Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-Ac3x7ZmSFPIQmU23bo3k63gxIA.roa
File: 1-Ac3x7ZmSFPIQmU23bo3k63gxIA.roa (raw, json)
Hash identifier: IwMDeO4jact0yYElAXUeAdtT9GJz3q0enKTGVqwHXp8=
Subject key identifier: F8:07:37:C7:B6:66:48:53:C8:42:65:36:DD:BA:37:93:AD:E0:C4:80
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 140E0AB4
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-Ac3x7ZmSFPIQmU23bo3k63gxIA.roa
Signing time: Mon 07 Mar 2022 14:12:41 +0000
ROA not before: Mon 07 Mar 2022 14:12:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.36.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336464564 (0x140e0ab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 7 14:12:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f80737c7b6664853c8426536ddba3793ade0c480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cd:da:b7:76:e2:2a:f4:fe:ba:9d:de:cf:d3:
4e:f3:93:41:95:11:a9:6a:e5:a1:da:d1:51:10:f5:
d2:30:7e:5f:6f:a7:9d:1a:0c:d9:93:00:75:4f:e4:
e2:65:16:5b:96:91:e1:6b:1b:18:7c:49:69:d8:fb:
09:c0:7b:60:e4:00:fd:a5:03:bf:35:16:00:43:21:
75:99:3f:1a:63:ca:8a:7e:a8:56:c0:bb:91:ef:f0:
d7:12:20:71:72:55:64:ce:90:ae:00:b0:e0:34:a1:
29:e8:c2:d8:4c:77:c0:91:36:17:10:6b:dd:03:77:
94:b6:b2:f3:34:38:94:22:be:ac:21:66:22:20:64:
96:7a:29:a8:01:22:1f:19:96:c8:d2:40:fb:99:ed:
0a:0a:c9:92:2b:c2:90:60:cc:cb:f6:c8:93:f0:91:
9d:20:ff:bf:d5:1f:b2:c6:d9:61:de:a6:de:84:26:
b1:36:da:f3:6b:04:ef:5f:17:c5:0d:06:5f:51:a1:
3d:ba:81:31:4f:0e:84:30:d1:27:f0:da:40:bc:ec:
16:2c:38:92:41:52:6f:eb:99:f6:3b:ba:a2:ff:b7:
0f:70:1b:dc:05:0c:72:21:9c:49:89:b1:54:e3:5a:
82:fa:ae:9f:87:b2:8f:fd:13:88:cc:73:bc:fe:cb:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:07:37:C7:B6:66:48:53:C8:42:65:36:DD:BA:37:93:AD:E0:C4:80
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/1-Ac3x7ZmSFPIQmU23bo3k63gxIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.73.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:41:5b:3d:46:8d:08:52:a1:4b:27:2e:9f:10:e6:b2:51:22:
1b:4d:de:3b:96:94:48:54:62:f7:f6:98:8f:9a:0d:a2:2e:6f:
b4:c2:fe:2c:86:04:8f:94:c9:b1:a9:3d:04:c5:87:cc:b4:e9:
76:a6:fa:a9:bc:40:59:3c:66:d0:42:f9:d5:c4:69:dd:e6:03:
5b:db:c4:d0:fd:65:c0:70:a2:46:6c:07:02:d4:f1:95:c3:80:
56:91:14:0a:a8:67:c1:4c:34:41:0c:53:7b:c9:c8:22:20:de:
a3:12:41:46:f3:4a:4a:5a:eb:52:7f:c1:59:54:68:a8:4b:28:
82:ee:ee:76:b9:a4:32:39:75:a5:1f:2d:68:91:b8:64:75:09:
ec:96:29:ef:52:b8:14:01:d0:2d:ae:c4:21:2c:c4:0d:37:ae:
df:e1:b4:a6:af:96:fc:71:7a:c2:20:22:fe:04:6e:b7:06:c7:
c0:90:d4:b4:72:e3:10:09:ff:9a:c9:5f:dd:41:00:3b:19:62:
ee:fb:d4:c6:19:6d:43:9c:4b:ec:cd:a9:a8:db:f8:f9:c5:8a:
86:b1:42:2a:85:2b:e5:0e:dd:29:88:cf:93:38:58:03:b4:46:
be:6d:61:ab:3d:a8:c5:25:af:44:23:ad:77:45:12:1e:b0:8d:
17:18:03:a7
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEFA4KtDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDMw
NzE0MTI0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjgwNzM3YzdiNjY2
NDg1M2M4NDI2NTM2ZGRiYTM3OTNhZGUwYzQ4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJvN2rd24ir0/rqd3s/TTvOTQZURqWrlodrRURD10jB+X2+n
nRoM2ZMAdU/k4mUWW5aR4WsbGHxJadj7CcB7YOQA/aUDvzUWAEMhdZk/GmPKin6o
VsC7ke/w1xIgcXJVZM6QrgCw4DShKejC2Ex3wJE2FxBr3QN3lLay8zQ4lCK+rCFm
IiBklnopqAEiHxmWyNJA+5ntCgrJkivCkGDMy/bIk/CRnSD/v9UfssbZYd6m3oQm
sTba82sE718XxQ0GX1GhPbqBMU8OhDDRJ/DaQLzsFiw4kkFSb+uZ9ju6ov+3D3Ab
3AUMciGcSYmxVONagvqun4eyj/0TiMxzvP7Lm+UCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4BzfHtmZIU8hCZTbdujeTreDEgDAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
LzEtQWMzeDdabVNGUElRbVUyM2JvM2s2M2d4SUEucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcw
LzQwNWJiZC01OTEzLTRlOTUtOGU3NS1mZTA2NTkxNzZhNTYvMS9Lc1Bhb2JGSVVQ
TG1IRmtySVpHUldsNWxwSGcuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADBJEkwDQYJKoZIhvcNAQELBQAD
ggEBAB5BWz1GjQhSoUsnLp8Q5rJRIhtN3juWlEhUYvf2mI+aDaIub7TC/iyGBI+U
ybGpPQTFh8y06Xam+qm8QFk8ZtBC+dXEad3mA1vbxND9ZcBwokZsBwLU8ZXDgFaR
FAqoZ8FMNEEMU3vJyCIg3qMSQUbzSkpa61J/wVlUaKhLKILu7na5pDI5daUfLWiR
uGR1CeyWKe9SuBQB0C2uxCEsxA03rt/htKavlvxxesIgIv4EbrcGx8CQ1LRy4xAJ
/5rJX91BADsZYu771MYZbUOcS+zNqajb+PnFioaxQiqFK+UO3SmIz5M4WAO0Rr5t
Yas9qMUlr0QjrXdFEh6wjRcYA6c=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org