Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211585.roa
File: AS211585.roa (raw, json)
Hash identifier: ltBH9ydmSrfAjmTGbPxUkhhk9XJB9qLSOhgDu9Yg9fI=
Subject key identifier: BA:7E:DA:A0:81:0A:42:33:F7:BD:D7:FE:87:C1:38:BD:62:76:98:16
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 7C5387E925C9715EBDBA17A893E04F604C28C41B
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211585.roa
Signing time: Thu 09 Feb 2023 03:07:58 +0000
ROA not before: Thu 09 Feb 2023 03:02:58 +0000
ROA not after: Thu 08 Feb 2024 03:07:58 +0000
asID: 211585
IP address blocks: 141.98.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:53:87:e9:25:c9:71:5e:bd:ba:17:a8:93:e0:4f:60:4c:28:c4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Feb 9 03:02:58 2023 GMT
Not After : Feb 8 03:07:58 2024 GMT
Subject: CN=BA7EDAA0810A4233F7BDD7FE87C138BD62769816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b2:10:85:ec:ac:27:41:c2:93:a3:e4:af:b7:
7e:92:00:3d:04:d7:4a:20:6a:8f:b7:a5:b4:b1:7d:
5c:24:8f:52:f3:7c:cc:6f:ff:e6:a3:0b:7e:d4:eb:
7f:23:fb:60:31:d5:65:0e:f0:48:00:cf:37:4e:ce:
10:de:f2:76:2e:49:7f:09:8e:68:70:22:ec:06:59:
b6:ba:c3:38:4f:9f:b9:68:73:45:24:09:ca:63:06:
8f:ad:6b:d8:a3:ea:05:a3:53:18:35:cb:d2:01:64:
3f:ce:c7:82:96:bb:34:09:14:de:17:17:dd:d9:23:
2e:41:88:19:be:6c:89:ad:45:b0:95:d5:73:46:df:
8c:fd:87:1a:d9:15:79:82:76:cd:71:fd:37:6c:7a:
3e:bb:ed:1d:15:18:c5:cf:9e:08:16:0d:bd:e4:da:
5d:47:e5:21:8a:1d:a6:92:80:ec:ff:d6:0e:4b:67:
8c:d5:c4:4f:53:91:3b:25:69:5f:5e:38:b9:f6:d3:
18:65:f7:74:c9:18:b2:43:c0:b9:95:cb:68:1e:cf:
5e:d8:1b:41:b2:a2:17:49:24:86:92:2a:02:57:e9:
fc:c9:7d:9d:7b:05:4a:01:e0:f1:a1:e4:fe:a1:70:
37:12:2c:6a:da:be:5a:39:b2:f6:7d:f8:0f:cf:e3:
3d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7E:DA:A0:81:0A:42:33:F7:BD:D7:FE:87:C1:38:BD:62:76:98:16
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211585.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.157.0/24
Signature Algorithm: sha256WithRSAEncryption
91:82:91:57:0e:33:97:cb:bc:bb:cf:23:43:15:17:48:83:01:
76:69:e7:37:03:98:57:25:47:42:ab:f1:fa:f2:86:1c:87:f8:
57:51:9c:c7:57:7b:d3:09:9f:1a:d8:bf:1b:5e:03:19:8d:88:
b7:7c:5d:96:28:8a:71:33:06:24:c4:39:eb:2f:2a:74:af:41:
94:fd:df:a7:a4:82:fe:9f:08:c4:d6:2d:1b:ce:d8:20:61:26:
45:63:6e:22:22:94:50:4b:c3:3c:13:58:f9:c0:2b:b5:de:12:
04:42:be:82:a0:9a:b3:cd:55:e1:4b:6c:25:00:da:73:17:10:
47:73:6c:d1:84:ac:1a:09:24:3d:81:72:8e:be:ce:ad:9d:de:
25:80:d3:77:a8:2f:b7:95:8e:ca:78:7c:ec:00:da:94:2c:c5:
0b:bf:7c:3c:23:ad:9d:8a:24:46:6e:6c:2d:f3:ff:66:94:4b:
91:b6:89:23:23:7a:a1:34:83:1a:2b:61:1b:2f:c8:aa:ca:c5:
ac:46:35:34:a1:1a:44:aa:b8:12:2c:48:83:b5:0f:a9:dc:68:
55:0d:d2:11:e7:c5:8f:af:72:4f:f8:69:27:a3:80:9b:3a:1e:
9a:8a:54:24:3b:61:5e:92:1c:d0:c1:3f:d3:08:34:d0:2a:a7:
61:61:0f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:53 2025 by rpki-client