Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS56913.roa
File: AS56913.roa (raw, json)
Hash identifier: o49RYnXsV9nDzezgsK160PdCE6QeXXfLPPNBnJyEZGA=
Subject key identifier: 71:21:E7:9D:68:A7:B3:B6:16:04:88:57:EF:88:93:69:EC:05:1E:3D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 729C560A3AF442C659B5E0772A289EFCCA048C6F
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS56913.roa
Signing time: Tue 06 Jun 2023 11:05:15 +0000
ROA not before: Tue 06 Jun 2023 11:00:15 +0000
ROA not after: Tue 04 Jun 2024 11:05:15 +0000
asID: 56913
IP address blocks: 181.214.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:9c:56:0a:3a:f4:42:c6:59:b5:e0:77:2a:28:9e:fc:ca:04:8c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 6 11:00:15 2023 GMT
Not After : Jun 4 11:05:15 2024 GMT
Subject: CN=7121E79D68A7B3B616048857EF889369EC051E3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:56:9e:40:61:8e:5c:0f:a6:c2:3b:61:59:00:
e6:5c:07:15:96:dc:a0:9d:f6:2f:ae:db:8c:05:16:
3d:c4:93:18:9b:33:28:e7:65:bd:d4:24:ee:61:18:
02:d0:c4:17:55:9a:b9:db:e5:e3:46:23:e3:90:28:
28:17:cf:6e:6e:ff:aa:23:65:59:20:f7:7b:77:77:
ee:a5:68:b3:6b:4a:16:cf:71:1c:d8:37:24:94:d7:
09:cf:d9:c2:67:55:dc:26:85:7d:c6:34:d1:98:0e:
8e:71:e7:8d:78:f9:16:03:98:a1:46:52:12:a8:8e:
e5:c6:fc:1e:ab:6e:d0:91:25:9f:78:60:a1:a1:5f:
e9:8c:ef:6b:69:7a:c9:21:c9:db:88:7b:fb:55:2c:
52:4e:5b:21:b1:88:06:d8:8a:e7:2c:02:e2:12:38:
7d:fe:cb:4c:9e:e3:c7:26:f5:87:90:ec:4b:b4:fd:
c6:e8:91:44:aa:22:c8:43:e3:28:76:94:92:11:8f:
da:0d:af:bb:6b:5f:2f:f5:89:5f:8b:8a:0b:4a:5f:
93:3e:3d:5c:37:1c:30:c6:25:db:47:1f:8d:bc:08:
c8:78:76:d3:4a:cb:15:6e:f9:27:8a:07:21:6f:3d:
eb:e7:69:76:a0:93:fc:00:16:e7:e0:05:af:bf:dd:
6f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:21:E7:9D:68:A7:B3:B6:16:04:88:57:EF:88:93:69:EC:05:1E:3D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS56913.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.132.0/24
Signature Algorithm: sha256WithRSAEncryption
35:a7:d0:ba:30:3e:06:a9:e4:80:21:65:06:81:b9:16:a7:ce:
21:c8:46:cb:5a:8d:42:73:89:ab:f1:a7:71:84:e4:8a:ca:2d:
89:be:3f:10:6e:11:0b:5d:9a:24:49:b1:cd:35:b7:ca:01:42:
19:db:7b:04:85:dc:f9:3c:de:b9:92:5e:6f:7e:ea:d1:af:86:
9f:7b:dd:d2:3a:77:af:10:5f:2d:66:34:84:8f:2c:f4:1a:2c:
72:2a:e3:4b:0f:ec:f0:64:71:41:25:b8:6d:06:be:d2:69:ed:
8e:f9:6c:87:7a:56:d2:75:37:10:f9:66:c6:97:6e:c5:55:64:
62:97:9a:81:bf:92:44:46:3c:9b:55:92:b8:a0:83:fd:ec:ec:
4c:89:b7:01:47:2a:4a:22:8f:bc:fc:de:e8:f1:d9:3b:0f:88:
06:a9:30:92:2e:a7:6e:79:b6:ef:15:c9:74:2e:ff:4c:c5:60:
e5:9f:25:63:81:04:e3:15:8b:df:f6:5f:71:0a:bb:a9:79:b6:
f2:0f:9e:ff:eb:43:af:65:ab:ef:a0:dc:90:57:18:50:3a:48:
d3:8a:ef:2f:d4:db:47:5b:75:ec:e8:de:bd:7f:4d:f3:d3:e1:
50:9a:7a:70:cc:de:ea:34:f4:25:a3:31:ef:ff:58:82:c4:18:
be:ae:4d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org