Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60064.roa
File: AS60064.roa (raw, json)
Hash identifier: okxrQ2hDDR0YcApeHJkxVw/V877wLFNaPwyGut7F9sM=
Subject key identifier: 07:F2:20:38:05:D3:0C:15:B2:54:2A:AA:3F:7A:A7:42:61:4A:57:64
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: FFA43CACD4B5AB898B92A974C6E3FA290C4151
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60064.roa
Signing time: Wed 01 Mar 2023 07:08:20 +0000
ROA not before: Wed 01 Mar 2023 07:03:20 +0000
ROA not after: Wed 28 Feb 2024 07:08:20 +0000
asID: 60064
IP address blocks: 191.101.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ff:a4:3c:ac:d4:b5:ab:89:8b:92:a9:74:c6:e3:fa:29:0c:41:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:20 2023 GMT
Not After : Feb 28 07:08:20 2024 GMT
Subject: CN=07F2203805D30C15B2542AAA3F7AA742614A5764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e0:bb:9c:3d:ca:c7:db:54:b5:fe:7f:a0:bb:
cd:f3:4d:9a:75:8f:60:90:9e:7a:dd:d6:d7:a0:26:
ed:6f:cf:ca:a2:40:01:22:fa:a7:fc:17:c1:3a:ba:
0a:21:d3:f5:74:da:03:34:8a:62:bb:d1:19:1a:10:
96:e5:56:0a:51:d5:3e:ae:f0:71:4f:15:f1:ee:f7:
bc:5c:50:6b:03:cd:81:59:6c:cc:d4:71:00:b6:bf:
36:33:1c:ba:5c:cc:83:83:f6:9d:fc:e6:bd:8d:f3:
60:a5:18:7e:ae:f9:8c:1e:06:ea:c6:df:f2:1b:e5:
3c:da:8b:0b:0f:2a:55:f0:91:55:c7:a8:ab:0d:08:
5f:42:f6:b1:18:ac:41:a1:5a:66:e9:f7:b4:c5:62:
12:6f:1e:84:98:d8:99:66:66:a7:7b:3b:b0:16:44:
3c:90:78:09:2c:ad:ed:c5:d0:5c:0f:71:b7:33:9f:
aa:3e:cf:3c:77:9c:bb:e0:10:bf:96:38:d2:3c:c9:
78:c0:48:1a:5e:53:4d:f2:19:8e:cf:7e:66:e8:c0:
8a:47:00:ab:bd:67:4a:7c:c1:db:36:78:ad:fd:f5:
54:3b:be:df:a1:00:05:d6:9d:4d:fd:38:4a:4d:bb:
a7:26:42:89:86:5c:ee:f8:eb:d8:7c:92:b3:11:59:
10:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F2:20:38:05:D3:0C:15:B2:54:2A:AA:3F:7A:A7:42:61:4A:57:64
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60064.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.245.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:2e:fc:4b:43:35:9f:f2:ed:c9:e8:97:55:b2:3c:be:f4:a3:
d1:e3:5f:4c:ec:9d:65:dd:51:e3:b6:86:36:d2:ec:c7:e1:08:
f9:34:c8:77:82:43:65:13:ad:41:0f:ea:51:ec:97:7c:14:5d:
08:cd:61:1f:0c:78:0d:c7:38:24:13:bb:8b:4d:11:e5:6a:1a:
63:f6:74:a7:04:73:1e:9a:cd:e6:06:50:ad:1c:25:e2:55:eb:
da:d6:32:f8:17:a8:8d:8d:88:8f:47:b7:7c:3c:17:87:81:ff:
1c:af:f6:1e:54:30:10:88:10:11:35:83:76:92:95:a4:6c:78:
13:d1:fa:4d:24:51:6f:58:07:da:1a:32:71:dc:f9:01:3c:f2:
4b:ca:62:62:ae:b7:f4:ff:14:21:3b:f1:37:76:20:0c:44:e3:
6f:3e:9c:71:ac:68:16:5d:49:1b:5d:61:36:e8:a9:de:d4:24:
03:2f:c7:db:f3:60:99:dc:f3:ca:ee:3d:44:3f:9a:13:38:ef:
70:b8:15:6f:b1:ee:eb:45:ca:68:47:6f:fa:90:d4:29:47:e3:
bf:60:67:27:d1:e0:9a:c9:9e:16:dd:3b:e7:b5:45:ad:a5:7f:
0e:d2:7d:0f:14:42:6f:51:96:78:01:95:21:b8:3f:ce:da:68:
b5:74:44:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:24 2025 by rpki-client