Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50225.roa
File: AS50225.roa (raw, json)
Hash identifier: OLjdIxnIQa5HR0dZW/2Zgjs/wEYx+AurX5mN6DR7KnQ=
Subject key identifier: 8E:25:FC:8E:B5:35:12:9F:0A:01:CB:5C:55:69:95:11:0E:A6:E2:B5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 50D95523B44A33062045D44350A250A813CE1798
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50225.roa
Signing time: Mon 03 Apr 2023 14:30:05 +0000
ROA not before: Mon 03 Apr 2023 14:25:05 +0000
ROA not after: Mon 01 Apr 2024 14:30:05 +0000
asID: 50225
IP address blocks: 179.61.157.0/24 maxlen: 24
191.101.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:d9:55:23:b4:4a:33:06:20:45:d4:43:50:a2:50:a8:13:ce:17:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 3 14:25:05 2023 GMT
Not After : Apr 1 14:30:05 2024 GMT
Subject: CN=8E25FC8EB535129F0A01CB5C556995110EA6E2B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:89:e0:d5:60:39:fa:96:08:8a:6d:83:f4:1c:
21:9d:6d:45:12:c9:78:06:fd:82:58:2a:eb:74:38:
ca:51:78:15:b9:e2:9e:85:27:51:51:90:5e:3c:d6:
3d:93:0b:80:aa:ee:c1:e8:1c:35:fc:e4:2f:28:7c:
c9:b1:15:59:24:a9:05:ae:85:d5:e2:4f:6a:2b:e4:
29:61:e0:6a:e4:fb:e7:e4:b2:d7:db:6d:cb:1b:43:
6f:2d:22:0c:d2:8c:fa:5d:8f:f6:5f:12:8b:7f:45:
d5:8c:65:b9:97:35:76:99:5d:67:41:d2:ce:72:c3:
b2:e9:35:0b:e8:f6:f2:73:fd:73:e7:ab:78:ce:17:
6a:70:f3:9e:f1:7c:43:5c:2c:1e:d3:9c:9a:83:3c:
c9:95:40:8f:fc:37:a6:81:32:37:0c:ab:5f:10:0e:
08:09:7b:36:f4:ee:58:f8:d0:a0:36:28:d4:03:e9:
8a:fa:23:0b:fe:11:a1:50:cc:a0:90:9a:d7:3a:5e:
cb:9f:2c:6a:1d:b2:38:30:a4:d1:2c:aa:c9:91:a1:
1e:7c:90:86:23:51:ed:8f:20:37:35:7a:ea:43:75:
29:32:69:74:5e:ce:23:a0:07:c0:a0:77:b4:2b:b1:
06:60:a1:cf:c8:66:cd:f7:d5:93:33:e3:c2:5e:4c:
a0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:25:FC:8E:B5:35:12:9F:0A:01:CB:5C:55:69:95:11:0E:A6:E2:B5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50225.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.157.0/24
191.101.87.0/24
Signature Algorithm: sha256WithRSAEncryption
19:de:98:0f:ea:a9:15:19:c2:22:64:3b:a7:1e:02:59:e7:28:
a8:1a:0a:64:77:dd:76:9a:9d:0a:7b:7e:7c:95:50:3d:84:b0:
ef:3c:17:04:ad:cd:38:6d:ca:32:54:c5:9c:73:d8:20:fa:56:
9d:de:24:ec:10:16:54:ac:07:32:e3:f1:24:c3:0e:c6:c6:f9:
3a:c6:33:d3:3e:26:5e:9d:82:e9:1a:d4:cf:90:a9:3f:9f:97:
f4:49:d7:af:24:0b:fc:a2:47:75:0a:d2:b4:94:c8:90:e4:a1:
85:de:62:a8:a6:7d:a9:d7:47:3a:5b:fc:10:27:61:e3:68:86:
d2:f7:5d:2e:d5:d8:91:18:d1:ab:ca:a9:f0:6a:8c:a8:61:c6:
f8:c9:6f:1f:5c:ba:e0:00:6b:47:af:1d:9c:f0:33:dd:44:12:
f7:7c:7b:df:78:bf:ce:6a:a0:ce:9c:ef:25:1f:ea:e6:f4:16:
b2:37:da:62:80:c8:0e:8c:7e:5b:cc:b0:6a:ad:f8:9a:1f:ac:
a4:9f:f4:38:8c:0d:25:36:56:f4:95:58:37:58:27:5c:0e:d3:
f1:8d:58:4e:f0:d8:e3:c6:19:7f:11:a4:fc:e2:80:3e:b8:d1:
dd:67:e1:52:ef:67:d2:df:72:38:0a:d7:e5:c4:6a:dc:ef:15:
f5:5d:42:b0
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIUUNlVI7RKMwYgRdRDUKJQqBPOF5gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzA0MDMxNDI1MDVaFw0yNDA0MDExNDMwMDVaMDMxMTAvBgNV
BAMTKDhFMjVGQzhFQjUzNTEyOUYwQTAxQ0I1QzU1Njk5NTExMEVBNkUyQjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ieDVYDn6lgiKbYP0HCGdbUUS
yXgG/YJYKut0OMpReBW54p6FJ1FRkF481j2TC4Cq7sHoHDX85C8ofMmxFVkkqQWu
hdXiT2or5Clh4Grk++fkstfbbcsbQ28tIgzSjPpdj/ZfEot/RdWMZbmXNXaZXWdB
0s5yw7LpNQvo9vJz/XPnq3jOF2pw857xfENcLB7TnJqDPMmVQI/8N6aBMjcMq18Q
DggJezb07lj40KA2KNQD6Yr6Iwv+EaFQzKCQmtc6XsufLGodsjgwpNEsqsmRoR58
kIYjUe2PIDc1eupDdSkyaXReziOgB8Cgd7QrsQZgoc/IZs331ZMz48JeTKCfAgMB
AAGjggIPMIICCzAdBgNVHQ4EFgQUjiX8jrU1Ep8KActcVWmVEQ6m4rUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTAyMjUucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBACzPZ0D
BAC/ZVcwDQYJKoZIhvcNAQELBQADggEBABnemA/qqRUZwiJkO6ceAlnnKKgaCmR3
3XaanQp7fnyVUD2EsO88FwStzThtyjJUxZxz2CD6Vp3eJOwQFlSsBzLj8STDDsbG
+TrGM9M+Jl6dguka1M+QqT+fl/RJ168kC/yiR3UK0rSUyJDkoYXeYqimfanXRzpb
/BAnYeNohtL3XS7V2JEY0avKqfBqjKhhxvjJbx9cuuAAa0evHZzwM91EEvd8e994
v85qoM6c7yUf6ub0FrI32mKAyA6MflvMsGqt+JofrKSf9DiMDSU2VvSVWDdYJ1wO
0/GNWE7w2OPGGX8RpPzigD640d1n4VLvZ9LfcjgK1+XEatzvFfVdQrA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:05 2024 by rpki-client on console-ams.rpki-client.org