Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60707.roa
File: AS60707.roa (raw, json)
Hash identifier: ysujAdJyTqEslkqab+8mQAyQRn5XS/Vm21FnNVaIe8s=
Subject key identifier: 37:11:CF:BE:CA:77:84:95:2D:0F:1D:D4:F5:0E:64:3E:D0:69:C7:60
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2A1208106FEF21CF336E6A630A099B742CF31D25
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60707.roa
Signing time: Mon 10 Apr 2023 14:25:28 +0000
ROA not before: Mon 10 Apr 2023 14:20:28 +0000
ROA not after: Mon 08 Apr 2024 14:25:28 +0000
asID: 60707
IP address blocks: 191.101.60.0/24 maxlen: 24
191.101.85.0/24 maxlen: 24
191.101.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:12:08:10:6f:ef:21:cf:33:6e:6a:63:0a:09:9b:74:2c:f3:1d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 10 14:20:28 2023 GMT
Not After : Apr 8 14:25:28 2024 GMT
Subject: CN=3711CFBECA7784952D0F1DD4F50E643ED069C760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c7:3d:cf:e6:6b:27:82:6f:cb:6d:57:ab:e8:
eb:37:cb:89:0f:66:89:71:53:fe:06:c6:3b:9b:6a:
f5:b0:83:3c:09:51:1d:76:84:e9:f0:f5:de:5d:c4:
14:46:94:51:66:87:e2:cc:31:ba:62:59:5f:33:5d:
d7:97:f8:9c:b7:99:c1:9a:0e:62:c8:56:10:86:a6:
ee:06:26:1e:9e:03:a8:f7:ec:b0:65:69:f8:cb:07:
e1:1e:fe:c9:0d:ba:cc:36:d2:3b:a0:fd:b3:ae:a1:
a4:1a:66:77:4b:35:9d:b5:66:12:ae:f8:bd:80:ce:
bf:d5:c5:b1:91:5c:25:5f:9f:f1:f8:f0:9c:c7:7b:
9b:42:2d:e7:66:9f:9b:42:dc:0d:93:fb:4c:a0:aa:
34:cb:50:0a:2d:ff:0f:5d:70:02:d6:38:fa:17:e5:
85:89:0d:40:3b:37:46:03:3f:86:c8:61:67:fe:2c:
34:a7:96:0d:3d:c4:36:37:0d:ab:03:c5:f5:69:61:
fd:ea:d8:6b:e1:3b:f1:59:e7:d5:60:0f:46:24:9d:
48:61:47:07:63:ef:0b:9d:ab:f6:11:2b:59:b0:86:
19:5b:9a:c3:3d:43:80:c7:dd:48:7d:01:e5:cc:1c:
47:34:08:e2:f5:2e:fc:14:2c:94:d4:3e:13:fd:4e:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:11:CF:BE:CA:77:84:95:2D:0F:1D:D4:F5:0E:64:3E:D0:69:C7:60
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60707.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.60.0/24
191.101.85.0/24
191.101.90.0/24
Signature Algorithm: sha256WithRSAEncryption
45:8f:aa:65:fe:90:ad:26:2c:b6:6e:b8:b0:74:75:ad:7a:b5:
cf:35:e9:80:50:33:0b:17:3f:e1:29:ef:58:f1:bb:9f:b7:a9:
f7:04:b3:c4:41:bd:f6:cf:a5:f2:23:9b:b3:2e:d3:a5:d2:86:
cc:4f:53:c3:69:b2:02:0e:bc:88:e0:b2:40:fa:66:1f:50:aa:
48:02:ae:99:ab:42:bf:d5:3a:e6:96:88:f2:ad:be:b5:27:7d:
91:ec:22:ef:a9:40:49:a3:ed:4e:90:fe:6e:e5:21:d7:91:a6:
87:4b:be:b0:86:f5:72:b7:22:34:28:88:99:5b:37:b9:7b:a4:
6d:a8:32:04:e8:c1:e1:da:3c:41:3d:f3:ef:e9:cb:7a:34:12:
0c:22:f7:80:05:5b:07:99:61:d7:ef:47:b8:84:8b:4d:ab:0b:
6d:d1:9a:ac:c0:08:3c:cf:ab:b6:ab:75:df:b9:cc:ab:fd:29:
5b:78:d6:73:eb:54:54:1b:f7:11:1e:a4:74:79:67:aa:d6:eb:
b2:f4:91:08:7b:8b:0f:f2:35:5f:43:b4:00:ca:5d:ff:a8:a2:
f8:19:c9:17:bf:37:3e:f0:e6:61:48:a2:99:de:7d:2a:f4:3b:
c6:26:04:9c:b0:e8:64:75:84:fc:09:0a:1d:0c:29:75:7b:7f:
75:a5:8e:5a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org