Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44486.roa
File: AS44486.roa (raw, json)
Hash identifier: sL4g1SmjAfOn8J6y/6g637jav440FqB9Qs5jgmq9FQs=
Subject key identifier: 49:AA:54:10:A9:2A:4B:EB:C4:CE:F9:00:45:2A:38:96:32:74:CE:AF
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 62C156182301C96B863CA2208ADF64EA229C0421
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44486.roa
Signing time: Wed 01 Mar 2023 07:08:14 +0000
ROA not before: Wed 01 Mar 2023 07:03:14 +0000
ROA not after: Wed 28 Feb 2024 07:08:14 +0000
asID: 44486
IP address blocks: 45.137.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:c1:56:18:23:01:c9:6b:86:3c:a2:20:8a:df:64:ea:22:9c:04:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:14 2023 GMT
Not After : Feb 28 07:08:14 2024 GMT
Subject: CN=49AA5410A92A4BEBC4CEF900452A38963274CEAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ac:2e:bf:14:b8:06:77:2d:49:90:e2:0e:b6:
d1:cb:a0:cc:e0:8a:65:54:37:d7:94:b3:24:67:df:
55:3d:d3:a5:5f:bd:92:4c:1b:03:d3:c6:a7:d4:92:
b4:c5:c8:c1:c9:1f:42:15:7a:04:2f:45:ee:06:52:
ec:88:d4:ba:64:86:7a:90:4b:d7:06:dc:93:0e:e0:
0b:64:3e:5f:7d:90:40:33:39:c1:77:7e:02:26:05:
15:a2:c3:2e:0c:7a:fd:ba:9f:88:f2:18:10:1d:f1:
b6:5f:c9:76:2b:58:ff:c2:66:52:18:70:cb:ec:da:
6e:cf:a9:8a:3e:01:46:b3:c4:26:75:42:5e:18:32:
6c:ca:de:0c:eb:6c:fd:73:5b:b7:39:67:3f:6a:24:
3d:27:96:f7:31:27:f7:36:39:db:88:e5:4a:0f:6f:
89:30:cf:43:09:6f:f9:2a:13:c7:ca:91:ab:24:b3:
ea:9a:a1:69:00:93:21:b0:30:59:7f:91:a9:98:ae:
e7:dd:11:e5:4f:ff:ed:9a:fc:b1:d6:06:9c:cc:ba:
32:37:be:bb:59:4c:61:62:8d:e7:67:a6:5e:81:0b:
5b:0e:b3:a6:e2:f2:be:22:e9:22:73:1a:cb:c1:de:
b2:7d:0b:34:17:60:3e:23:98:76:24:39:37:b9:5f:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AA:54:10:A9:2A:4B:EB:C4:CE:F9:00:45:2A:38:96:32:74:CE:AF
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS44486.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.159.0/24
Signature Algorithm: sha256WithRSAEncryption
54:ca:9e:15:53:bb:77:ae:d8:8c:07:2c:a8:c1:39:4f:e3:09:
43:32:24:20:09:04:2e:0b:f3:cb:c6:ba:3d:b7:4b:ae:ef:1c:
ca:b7:b9:a3:f2:77:ab:e3:60:98:0d:1f:07:5f:77:52:64:60:
c7:eb:de:f6:a8:f8:94:da:59:2e:55:57:d6:73:11:73:b0:50:
63:95:96:49:f8:1d:e6:a0:86:d8:05:8b:70:57:1b:f2:f3:bb:
ea:32:83:15:12:b4:f9:90:9b:de:75:a8:3a:86:00:d3:03:a5:
48:8f:13:30:a1:0e:6f:81:ee:ca:36:8f:60:01:e6:60:08:a4:
7b:5c:55:36:a8:a2:99:67:76:0a:af:b3:d0:89:72:8a:43:40:
ad:5f:5e:68:95:39:e2:f8:3d:2b:6c:24:5b:fe:88:20:1d:a6:
17:eb:1b:89:01:fb:86:c7:78:9e:68:b9:ea:ff:45:bc:cd:b4:
66:55:91:bf:1c:4c:58:a9:e1:16:8a:10:5c:d1:0d:42:d2:9b:
57:fe:0e:06:d9:74:00:bf:c6:6f:a6:9a:0e:7a:59:2c:f3:6f:
90:02:05:66:e9:14:2b:73:d0:04:b6:35:c5:92:3d:93:59:87:
d8:a6:7f:88:90:cd:d5:5b:ae:65:32:07:05:0a:59:e6:72:07:
3b:d6:4c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org