Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207429.roa
File: AS207429.roa (raw, json)
Hash identifier: uP3FCe0PpIVccEw9zB54BQRjs+yONp2GXuGYthBMQ4o=
Subject key identifier: 2A:DE:59:6D:B7:49:BA:1E:03:A9:3E:89:F0:B9:00:BF:CB:27:85:32
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 676438084DCE4F7CB705592F4337A190F422BC79
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207429.roa
Signing time: Fri 13 Jan 2023 12:40:22 +0000
ROA not before: Fri 13 Jan 2023 12:35:22 +0000
ROA not after: Fri 12 Jan 2024 12:40:22 +0000
asID: 207429
IP address blocks: 194.147.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:64:38:08:4d:ce:4f:7c:b7:05:59:2f:43:37:a1:90:f4:22:bc:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jan 13 12:35:22 2023 GMT
Not After : Jan 12 12:40:22 2024 GMT
Subject: CN=2ADE596DB749BA1E03A93E89F0B900BFCB278532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:86:cc:ec:e2:24:18:79:2a:80:3f:ab:6f:
77:08:1a:8d:55:01:53:76:b0:de:f4:87:e6:22:11:
2d:1e:68:ad:4c:dc:8f:c0:1a:d0:a4:93:58:e9:a7:
96:7b:65:2c:8d:9d:de:23:d2:54:b7:38:d8:2d:0b:
02:2b:b8:3c:93:bd:c1:2d:c7:35:ce:73:86:7b:4c:
6a:95:08:1f:b7:fc:d7:c1:58:4a:94:d3:de:1b:55:
1d:b7:6d:e6:8d:fe:0c:ca:c1:91:55:52:96:15:58:
df:45:aa:30:2d:41:0c:ed:1f:5d:55:11:bf:b9:ca:
d4:af:b9:9f:6f:28:77:bc:7b:70:15:a8:19:b7:9e:
7a:53:a3:3a:6f:84:b5:cc:1a:83:9e:20:df:3a:7c:
93:7b:5b:1f:4f:ee:76:77:8c:35:f7:f4:cc:28:51:
68:0e:90:5a:1c:f9:c7:ad:f6:42:55:24:9e:2b:34:
26:2e:b8:c3:25:fc:2c:de:07:f0:75:7a:38:69:e8:
08:de:2d:ec:b8:02:82:a6:b1:24:f5:17:a3:13:46:
7f:5a:a4:7c:80:72:8a:e9:2e:56:07:07:14:fc:45:
54:b9:a1:ff:05:b2:a9:78:3b:8f:f1:2f:26:88:99:
9b:98:ca:62:f0:bf:3e:75:17:eb:a3:58:72:f1:7e:
0a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DE:59:6D:B7:49:BA:1E:03:A9:3E:89:F0:B9:00:BF:CB:27:85:32
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207429.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:da:c5:b9:1c:a5:c1:c9:d7:3a:41:56:8d:70:31:48:0d:2b:
2d:04:74:32:83:0a:89:9b:c3:85:06:a5:1b:d2:04:c2:80:d6:
a9:cf:d8:fe:33:c8:5b:03:aa:2b:f4:db:cf:70:21:1b:28:7c:
0c:4b:4c:09:ba:64:ae:13:97:1f:c8:85:4c:11:47:62:81:06:
fd:60:64:52:68:93:09:c4:97:c5:b9:56:6d:d0:48:5e:12:a5:
4b:d2:15:cb:6b:bd:84:8e:14:ab:cd:8c:09:5e:7d:34:68:1c:
6c:67:8b:3a:00:c8:9c:bf:b7:13:d6:70:c3:ff:0d:a3:9c:4a:
fa:de:a1:89:34:eb:78:19:59:16:b2:b3:50:06:29:54:57:66:
b5:e2:ab:86:dd:8b:bd:0c:c3:08:6a:e8:e6:c5:1f:fe:9d:e0:
da:6c:ce:27:86:49:12:15:f3:6f:14:11:24:fc:3c:1c:80:e5:
99:dc:e9:10:20:f4:47:9e:42:30:5f:01:4a:14:63:24:26:8a:
69:4d:a1:f9:7a:41:46:e6:48:65:ff:cb:3e:63:f1:2c:2b:3c:
5b:52:dd:c8:2d:03:ce:f2:74:34:c7:3f:25:fb:83:d8:01:8d:
a0:d1:ab:30:18:c2:53:13:85:17:10:67:40:9d:3f:a6:26:e3:
99:7e:64:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:19 2025 by rpki-client