Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS51722.roa
File: AS51722.roa (raw, json)
Hash identifier: qnmKfOPCJZ9zJDQLOqZc6KogMejBVwY3ttyQPeNl4P4=
Subject key identifier: 1C:47:37:E7:CC:DE:5B:D4:95:CE:56:16:88:37:1E:BF:62:D9:B0:9E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1F684666B5D8080B0A844D28D8264498F83B328B
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS51722.roa
Signing time: Mon 07 Aug 2023 15:10:47 +0000
ROA not before: Mon 07 Aug 2023 15:05:47 +0000
ROA not after: Mon 05 Aug 2024 15:10:47 +0000
asID: 51722
IP address blocks: 181.214.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:68:46:66:b5:d8:08:0b:0a:84:4d:28:d8:26:44:98:f8:3b:32:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 7 15:05:47 2023 GMT
Not After : Aug 5 15:10:47 2024 GMT
Subject: CN=1C4737E7CCDE5BD495CE561688371EBF62D9B09E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:2a:8e:50:98:18:8c:e0:6e:2d:30:8d:4b:
0e:ff:9d:b9:f6:13:dd:c3:a9:7b:c1:fc:2c:37:78:
d5:c7:73:e5:ed:ef:c0:49:5f:5f:8b:4a:26:f6:87:
16:39:6f:e5:e8:61:3e:09:e6:ce:3e:22:de:98:a0:
25:cd:a5:18:6b:84:82:ad:bb:72:25:00:41:11:20:
bf:78:d7:0f:6c:eb:c7:43:b5:e0:87:27:38:9a:07:
bb:ad:4b:80:e5:95:dc:59:c3:43:fb:8b:e6:5b:60:
18:03:e2:13:3b:01:8d:18:34:c3:fb:a1:26:cc:d5:
12:19:30:ba:a1:94:a4:f1:30:ff:c8:e5:bc:48:8b:
0c:62:cf:43:1b:0f:4e:2b:b1:10:c2:41:d1:1a:55:
c0:6a:fc:a6:bd:f2:62:37:88:a8:06:67:92:79:df:
88:b0:99:93:26:f3:69:ab:17:2f:a9:b2:85:51:bd:
ac:e6:03:20:f0:b3:b5:bb:9b:8e:8c:cc:c1:73:07:
e5:ef:e0:c9:ed:7a:e3:4b:e2:5f:18:a4:8c:bb:a9:
7d:f0:c0:60:cf:81:5c:bb:67:77:7f:8b:7d:7a:7a:
1b:85:4f:a3:d5:7c:2e:c0:da:7f:6c:77:41:86:65:
01:d2:a5:a3:b7:bb:81:ce:ac:0d:16:34:88:87:1d:
36:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:47:37:E7:CC:DE:5B:D4:95:CE:56:16:88:37:1E:BF:62:D9:B0:9E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS51722.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.118.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c9:6a:2b:94:71:9a:91:3e:c3:0e:f6:d6:e2:56:07:d9:4a:
00:4f:9c:9a:3d:d3:65:32:55:35:57:d5:c5:f3:d0:fb:74:a3:
8e:00:7c:8b:69:0d:65:99:ec:6d:92:52:a4:b5:32:af:46:8e:
9d:de:22:a5:1c:a6:2c:c1:3a:92:59:08:3f:b9:31:e4:16:66:
65:26:df:69:f8:1d:fe:08:55:24:f5:48:b0:3e:78:ec:ee:27:
65:60:e3:1a:7a:4e:7c:86:69:63:d6:dd:b5:f8:47:f0:a6:d3:
5e:28:05:6b:ce:ea:c7:79:31:ef:c7:0f:21:62:b6:93:a1:c5:
91:49:47:5d:16:2a:72:c4:68:b4:ca:bd:c2:43:5a:ee:e7:f9:
0b:9a:6e:71:5a:64:4c:ae:88:72:0f:4f:cf:2f:54:58:4e:c6:
94:5a:17:25:72:5f:34:52:37:73:73:0f:93:b4:95:3d:4a:14:
86:91:3c:f7:ae:47:fd:3f:89:b2:a3:35:07:61:1b:6b:3a:2c:
b0:d1:a0:1c:79:e6:8d:54:68:ff:1f:2f:40:bc:f9:37:1f:a5:
03:77:e8:4c:7a:f3:8c:b1:35:39:2b:69:f3:23:f7:5d:df:c3:
25:d9:89:a4:fe:6d:61:aa:22:db:02:fd:b7:5a:6d:68:d5:5e:
d1:26:ee:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:15 2025 by rpki-client