Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS393427.roa
File: AS393427.roa (raw, json)
Hash identifier: LvRgmeP+V0wJmnAiggY0Da03etbizGyTrNUqKx540mQ=
Subject key identifier: C4:EC:1F:ED:3D:B0:45:7C:22:2B:78:33:D5:A5:BA:43:23:81:C4:02
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 41F66CCBE4BA01A00067B3313F2D9D3495A3B40C
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS393427.roa
Signing time: Wed 01 Mar 2023 07:08:14 +0000
ROA not before: Wed 01 Mar 2023 07:03:14 +0000
ROA not after: Wed 28 Feb 2024 07:08:14 +0000
asID: 393427
IP address blocks: 185.139.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:f6:6c:cb:e4:ba:01:a0:00:67:b3:31:3f:2d:9d:34:95:a3:b4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:14 2023 GMT
Not After : Feb 28 07:08:14 2024 GMT
Subject: CN=C4EC1FED3DB0457C222B7833D5A5BA432381C402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:76:3c:34:f9:31:d9:b7:f9:13:a4:8c:72:96:
61:51:a2:dd:84:17:0a:dc:d9:33:71:92:7b:96:14:
70:ed:81:be:93:51:c3:0e:1b:f5:39:dc:c0:8b:d3:
96:98:10:b9:36:0a:ac:21:f8:71:59:4e:8b:1b:75:
10:8a:4a:74:ce:94:93:97:ca:6c:e1:80:24:7e:d7:
35:4a:da:74:1f:07:d9:8c:45:c8:37:6e:f9:25:41:
9a:1d:0b:25:b0:bf:bf:68:05:5f:e3:19:15:1d:aa:
6a:58:bb:2d:3a:81:d6:80:c3:26:9f:29:24:75:3d:
1f:f3:94:5a:8b:c9:44:49:0f:58:13:19:87:0a:28:
37:a6:4c:c0:f8:db:e1:80:ff:1c:06:6b:38:c8:6c:
08:e3:43:69:c2:7e:8b:58:20:8c:ad:4c:e7:fc:93:
7b:fa:aa:b7:6d:e2:77:89:d2:d7:c2:84:f8:01:01:
3d:97:94:09:95:63:a6:f0:8f:25:d0:a7:d2:e7:3a:
b2:3a:56:98:bd:09:7a:18:b3:20:3a:56:4b:6b:89:
16:20:1a:d4:5a:c8:21:0c:1c:59:53:e8:69:c4:59:
dd:2f:9b:82:34:41:6d:be:2f:9d:f1:63:d3:1f:2e:
9a:fa:e0:de:f2:58:ac:fa:4b:d4:1f:ae:2d:54:c1:
20:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EC:1F:ED:3D:B0:45:7C:22:2B:78:33:D5:A5:BA:43:23:81:C4:02
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS393427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.236.0/24
Signature Algorithm: sha256WithRSAEncryption
36:06:84:8c:be:0a:b5:f6:39:b7:c6:de:29:d4:81:c8:94:84:
d6:bf:63:78:9d:40:b3:9d:e1:c5:8c:86:9d:be:6f:88:ee:9c:
b0:fc:38:98:a5:6c:03:c3:2c:8f:85:07:17:81:0f:06:bb:96:
9f:6e:4b:78:d6:e3:fa:25:e6:d6:6f:b6:af:b1:79:c3:ef:29:
7d:b3:55:eb:30:89:19:8a:77:0c:45:e3:c4:6c:e1:34:8d:db:
7d:ca:2c:80:01:c7:85:31:67:c1:e7:7e:c8:ea:3f:eb:6f:c3:
d8:24:de:f5:14:83:b0:ce:fc:d5:6d:e0:69:5a:a8:df:1a:b0:
96:d2:35:38:e7:9e:8d:e5:e0:12:20:25:2b:b2:ee:f1:56:a4:
1c:0a:47:60:4b:df:98:57:e3:75:c2:82:94:c7:83:f0:47:04:
0f:6b:64:f7:3b:2b:98:14:d7:ec:50:d5:96:c3:f6:2c:32:7e:
f1:a8:da:21:7c:3b:66:1b:28:67:ac:4c:c6:1b:57:c5:11:87:
77:24:c9:33:8e:b9:e3:93:d3:bf:23:0d:f9:d5:dd:c4:5c:c5:
7d:06:df:6a:ec:20:6b:9e:3a:34:ee:8e:fb:6a:e6:70:f4:cc:
0a:a1:75:8c:07:69:09:e3:34:b0:98:37:f5:03:a8:d7:3d:7d:
39:3a:b4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org