Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50338.roa
File: AS50338.roa (raw, json)
Hash identifier: +4hjoZ/YPD/Fro677eSK7O81dB7PvUTlT2QlslOL5fE=
Subject key identifier: C0:6E:67:B5:8F:93:3B:60:A2:5C:78:7C:C3:F6:22:34:CD:ED:4D:15
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5369A2DAB0E757181EF7EFF15DD2087B2A026447
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50338.roa
Signing time: Thu 01 Feb 2024 21:06:54 +0000
ROA not before: Thu 01 Feb 2024 21:01:54 +0000
ROA not after: Thu 30 Jan 2025 21:06:54 +0000
asID: 50338
IP address blocks: 179.61.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:69:a2:da:b0:e7:57:18:1e:f7:ef:f1:5d:d2:08:7b:2a:02:64:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 1 21:01:54 2024 GMT
Not After : Jan 30 21:06:54 2025 GMT
Subject: CN=C06E67B58F933B60A25C787CC3F62234CDED4D15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a5:2a:3e:e1:d3:9e:2d:1a:90:ae:03:33:62:
25:e2:c1:02:84:50:72:75:94:d1:de:ce:a7:8e:7c:
d0:8e:26:6d:0d:6c:4c:45:38:70:40:14:c2:af:01:
b1:0c:90:3e:67:21:09:b0:5f:73:00:ea:b6:35:36:
0a:32:58:d3:aa:5b:1c:84:1d:c9:0f:79:5e:08:f6:
9d:18:c4:0f:0a:c9:1f:be:b7:8c:e1:fc:25:86:9a:
76:e8:c4:14:e0:2b:1f:5a:d7:6b:90:a6:c8:7f:32:
53:d4:0b:7f:29:c5:ea:a3:29:c2:6f:d5:3d:49:fc:
e3:4d:c9:68:09:1c:8f:4e:0f:b2:66:5f:21:62:50:
3a:b3:df:74:58:3e:5d:56:3c:00:39:a6:19:5e:f2:
88:bd:9e:b8:6d:28:5e:e0:be:f6:39:f2:2c:32:21:
f9:b6:f1:2c:44:a4:e1:96:f3:86:10:52:4b:e2:09:
1e:a2:0f:ea:b6:44:7e:27:7e:36:4c:45:75:bd:d8:
ff:8f:27:d6:ca:f9:2e:f2:0b:78:d3:fd:af:b8:4b:
f4:d3:5f:af:c7:15:ac:6f:ab:f7:be:10:cd:d9:6a:
e3:2c:90:3a:8c:4a:65:fe:5e:fc:db:3a:0c:08:57:
a2:80:2b:d9:0e:9c:d6:01:b9:7f:0c:46:d7:a9:54:
c1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6E:67:B5:8F:93:3B:60:A2:5C:78:7C:C3:F6:22:34:CD:ED:4D:15
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.217.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:c2:4e:8e:f4:c8:83:44:16:97:ec:14:ce:5a:38:2d:75:4c:
78:fc:6d:88:7c:1a:80:9c:f7:03:ec:94:52:17:b1:2c:dd:d2:
4f:66:74:7f:c0:06:25:bd:cd:33:c5:bc:38:86:12:b7:07:2e:
d8:3f:a2:00:eb:85:41:9b:00:6a:a1:3c:ec:66:db:ae:89:3d:
c8:e6:de:8c:46:4a:27:69:75:91:9f:51:17:48:f9:2c:0e:5f:
2b:46:63:a5:d0:b7:7c:ea:d6:ca:ea:ae:54:71:06:ae:69:90:
6a:69:0f:88:9b:eb:0d:47:4c:3f:58:3d:65:96:d1:fb:7e:95:
98:0a:fa:69:b2:c1:37:59:11:95:f6:42:dd:6e:c6:67:ee:4c:
f2:6a:af:6c:2f:64:ba:24:b0:19:5a:26:58:45:f5:a1:52:c6:
98:3b:ee:b6:49:15:bd:c1:3d:4c:6b:56:ee:23:1c:30:f4:d8:
d9:28:bb:bc:47:fa:a6:b4:c4:79:06:92:c8:5b:ac:e2:13:14:
01:c1:e2:b9:6d:15:ff:d9:08:17:03:3c:da:51:28:c5:14:1e:
4b:e1:d1:c8:97:42:b0:da:2d:0c:76:69:e1:75:62:ea:48:b9:
cf:d1:1c:5c:cd:5a:09:d9:0c:54:7e:4b:c5:db:6f:78:35:3b:
f6:17:0e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:48 2025 by rpki-client