Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/hRY-Sz5NtPnb8MJNDnAffsJIBM0.roa
File: hRY-Sz5NtPnb8MJNDnAffsJIBM0.roa (raw, json)
Hash identifier: RQb6/bJER3/Am8qvz/09fsS/aHLeQ/DbXE1KnS2Fw6o=
Subject key identifier: 85:16:3E:4B:3E:4D:B4:F9:DB:F0:C2:4D:0E:70:1F:7E:C2:48:04:CD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1576FCB2
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/hRY-Sz5NtPnb8MJNDnAffsJIBM0.roa
Signing time: Thu 23 Jun 2022 12:12:02 +0000
ROA not before: Thu 23 Jun 2022 12:12:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.36.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360119474 (0x1576fcb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 23 12:12:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85163e4b3e4db4f9dbf0c24d0e701f7ec24804cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:64:db:35:01:72:44:98:82:76:b7:96:a8:44:
b4:40:63:da:e1:2f:c8:bb:35:d9:56:63:98:fa:19:
d8:eb:37:f9:73:83:cf:d9:62:89:7e:22:33:99:51:
ad:6d:c0:5c:f0:df:d5:f0:bc:04:68:16:bb:a3:93:
60:95:4d:48:6b:64:83:90:34:d7:cb:e1:d1:76:38:
a3:4b:29:7f:12:94:7b:7c:56:7f:15:b4:02:0f:f5:
25:58:0b:d5:a2:09:cf:5a:dc:18:f3:50:f5:2e:b9:
04:d9:d0:7f:8e:44:f4:8a:ac:ad:c6:7d:e6:d6:9a:
b3:5c:e7:4e:e5:6d:f0:05:57:24:b1:da:be:97:7a:
b9:05:8d:c1:70:6d:96:1d:62:ec:25:8c:77:33:63:
93:f1:15:2d:79:b2:d1:4b:ec:c3:23:29:b8:d1:a2:
7d:48:b0:fc:84:4b:25:20:50:cd:8a:89:f4:3e:a4:
1d:68:11:d5:8e:86:55:ba:99:47:62:85:60:9d:91:
a6:66:9d:52:58:c3:4c:49:e3:4e:b2:9d:03:c6:37:
4a:44:4b:b6:58:0b:3a:63:d3:0f:f6:99:95:fb:9f:
66:3b:08:de:1e:c4:fb:1b:e9:41:66:62:90:ec:5b:
4d:eb:13:5b:b9:06:22:cb:46:d9:a1:17:7a:c9:d7:
bf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:16:3E:4B:3E:4D:B4:F9:DB:F0:C2:4D:0E:70:1F:7E:C2:48:04:CD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/hRY-Sz5NtPnb8MJNDnAffsJIBM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.85.0/24
Signature Algorithm: sha256WithRSAEncryption
39:13:b2:04:59:46:10:00:58:68:26:df:d4:df:68:34:cb:84:
d9:4b:3d:ea:ee:b1:b7:2a:d4:10:01:03:03:e3:90:00:49:b5:
3a:72:5d:38:52:4a:69:84:5d:b4:6f:5d:02:a0:4f:6d:eb:80:
27:a7:61:1d:02:d6:44:df:24:64:ae:c3:1b:95:18:5b:a2:39:
dd:e5:2d:cf:0d:7b:82:d5:cc:47:23:82:ce:9f:da:c5:4c:1b:
aa:05:84:d4:ca:7b:dc:d6:d4:cc:fe:95:14:ee:45:5e:17:e0:
22:22:db:6d:97:a1:f2:91:ad:2a:47:33:fd:b5:ca:da:b3:68:
44:34:27:58:db:83:29:34:6c:f4:5b:d3:0d:49:40:59:7f:9d:
95:f8:36:3f:3e:ea:3b:e0:7f:5e:67:3a:a6:c0:6c:3a:fd:31:
fd:ef:2e:9a:4d:c4:b6:2b:ca:c3:13:ad:ef:1c:58:88:0e:ba:
af:a5:fa:79:7c:c1:43:74:3a:21:71:33:a9:3a:67:bb:d0:c4:
9e:6b:45:23:e9:2d:c1:5c:42:0d:25:62:19:c8:ac:ef:ab:b3:
99:1c:fa:65:d6:91:85:b9:d1:6a:21:94:0d:ab:5b:64:18:a6:
1c:00:cc:aa:10:ba:a6:ad:e8:3a:e6:fe:64:6e:eb:46:bd:eb:
2e:1e:6b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org