Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/CpZxrn_gCEG5DDdyWDvQt2Y8gWE.roa
File: CpZxrn_gCEG5DDdyWDvQt2Y8gWE.roa (raw, json)
Hash identifier: +EM0oTw9hpTzEDJUVkZ3SLx92J1oRjRXtPiF47rVCWw=
Subject key identifier: 0A:96:71:AE:7F:E0:08:41:B9:0C:37:72:58:3B:D0:B7:66:3C:81:61
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018300297E5BFB1D324E1145ADC214E97279
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/CpZxrn_gCEG5DDdyWDvQt2Y8gWE.roa
Signing time: Fri 02 Sep 2022 21:44:22 +0000
ROA not before: Fri 02 Sep 2022 21:44:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 193.233.232.0/22 maxlen: 22
193.233.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:00:29:7e:5b:fb:1d:32:4e:11:45:ad:c2:14:e9:72:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Sep 2 21:44:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a9671ae7fe00841b90c3772583bd0b7663c8161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2f:82:16:eb:60:ed:4b:0a:bf:13:99:aa:1e:
81:ce:a1:67:83:ca:de:73:36:bb:14:0a:6c:04:b1:
b4:5e:8b:36:ab:55:6e:86:af:2a:68:34:2e:e7:d9:
e5:63:02:31:b9:b0:ff:46:18:11:7e:71:63:ab:45:
dd:62:42:e6:9a:c9:d9:e8:4a:8c:be:e6:52:7a:f1:
46:75:7b:30:2a:c9:69:c4:71:7f:ca:11:2f:6c:4d:
09:36:1b:af:a0:5f:a8:4f:ff:a8:f2:b6:26:89:dd:
12:d0:b5:f1:f0:9c:a8:50:00:43:6b:a6:6b:29:ee:
d2:94:68:7d:ae:0c:e8:2a:05:17:f8:4c:ec:ff:8b:
ad:8e:8c:28:b4:b5:1e:82:ec:5b:73:16:2e:2e:f9:
09:ef:2c:ad:c4:fb:1a:0f:fc:a4:ef:bf:d6:e9:b7:
f1:a3:51:d3:71:2e:98:f9:7c:d9:22:e4:ea:f1:6b:
ea:b3:94:be:f4:75:b6:f2:4d:e7:e8:84:63:a3:d4:
0d:54:f6:de:02:37:44:54:25:bd:f8:5a:d4:11:98:
6e:4a:aa:ed:d9:e1:af:64:ff:4c:e2:43:b4:d5:ae:
ef:ee:2a:d0:0e:87:c9:f8:92:b0:12:8e:e5:37:c1:
0f:bd:39:d4:c0:39:f7:24:13:90:d4:e7:17:cf:0e:
8c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:96:71:AE:7F:E0:08:41:B9:0C:37:72:58:3B:D0:B7:66:3C:81:61
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/CpZxrn_gCEG5DDdyWDvQt2Y8gWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.85.0/24
193.233.232.0/22
Signature Algorithm: sha256WithRSAEncryption
62:67:26:15:68:fe:a7:8d:8a:2a:cf:b7:17:09:b4:a2:e7:67:
47:ff:ef:8d:0d:ca:4c:5b:ca:16:1e:de:04:0d:13:7c:bc:62:
72:0f:c0:1c:5e:7b:0a:73:2c:b9:3e:8e:b2:62:50:27:12:d2:
32:97:0e:de:11:23:76:4e:ed:61:6d:d9:30:b8:60:06:5e:d5:
ac:01:ae:0b:d7:a6:07:7d:2a:1d:a7:e9:1d:ab:01:c9:fc:be:
8c:d2:9b:9e:a0:1a:0c:d6:cb:b3:d1:2e:e1:c7:5f:b3:48:e7:
85:23:c2:4f:11:62:74:49:b4:7b:13:c9:07:cd:f9:b9:db:a8:
61:ee:87:14:01:cd:8e:39:e8:11:ec:8e:12:64:d4:77:ba:34:
d2:ed:47:b4:f0:3b:d4:96:62:5b:78:b6:ee:a2:4b:b8:df:1b:
39:80:ae:7b:ab:b3:fe:c0:09:c0:b2:9c:7c:a7:e8:7b:74:33:
01:84:96:2a:1b:7d:a1:cb:c4:87:b9:a4:b5:80:1b:1b:2d:a5:
45:e4:09:af:af:87:7e:24:78:3c:11:ab:e3:24:dc:c3:b5:61:
09:30:00:83:53:4b:5e:3a:e7:3a:83:46:3e:a9:32:72:f8:28:
11:49:d3:a6:16:95:6c:8e:bc:91:50:1d:f6:50:41:06:36:70:
94:1c:24:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org