Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS150670.roa
File: AS150670.roa (raw, json)
Hash identifier: XiLCEV52PHJVssNsg5RFbJPK1AoryCKqaPjlupn04AE=
Subject key identifier: 99:A8:51:D4:D4:1B:FB:F7:22:46:71:3A:BF:46:1E:EC:FA:23:88:0E
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 4BB211E6010BDB8C27E0226042B2613195200E54
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS150670.roa
Signing time: Wed 04 Jan 2023 14:19:49 +0000
ROA not before: Wed 04 Jan 2023 14:14:49 +0000
ROA not after: Wed 03 Jan 2024 14:19:49 +0000
asID: 150670
IP address blocks: 193.29.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:b2:11:e6:01:0b:db:8c:27:e0:22:60:42:b2:61:31:95:20:0e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 4 14:14:49 2023 GMT
Not After : Jan 3 14:19:49 2024 GMT
Subject: CN=99A851D4D41BFBF72246713ABF461EECFA23880E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:07:a1:ed:cc:d0:69:9f:a0:b4:9f:09:2d:00:
d3:fa:51:9e:50:28:aa:a5:9b:3b:ed:85:6a:cf:ee:
cd:05:35:c2:fd:59:11:71:a0:46:5b:5f:30:3c:8a:
2a:c1:94:0f:e2:2e:74:ec:6d:e3:c2:6e:a2:2f:fc:
c1:11:6c:94:c1:6b:a0:41:31:98:d4:92:33:f3:2d:
66:e4:57:60:9b:67:10:a0:9e:94:16:b7:32:50:da:
93:a9:cc:26:97:9e:e3:4f:47:fa:d0:cd:3c:2b:8d:
68:1b:d1:12:03:e4:69:e4:f8:ea:04:ec:a7:1e:ee:
25:3d:01:03:0f:ab:42:86:17:c6:36:3b:ca:b1:71:
f9:ce:5a:f6:3e:63:e4:0c:d6:25:bf:28:29:51:cf:
04:30:f9:d9:e4:50:fe:60:f5:4a:fb:92:4a:2c:20:
d0:a1:72:10:b3:2a:00:17:00:99:54:dd:c9:01:87:
35:c9:6f:cf:10:2c:26:30:80:0a:02:6f:35:85:b0:
10:00:bd:4c:ab:58:bd:e3:47:9d:f8:73:ee:85:a8:
62:9e:84:2c:89:c8:fc:ad:91:9a:bc:9e:be:20:37:
95:fb:5d:40:0b:1b:01:0a:e1:37:7c:09:08:b0:2d:
ab:da:9c:fd:1a:8c:02:5a:2a:44:74:3f:06:ac:06:
d1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A8:51:D4:D4:1B:FB:F7:22:46:71:3A:BF:46:1E:EC:FA:23:88:0E
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS150670.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.99.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e4:7a:20:84:91:7f:a2:ff:c6:3c:90:10:b7:5e:c7:9b:3c:
7e:90:69:99:8f:21:42:42:6f:3c:74:00:1a:86:98:5a:3e:5e:
2d:a4:ff:4a:9a:78:85:9f:55:f9:60:1f:38:52:12:41:57:0f:
2b:67:03:1d:f1:e0:02:2f:76:ad:8b:89:9b:36:fb:0e:00:22:
5b:e7:33:d6:3c:0d:7c:13:2a:7c:73:c6:d0:c5:64:39:39:9e:
73:58:6d:dd:94:f6:67:e6:9b:64:84:18:83:52:2d:64:90:11:
36:1c:2c:7f:1a:d7:ac:cb:d5:6c:14:88:24:eb:c5:af:df:63:
e2:ce:81:2a:9c:81:a4:08:d1:09:31:a9:3c:70:90:22:87:10:
cb:dd:f6:2a:a2:fa:57:be:02:d8:01:07:00:dc:e2:c4:a2:33:
86:13:d4:c0:2f:44:bb:99:76:60:f3:f0:15:31:63:02:90:3b:
5b:29:e2:6f:3a:6d:76:03:8d:3a:da:34:29:00:4c:09:56:fc:
34:4b:b2:32:97:f1:58:63:58:ec:3d:c3:11:ec:79:4e:68:bd:
82:67:f2:84:81:86:2a:7e:3e:06:31:60:09:23:61:b9:01:32:
c7:00:41:78:5d:19:a5:4d:f2:4d:b7:d6:9e:68:98:0b:1a:a3:
3b:39:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:52 2025 by rpki-client