Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c2znweKXX5WsiBrGXsh95RrcsIo.roa
File: c2znweKXX5WsiBrGXsh95RrcsIo.roa (raw, json)
Hash identifier: YW5ZPHGd3eAK4hmGCXsC1b1uCg0AzfQk4hzVJGUsNZg=
Subject key identifier: 73:6C:E7:C1:E2:97:5F:95:AC:88:1A:C6:5E:C8:7D:E5:1A:DC:B0:8A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0182AAEED4DCDCCDC9084F0D37DB1122D3E1
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c2znweKXX5WsiBrGXsh95RrcsIo.roa
Signing time: Wed 17 Aug 2022 08:32:34 +0000
ROA not before: Wed 17 Aug 2022 08:32:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 193.93.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:aa:ee:d4:dc:dc:cd:c9:08:4f:0d:37:db:11:22:d3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Aug 17 08:32:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=736ce7c1e2975f95ac881ac65ec87de51adcb08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:8a:a7:1e:21:b3:1f:ef:b1:6d:f7:87:56:
2b:18:83:e7:f7:11:40:6a:a7:f7:00:32:3b:08:c0:
c5:b3:b0:3a:76:8d:cc:34:0c:d5:eb:2f:67:02:34:
d4:e0:26:8a:4a:2b:74:2b:80:cf:81:1e:8e:0a:95:
0f:9d:52:e1:a3:2f:57:ec:df:3e:77:c5:92:5f:aa:
c3:54:b8:92:2b:0a:a3:74:7c:8d:ba:0b:75:0b:bc:
0e:a8:b2:6b:82:8b:d1:ee:00:a2:28:c5:29:67:8b:
75:e2:4e:32:5b:0c:3e:63:13:64:98:fe:a2:1e:15:
c3:f2:c6:84:e8:b3:f5:92:0a:98:14:8d:e1:f0:2a:
c8:2a:e4:ad:44:4f:6e:03:59:b5:bb:61:3f:6f:ed:
ed:2c:1d:5d:00:21:65:20:c4:00:30:cc:da:9b:be:
5a:71:29:31:72:4e:16:75:db:6a:7d:aa:e4:8f:00:
39:59:af:9f:6b:52:85:6c:d4:a8:21:6c:1b:13:0a:
72:40:0c:b8:9a:38:57:9d:1c:32:92:03:5a:ee:8f:
1d:cc:11:62:e2:b5:32:95:c8:e7:33:2c:52:77:c6:
b5:38:38:b1:bc:1a:22:7e:03:12:98:99:23:93:8b:
16:50:f6:7f:12:13:9e:40:06:04:b8:2a:3c:39:13:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6C:E7:C1:E2:97:5F:95:AC:88:1A:C6:5E:C8:7D:E5:1A:DC:B0:8A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/c2znweKXX5WsiBrGXsh95RrcsIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.52.0/24
Signature Algorithm: sha256WithRSAEncryption
53:ed:2b:2b:4c:e7:67:e5:e4:b7:e8:e4:cc:a4:7c:32:4f:9d:
84:7a:34:6d:cd:70:e4:51:ef:0c:4b:c1:28:87:1f:56:21:47:
20:aa:39:06:82:09:83:90:80:0e:68:a2:5f:72:be:8d:7b:2b:
c9:e7:a4:37:0a:57:e0:08:4e:73:fd:84:78:7e:1d:24:02:78:
32:c6:10:83:81:d5:f2:e6:03:bd:02:26:6e:e5:0a:75:ab:d7:
a6:c1:8d:61:ef:e9:74:46:aa:9e:ff:33:6b:5b:0f:a1:b0:74:
2f:06:e5:53:84:85:8a:4f:48:ad:0c:c3:18:3a:81:6e:b1:1f:
c9:cf:da:34:b3:64:da:3e:e0:89:c9:6b:2b:b0:17:71:12:5c:
3d:9c:57:4b:5b:f2:7f:77:d0:b5:8a:ed:4e:a9:02:34:e0:c4:
84:12:fa:fa:88:9b:83:f2:66:79:7d:98:59:f0:65:51:60:10:
39:e3:55:1b:e8:1d:24:01:eb:05:41:79:d4:3e:a3:d2:9b:3f:
db:3a:ec:25:d8:b0:26:a4:e2:7e:9d:88:23:7e:7c:ab:7b:f7:
30:f2:db:15:b2:64:d4:e8:19:57:69:2d:4a:e1:12:b6:cc:82:
9f:27:ac:9f:4c:0b:f2:78:f0:d7:b4:7f:01:3f:d5:8d:e4:15:
ad:9c:f2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:47 2023 by rpki-client on console-ams.rpki-client.org