6:a9:31:6a:
ef:8f:fb:c5:ab:2c:29:8d:b1:5f:43:e3:8c:8f:f0:68:09:c5:
4c:cf:fd:33:a4:08:27:0b:2d:6d:6d:e7:07:f3:8d:ee:b1:9b:
f0:88:f8:d6:13:e6:ff:ab:3f:4f:6b:79:3a:7c:17:a1:b7:8f:
b1:1d:e9:11:d4:4c:c6:77:bd:4a:c3:1a:fd:ab:f9:4d:4e:3b:
ba:a7:bc:28:51:ff:17:7c:7a:17:cd:49:27:fa:8e:53:ea:58:
ab:e9:7b:aa:bc:b1:a3:cf:ab:04:0b:3b:24:1e:a5:4c:c4:66:
40:41:39:be:55:e7:f9:e5:70:b0:d7:70:80:72:84:6a:2b:67:
52:47:b7:45:12:40:6f:24:15:69:d1:c4:6e:08:4a:77:fd:07:
73:c9:9a:26:25:d4:f5:c8:7f:3e:3b:fc:62:57:b5:bb:9a:a3:
71:25:b0:3f:5c:83:1d:40:fb:a1:19:9c:89:58:e6:5b:4a:7d:
d1:0a:fc:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:45 2025 by rpki-client