Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207633.roa
File: AS207633.roa (raw, json)
Hash identifier: 0ACigAcSZg6ZFoSO07Z1E9qAYiL4UbZLMBO1kRO7KWo=
Subject key identifier: 86:77:E4:E1:1B:97:E5:2D:AC:73:C7:D6:EF:2D:E0:E6:02:23:3C:A5
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 0AD1B054359BFDFE8E8B712E394850497E3D05C7
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207633.roa
Signing time: Thu 29 Dec 2022 12:26:20 +0000
ROA not before: Thu 29 Dec 2022 12:21:20 +0000
ROA not after: Thu 28 Dec 2023 12:26:20 +0000
asID: 207633
IP address blocks: 45.149.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:d1:b0:54:35:9b:fd:fe:8e:8b:71:2e:39:48:50:49:7e:3d:05:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Dec 29 12:21:20 2022 GMT
Not After : Dec 28 12:26:20 2023 GMT
Subject: CN=8677E4E11B97E52DAC73C7D6EF2DE0E602233CA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:84:fa:cd:50:f7:b8:ea:36:f7:95:d6:85:f4:
5a:60:6a:71:86:59:51:76:88:48:57:d1:13:31:39:
24:40:dc:b4:d7:40:19:01:6c:88:93:c9:67:b1:0e:
40:34:90:5b:10:8a:58:8f:91:45:71:c8:45:6a:be:
c3:36:4f:9e:76:9a:82:95:9f:a2:b8:da:43:03:66:
99:94:94:20:6d:17:5e:09:07:94:20:c3:d0:e0:33:
70:35:04:80:79:ef:f5:2d:dd:33:3b:52:d6:1c:5e:
9d:5d:f9:e7:d5:92:3a:d9:3f:b7:aa:1a:ef:ea:0e:
a3:d9:27:c7:b9:96:32:d9:70:06:49:9d:78:e8:06:
14:3b:27:07:95:52:b6:59:ff:52:6a:06:24:c3:b0:
02:ca:fc:c1:cb:c0:e4:1d:be:5c:77:1d:5f:40:a7:
b9:f2:50:f7:33:36:3b:dd:76:4e:d0:3e:66:0e:3f:
ab:11:a5:c3:5a:96:fe:3a:e5:dd:94:30:0b:54:b0:
29:e4:83:a5:3d:88:fb:9a:fa:af:d0:98:2a:1c:d5:
ed:0c:3e:8a:8a:45:d8:b0:d2:0d:4e:3f:70:6e:17:
51:83:38:47:42:92:38:ed:f2:33:f9:6d:65:e7:6e:
9e:3a:e5:ca:eb:62:b6:e7:31:2c:3d:90:00:af:ab:
c0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:77:E4:E1:1B:97:E5:2D:AC:73:C7:D6:EF:2D:E0:E6:02:23:3C:A5
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS207633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.184.0/24
Signature Algorithm: sha256WithRSAEncryption
92:db:26:54:26:98:2d:0d:92:89:68:43:01:2e:3c:b1:06:08:
21:e6:86:c3:df:23:a2:9c:1c:b5:06:26:94:d3:81:66:23:bb:
b3:2e:aa:a7:79:24:79:af:1e:a0:1d:fb:e3:17:73:fa:54:ac:
5b:52:75:36:d0:50:29:c2:0f:52:3c:41:9c:ea:59:7e:c1:1c:
34:c2:f9:85:5c:ca:09:9d:4a:b6:c6:81:db:22:6b:2c:c3:53:
da:14:76:ee:40:be:18:a6:ad:e2:34:04:32:94:f3:6f:21:6a:
6e:45:f1:e3:ab:0b:d5:f1:9c:6d:ce:1e:bc:86:e9:37:12:6f:
9b:aa:dc:0a:7e:e9:21:dd:50:17:db:06:ac:08:f9:00:f1:99:
48:f6:cb:60:50:03:68:10:fa:0b:2f:2f:b3:f1:6e:8f:67:81:
4a:6a:59:36:31:95:af:fa:66:a8:44:aa:ce:9e:a0:10:f6:08:
1e:5b:4a:4e:22:c8:39:e0:ce:5c:ee:b7:fa:fd:34:31:44:16:
a7:bb:f9:d8:e7:21:54:cd:72:a8:7f:82:d3:26:8f:4d:5f:e6:
9b:d5:fa:39:31:76:aa:94:9b:b1:d0:98:62:ee:f5:e5:e0:ec:
d6:1a:ff:dd:7f:f1:72:17:22:f5:ca:39:92:0f:87:12:54:14:
71:b5:4f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:40 2025 by rpki-client