Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS43927.roa
File: AS43927.roa (raw, json)
Hash identifier: f09Kbpc+RC4urOI5HuZYgKeTPaLkrP6WI5vxNGRv8uo=
Subject key identifier: BB:03:2E:9F:BC:61:89:B3:7B:0F:23:93:B9:75:B3:F8:B3:39:F4:06
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6A83EF7A79265669DF4F433C822F75E5878C2490
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS43927.roa
Signing time: Wed 01 Mar 2023 07:08:19 +0000
ROA not before: Wed 01 Mar 2023 07:03:19 +0000
ROA not after: Wed 28 Feb 2024 07:08:19 +0000
asID: 43927
IP address blocks: 45.95.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:83:ef:7a:79:26:56:69:df:4f:43:3c:82:2f:75:e5:87:8c:24:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:19 2023 GMT
Not After : Feb 28 07:08:19 2024 GMT
Subject: CN=BB032E9FBC6189B37B0F2393B975B3F8B339F406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f5:6e:21:c0:5e:dc:11:62:72:eb:47:7d:19:
e3:e6:0e:0a:a5:65:16:f1:3f:96:04:ef:60:bd:8e:
21:4d:5e:7b:a7:f4:91:c8:77:6c:0a:50:26:a1:de:
8f:5c:9e:e4:17:b2:51:ba:76:a1:b9:4a:ac:d0:c0:
44:d4:d7:5b:b3:96:ca:47:e6:a7:1e:cf:d1:e3:c9:
4e:08:5e:a7:79:c3:06:80:3d:d7:12:23:ef:63:6b:
cd:0c:f2:4a:98:73:44:d7:86:b5:ba:37:22:03:3b:
11:7a:39:41:c2:e7:e0:15:70:4c:31:c3:b2:1f:0f:
cd:d0:a4:4c:43:aa:ff:c5:1c:65:69:de:8c:7c:c7:
0f:1e:0c:17:e8:b0:ec:b0:bc:4a:ec:00:10:de:ee:
a0:a0:6b:6a:99:0b:d0:59:d6:ed:d4:6f:ef:be:d5:
20:95:bc:d8:7b:8b:aa:05:ab:4c:5e:cc:00:91:ea:
5e:74:6c:85:90:3a:0d:5b:64:1b:0b:40:61:13:ae:
79:68:50:5e:54:58:31:58:0a:ff:78:ef:de:e9:03:
81:3f:43:03:04:d6:5c:89:74:35:04:68:ec:8d:72:
af:2e:83:38:95:f5:22:5f:5b:2d:4d:55:f6:b7:32:
c5:bd:c1:4f:0a:f7:0d:a2:db:ce:0b:ec:78:81:73:
fe:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:03:2E:9F:BC:61:89:B3:7B:0F:23:93:B9:75:B3:F8:B3:39:F4:06
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS43927.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.23.0/24
Signature Algorithm: sha256WithRSAEncryption
25:28:f8:20:01:55:ab:46:80:bb:cf:24:00:74:e6:6e:d1:49:
78:98:ef:64:22:0f:82:cf:7e:49:4f:43:65:86:bc:65:b2:83:
60:01:7e:85:23:b0:4d:0b:38:8d:9c:e4:c7:14:d2:37:84:f1:
ad:8d:06:fe:bb:11:bd:f7:3d:28:61:bf:02:53:d1:85:92:e9:
c2:de:25:d1:a9:0c:75:6c:ce:38:2f:5d:2a:df:4f:c1:0a:d1:
b9:9c:d0:7f:11:15:44:e7:72:97:6b:d2:2f:f9:fc:a5:d6:6f:
0d:41:2d:ce:2d:dc:36:4c:6e:b9:5b:df:b0:b2:b4:d0:88:67:
21:bd:22:84:5c:7a:d1:83:21:b4:b0:4d:10:1c:70:73:06:f5:
d6:09:17:5b:e8:18:d1:4a:19:7d:2c:ba:f8:5c:49:58:86:35:
59:0f:96:48:b9:85:af:c8:af:dc:99:ed:70:8d:80:1e:7d:e0:
a5:46:42:49:63:e6:28:39:5a:40:95:27:0e:ea:09:4a:b0:25:
bc:28:ee:23:a8:23:f7:91:ac:c4:8a:f5:df:96:36:85:65:7e:
cd:f9:25:73:71:2a:c9:b7:3c:c6:69:09:4e:0e:a1:6d:d9:f5:
bb:6b:7c:c2:25:e6:b1:fa:2d:e5:77:8f:1c:1b:4c:71:c0:84:
80:f4:37:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:05 2024 by rpki-client on console-ams.rpki-client.org