Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/4DAU0YZwFOtpmD5IBO5Bh_u3sAA.roa
File: 4DAU0YZwFOtpmD5IBO5Bh_u3sAA.roa (raw, json)
Hash identifier: Be2cWIU3uYiLErSJM8Lh5rjksVt1Uc3cj1xiDhGwXwA=
Subject key identifier: E0:30:14:D1:86:70:14:EB:69:98:3E:48:04:EE:41:87:FB:B7:B0:00
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 15005D05
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/4DAU0YZwFOtpmD5IBO5Bh_u3sAA.roa
Signing time: Wed 18 May 2022 06:22:30 +0000
ROA not before: Wed 18 May 2022 06:22:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 193.36.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352345349 (0x15005d05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 18 06:22:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03014d1867014eb69983e4804ee4187fbb7b000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b1:59:9e:89:43:64:ca:d1:34:f2:3f:69:8f:
c8:5f:aa:fe:09:6a:32:1f:71:86:66:2b:9b:37:1d:
eb:45:e1:8f:13:44:8c:f1:6c:ff:60:e2:e4:03:80:
b6:9c:4d:79:65:75:01:db:7b:85:27:fc:0a:d7:8e:
8a:02:c8:00:4c:7a:d8:77:99:07:7f:fa:04:06:99:
3b:bb:6a:fe:5a:bc:d1:eb:60:0c:5b:5d:8c:0a:10:
0a:a0:3d:55:b5:13:1c:3f:95:95:f6:3c:bc:9a:7d:
6f:44:15:41:70:d7:11:db:cf:75:d4:3f:96:8a:ad:
87:98:ac:f8:29:e7:dd:72:c4:41:93:d4:a6:a3:1a:
21:67:9e:b5:b2:1c:12:7f:eb:20:63:df:4c:d9:ef:
10:41:cc:5a:38:7e:99:13:60:2f:51:69:eb:24:4b:
6c:d4:3e:12:38:09:01:c3:39:d1:ab:af:2c:87:cd:
c5:98:b2:d0:6b:26:7f:f6:36:3e:76:c4:5a:44:cb:
4a:4c:e3:b5:c4:af:17:5f:c0:8d:b3:fc:1d:d5:9a:
6d:30:3f:ac:0b:c8:59:af:81:96:a2:99:6d:87:b1:
fa:ea:e0:4b:0b:53:e0:d2:e2:36:cd:85:c6:cf:eb:
e2:ac:94:bd:be:dc:f0:24:ca:6b:a7:c0:81:34:36:
28:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:30:14:D1:86:70:14:EB:69:98:3E:48:04:EE:41:87:FB:B7:B0:00
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/4DAU0YZwFOtpmD5IBO5Bh_u3sAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.72.0/24
Signature Algorithm: sha256WithRSAEncryption
74:12:d6:05:e5:34:72:2d:51:fa:a7:cb:1e:a2:83:27:4d:05:
1a:6c:c3:ce:c4:03:5c:e6:8f:55:fd:47:af:7d:ca:68:23:99:
8d:9d:1f:20:5f:24:3b:92:6e:47:91:56:8e:77:7a:95:a0:05:
5d:86:ae:9b:70:58:c0:22:bb:3a:e6:d9:05:d0:14:f6:33:18:
81:b2:ad:0b:28:28:90:66:6e:21:92:33:43:fa:d5:75:43:6b:
17:ba:28:dc:31:5a:84:65:87:05:7b:15:1a:a2:56:f3:a7:b7:
51:b6:09:85:ba:ad:b6:ef:3d:de:dd:b6:c4:23:ed:33:2a:37:
5f:5b:1c:7d:26:07:56:88:9c:d8:50:ac:45:75:52:e4:73:ea:
e0:b5:91:3a:df:52:d3:36:95:cb:df:26:ba:0d:5a:58:d1:b6:
5b:a3:b4:2c:b5:ba:31:27:06:94:3d:ec:9a:67:36:de:3e:bb:
7e:6d:76:50:21:e5:67:de:50:af:24:4a:55:fe:84:9e:c9:da:
39:ab:83:e3:22:d8:34:00:68:cc:2d:1e:5b:d0:37:de:2f:39:
7d:21:97:2e:d6:7b:31:f4:c2:28:dc:5a:fa:ac:87:73:28:f6:
5e:3c:a5:fc:0e:8b:65:2b:5d:90:f3:50:88:f9:ab:67:40:9d:
93:e5:3a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org