Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zO2Cj8QXSbu7rFY-_fHqr5eenTM.roa
File: zO2Cj8QXSbu7rFY-_fHqr5eenTM.roa (raw, json)
Hash identifier: K0WKcM09qGImNa7Cv0oCwbLLa1aJ5cV/JpICCCS9EJE=
Subject key identifier: CC:ED:82:8F:C4:17:49:BB:BB:AC:56:3E:FD:F1:EA:AF:97:9E:9D:33
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0183F01A8198E57D6701EA35B5AD73782AFB
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zO2Cj8QXSbu7rFY-_fHqr5eenTM.roa
Signing time: Wed 19 Oct 2022 11:56:52 +0000
ROA not before: Wed 19 Oct 2022 11:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133206
IP address blocks: 193.36.84.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:1a:81:98:e5:7d:67:01:ea:35:b5:ad:73:78:2a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 19 11:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cced828fc41749bbbbac563efdf1eaaf979e9d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4b:a5:00:97:52:25:dc:0c:6f:6d:df:6d:b1:
0b:0e:ad:ed:18:7e:13:78:fb:36:02:60:94:2e:cd:
f0:72:09:3a:6f:bf:aa:fc:11:10:9b:e0:fd:4c:ed:
9e:95:f8:14:22:fe:ad:d4:ed:5f:49:ac:84:03:ea:
4f:e1:23:bf:89:ba:79:cc:07:30:7c:d3:4b:8c:20:
e1:80:c3:1d:6c:2a:2e:b5:e3:ca:6a:27:8e:e2:46:
7e:52:68:c8:0d:be:ff:c9:67:96:cb:ab:7d:6d:6f:
98:bc:11:12:cc:ad:e4:1c:3c:43:41:25:7c:05:ab:
94:58:57:75:80:d5:d4:48:a4:59:66:1a:30:0e:27:
d4:a7:8f:c2:f7:97:cf:bd:c1:17:d3:10:b3:ce:c2:
1a:78:1f:91:e9:01:83:f6:95:58:08:cb:86:bb:35:
65:83:db:55:29:43:38:8f:16:b7:3a:31:02:ce:36:
ad:dd:7a:ed:9e:11:41:6a:cb:7b:90:57:c1:56:be:
57:b6:c8:e4:6a:94:e6:1b:f3:c1:43:55:09:f7:c8:
bb:21:a5:09:2a:e4:12:ea:df:d5:c7:ea:0a:f9:8b:
32:2c:df:cd:67:b4:6f:85:71:f8:d7:95:3f:cf:4f:
31:c9:53:b7:96:1f:e0:85:c3:f9:67:df:03:c8:74:
fb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:ED:82:8F:C4:17:49:BB:BB:AC:56:3E:FD:F1:EA:AF:97:9E:9D:33
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/zO2Cj8QXSbu7rFY-_fHqr5eenTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.84.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:5d:25:12:2e:8e:98:7a:08:5b:76:9d:72:43:d3:5c:03:33:
67:17:a2:6d:8e:70:1e:4c:1a:ce:70:29:54:1c:d5:d5:fd:ca:
d8:43:ca:4e:66:16:22:09:45:0a:93:a1:25:02:ed:f6:e5:e0:
73:30:c6:b1:44:3f:45:42:76:23:57:d2:94:cb:c4:83:e0:45:
8f:57:3c:ab:15:62:bc:6d:33:22:0b:2a:f3:5d:cc:a0:40:f0:
cc:c6:65:33:c1:72:04:47:4a:b2:77:bc:22:84:f7:2d:f1:27:
b0:17:e7:b0:d3:65:5d:d9:12:69:12:c9:81:2c:91:e5:bc:b1:
a2:90:df:da:ef:78:77:dd:f3:45:6e:79:54:f6:eb:ab:2a:b4:
b9:76:ea:b6:79:3e:ab:2d:a5:82:6e:1a:ee:00:aa:45:22:bb:
c0:f0:37:8e:a4:6d:bc:bb:f7:dc:64:61:e7:8b:3a:34:e5:a7:
8d:8a:78:7a:8e:65:74:79:ef:73:4a:51:be:a5:86:17:1a:f8:
d7:e9:24:19:72:12:f5:03:63:10:f8:63:4e:d5:a5:58:5a:f3:
8c:08:6a:f1:a0:ab:7e:16:26:3e:22:35:48:07:38:e5:c8:96:
80:10:d7:88:d0:c6:02:9a:0c:ba:0e:4a:35:4b:0f:ae:dc:9f:
e6:25:80:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org