Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gz9NEeqtnGyISmcEFCm9Xi7TaAI.roa
File: gz9NEeqtnGyISmcEFCm9Xi7TaAI.roa (raw, json)
Hash identifier: tRIiS5ivpmQbe6liQjVQFInef0fd1wXGwssb3ZZP85I=
Subject key identifier: 83:3F:4D:11:EA:AD:9C:6C:88:4A:67:04:14:29:BD:5E:2E:D3:68:02
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 157865E4
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gz9NEeqtnGyISmcEFCm9Xi7TaAI.roa
Signing time: Thu 23 Jun 2022 12:12:03 +0000
ROA not before: Thu 23 Jun 2022 12:12:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 193.36.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360211940 (0x157865e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 23 12:12:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=833f4d11eaad9c6c884a67041429bd5e2ed36802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d7:8b:d1:7c:f1:f6:9c:e6:97:54:70:33:e6:
c2:72:2a:56:28:36:9d:6c:01:2f:1d:16:eb:9e:8c:
4f:c8:48:59:ff:6f:4c:0a:2c:78:0d:38:03:0e:98:
30:bc:90:52:72:93:41:61:f1:48:3b:a1:60:00:d9:
5c:18:ca:1c:b6:4b:4f:b4:e0:5c:15:9f:3d:b5:c2:
1a:9e:5f:9d:dc:5b:51:c3:cf:a7:49:34:b4:e7:21:
d9:f5:85:0f:36:65:b9:30:e2:71:64:0d:ac:dd:44:
f1:6c:6f:1b:51:07:55:da:b1:09:fd:20:94:ef:2d:
5b:b3:2d:86:42:a8:01:60:a4:e9:e0:57:d1:8b:24:
bf:08:2b:b1:ae:68:e6:a5:4a:d6:d2:7c:5b:ac:3f:
93:fd:13:1f:ef:8d:38:1b:06:3d:05:8c:b4:3b:e2:
5b:8c:97:c3:8a:6e:d2:84:e4:1f:19:d8:d6:3f:8d:
0a:98:d9:74:8f:0c:9c:09:5b:4f:d9:62:96:77:cd:
05:d4:0d:75:97:10:dc:7b:24:af:b2:04:bd:c5:ff:
0e:c8:b1:69:57:2c:c5:ae:27:d6:70:12:c6:31:68:
a0:73:a2:96:cf:07:04:64:15:89:51:c9:14:da:09:
12:e4:43:6f:43:23:40:03:db:20:eb:c1:67:eb:d3:
bf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3F:4D:11:EA:AD:9C:6C:88:4A:67:04:14:29:BD:5E:2E:D3:68:02
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/gz9NEeqtnGyISmcEFCm9Xi7TaAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:f6:de:66:55:de:4f:59:f5:39:a3:ef:2d:f1:a8:88:e8:8f:
47:05:ca:b3:21:f3:30:07:9f:9b:71:da:9c:cd:45:7f:90:36:
96:4e:15:e4:93:53:5d:3f:20:e5:f9:7a:e8:6b:ff:44:4b:86:
a1:a7:b3:9a:00:8a:b1:d9:f0:1e:61:cd:e4:cd:35:10:ef:19:
f4:45:38:1a:bd:fa:46:be:ae:56:69:62:38:1b:36:02:78:c5:
7a:0a:41:9f:ab:cd:4f:cd:a6:16:6e:bf:c4:7b:55:d6:8e:f6:
19:d1:4a:2d:05:18:1e:66:c2:35:9f:b0:dd:af:57:58:04:70:
d2:e6:a0:57:ac:0d:32:4b:0e:20:7c:88:65:bd:16:3d:7d:fe:
70:7e:53:a0:d3:3f:fd:c0:24:5b:68:64:b9:5f:50:ce:e0:0b:
14:9a:fc:d5:64:17:b8:5f:30:49:42:fc:f3:b8:cf:70:c9:f2:
e0:b8:f1:a5:f4:2d:1b:b8:02:66:e2:6b:d5:82:a5:39:57:c4:
02:c1:2a:a8:76:7a:7b:b9:f5:0c:55:a3:b6:ea:de:56:09:2b:
f5:a4:0e:5f:d7:53:bd:5d:4f:7a:04:31:19:45:46:52:c9:6f:
27:ef:23:10:fa:f4:06:b0:de:f9:d1:b5:5e:a1:2f:69:6f:8d:
7d:1e:84:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org