Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8RxgjOjbA3oDWWTFSXH-7juyp_U.roa
File: 8RxgjOjbA3oDWWTFSXH-7juyp_U.roa (raw, json)
Hash identifier: c0bq2Q9AQi9Z0+67hkCKT63ctVUrN1zseEC/w674QZQ=
Subject key identifier: F1:1C:60:8C:E8:DB:03:7A:03:59:64:C5:49:71:FE:EE:3B:B2:A7:F5
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01824D53A402FFA16328744EB1D7D6971F9C
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8RxgjOjbA3oDWWTFSXH-7juyp_U.roa
Signing time: Sat 30 Jul 2022 04:18:23 +0000
ROA not before: Sat 30 Jul 2022 04:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399641
IP address blocks: 193.36.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4d:53:a4:02:ff:a1:63:28:74:4e:b1:d7:d6:97:1f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 30 04:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f11c608ce8db037a035964c54971feee3bb2a7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0b:92:96:12:f0:23:05:ac:12:96:a3:e9:c9:
52:ff:8e:b4:a6:0b:05:dc:ab:2d:5d:2f:97:ee:d2:
71:47:db:26:d8:88:9b:3b:eb:99:06:26:e6:50:14:
22:53:f8:78:54:16:f4:4a:31:d1:68:e4:2c:9b:65:
0b:b1:93:d7:76:37:fa:55:c8:45:9c:85:a8:55:51:
98:33:49:91:8d:e0:a3:81:9a:d2:a3:d5:e8:e5:a8:
db:85:01:f9:db:38:ab:ce:0f:54:18:cb:c2:9d:76:
2a:2a:83:27:46:e2:76:7f:4e:c5:73:cd:97:cb:96:
7c:42:0a:5c:82:b2:98:23:0c:17:7b:de:88:0f:29:
d8:b3:e0:90:f5:22:82:21:43:37:8b:19:89:92:b6:
c8:23:fe:ad:4e:1d:be:aa:1a:e2:f4:8e:98:1a:92:
16:d1:af:f3:c0:7b:77:39:ca:17:13:e1:39:34:f7:
7c:f0:c3:33:fd:20:e5:e4:fb:ba:91:d4:81:ce:8c:
71:ac:36:b7:2c:ff:bf:fb:06:b8:5e:b8:58:f9:bf:
1c:30:02:93:68:ab:4d:8e:36:99:71:46:17:55:79:
9e:a1:94:07:35:dc:d8:00:97:2d:21:63:71:c7:ef:
d5:35:b6:7b:2f:58:d8:db:c0:aa:b5:0b:79:ea:83:
e9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1C:60:8C:E8:DB:03:7A:03:59:64:C5:49:71:FE:EE:3B:B2:A7:F5
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8RxgjOjbA3oDWWTFSXH-7juyp_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.73.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:82:b5:b9:80:b9:87:65:8e:db:92:95:b8:a1:a3:71:ed:ca:
3c:48:9e:88:05:16:a5:75:02:d4:7a:01:6f:e7:02:1b:43:4f:
96:83:98:8d:94:4a:5e:79:1f:dc:ce:4f:73:02:96:75:2a:59:
27:0d:8b:16:4f:0b:86:2b:0c:31:52:55:09:c4:4d:4a:ed:3e:
e9:41:b2:b3:9d:1c:36:ac:96:e9:46:2b:fd:49:75:e1:c0:3e:
3c:a9:df:86:71:29:11:1f:95:95:38:a3:04:8f:39:c1:a1:8e:
9d:5b:32:5b:5e:db:eb:f7:e2:11:32:5a:31:9b:67:e0:3d:b7:
ce:f3:27:04:13:4d:17:17:d6:03:9c:ee:95:b7:c2:43:bb:32:
1e:31:14:47:64:f6:98:e8:a3:f4:db:df:e2:03:e6:4c:c0:92:
df:f5:32:71:6a:02:2c:40:2d:66:67:49:3a:4d:d3:2e:c4:df:
41:fb:94:97:b7:40:92:4d:5f:79:29:44:09:83:e1:c0:cf:05:
cb:86:3b:11:31:7a:40:a0:ad:c2:3c:1b:14:1c:da:2d:34:81:
64:ff:96:61:df:91:6c:36:75:86:9d:9f:32:6e:d8:6d:21:b6:
7d:e5:48:54:b5:ab:ed:6b:36:e1:ee:6b:3d:8b:8b:96:11:5f:
23:31:62:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJNU6QC/6FjKHROsdfWlx+cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjIwNzMwMDQxODIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTFjNjA4Y2U4ZGIwMzdhMDM1OTY0YzU0OTcxZmVlZTNiYjJhN2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiAuSlhLwIwWsEpaj6clS/460pgsF
3KstXS+X7tJxR9sm2IibO+uZBibmUBQiU/h4VBb0SjHRaOQsm2ULsZPXdjf6VchF
nIWoVVGYM0mRjeCjgZrSo9Xo5ajbhQH52zirzg9UGMvCnXYqKoMnRuJ2f07Fc82X
y5Z8QgpcgrKYIwwXe96IDynYs+CQ9SKCIUM3ixmJkrbII/6tTh2+qhri9I6YGpIW
0a/zwHt3OcoXE+E5NPd88MMz/SDl5Pu6kdSBzoxxrDa3LP+/+wa4XrhY+b8cMAKT
aKtNjjaZcUYXVXmeoZQHNdzYAJctIWNxx+/VNbZ7L1jY28CqtQt56oPpqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPEcYIzo2wN6A1lkxUlx/u47sqf1MB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvOFJ4Z2pPamJBM29EV1dURlNYSC03anV5cF9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSRJMA0G
CSqGSIb3DQEBCwUAA4IBAQCsgrW5gLmHZY7bkpW4oaNx7co8SJ6IBRaldQLUegFv
5wIbQ0+Wg5iNlEpeeR/czk9zApZ1KlknDYsWTwuGKwwxUlUJxE1K7T7pQbKznRw2
rJbpRiv9SXXhwD48qd+GcSkRH5WVOKMEjznBoY6dWzJbXtvr9+IRMloxm2fgPbfO
8ycEE00XF9YDnO6Vt8JDuzIeMRRHZPaY6KP029/iA+ZMwJLf9TJxagIsQC1mZ0k6
TdMuxN9B+5SXt0CSTV95KUQJg+HAzwXLhjsRMXpAoK3CPBsUHNotNIFk/5Zh35Fs
NnWGnZ8ybthtIbZ95UhUtavtazbh7ms9i4uWEV8jMWKk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org