Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a4d97c-214f-4e58-8a1b-9b7ba2515607/1/czWYwhlvF5QCN8GM3KOadqrmTXE.roa
File: czWYwhlvF5QCN8GM3KOadqrmTXE.roa (raw, json)
Hash identifier: 1gOWe4zUrwkYWypnkYbrjxfq/oFTWjjmcZjgwLf7I00=
Subject key identifier: 73:35:98:C2:19:6F:17:94:02:37:C1:8C:DC:A3:9A:76:AA:E6:4D:71
Certificate issuer: /CN=8a6706b33960e1d15fd1770a298e0a555a41a809
Certificate serial: 0758AFDD
Authority key identifier: 8A:67:06:B3:39:60:E1:D1:5F:D1:77:0A:29:8E:0A:55:5A:41:A8:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imcGszlg4dFf0XcKKY4KVVpBqAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a4d97c-214f-4e58-8a1b-9b7ba2515607/1/czWYwhlvF5QCN8GM3KOadqrmTXE.roa
Signing time: Sat 01 Jan 2022 14:01:04 +0000
ROA not before: Sat 01 Jan 2022 14:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209535
IP address blocks: 193.33.40.0/23 maxlen: 24
193.33.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123252701 (0x758afdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6706b33960e1d15fd1770a298e0a555a41a809
Validity
Not Before: Jan 1 14:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=733598c2196f17940237c18cdca39a76aae64d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a2:d8:3c:a9:31:1a:2f:db:f7:33:86:17:3c:
a1:3f:cd:a2:82:3e:97:3f:c1:58:9c:ca:32:2c:3d:
ff:3e:fa:8f:02:17:c9:6c:a5:b1:98:dd:4c:72:0c:
fe:d0:60:0d:48:03:d2:db:38:83:e3:44:fd:bd:25:
83:2e:9a:9f:0b:81:0f:a2:ab:c2:6e:85:df:32:78:
5d:85:d2:1b:5a:22:39:b8:10:07:21:09:b7:70:f7:
03:66:be:45:ba:6b:bb:f6:bf:7f:b2:85:67:2c:0b:
15:19:28:bb:bd:a5:4e:3a:c9:ef:84:9a:85:54:f4:
77:9f:b6:30:dd:90:f9:bf:96:2c:04:b5:54:75:63:
d5:d0:45:2c:5d:db:ab:1c:8c:10:fd:a5:21:f1:89:
ac:4a:8d:ee:84:8d:6a:50:ff:f5:f1:b0:3b:78:d2:
f8:81:e2:0b:93:7e:ef:df:18:ba:b3:85:1e:f0:b3:
1c:f6:cb:d3:08:db:a0:06:b3:3b:0c:61:c3:57:56:
20:84:10:25:a8:55:7b:38:6f:7d:21:88:7c:ec:ad:
0c:3f:bc:b5:51:d8:a8:69:f6:e4:1f:18:62:4f:e1:
f6:22:16:48:12:31:15:9a:82:cd:bf:2d:4c:a5:7d:
bb:06:07:1c:4e:01:3e:7c:a9:66:00:fa:fb:eb:fb:
65:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:35:98:C2:19:6F:17:94:02:37:C1:8C:DC:A3:9A:76:AA:E6:4D:71
X509v3 Authority Key Identifier:
keyid:8A:67:06:B3:39:60:E1:D1:5F:D1:77:0A:29:8E:0A:55:5A:41:A8:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imcGszlg4dFf0XcKKY4KVVpBqAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a4d97c-214f-4e58-8a1b-9b7ba2515607/1/czWYwhlvF5QCN8GM3KOadqrmTXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a4d97c-214f-4e58-8a1b-9b7ba2515607/1/imcGszlg4dFf0XcKKY4KVVpBqAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.6.0/23
193.33.40.0/23
Signature Algorithm: sha256WithRSAEncryption
30:62:73:04:7c:99:6e:e8:49:cc:57:bb:5a:ab:45:13:0d:68:
ae:1b:fc:d3:96:c1:d1:93:41:0d:c6:42:d5:b9:af:c9:7f:9b:
a7:13:47:e4:f4:af:0d:20:e4:80:24:55:10:73:d3:a8:db:d5:
f1:b2:55:03:32:19:60:d3:95:1f:34:75:ee:6a:19:09:c7:25:
b0:1d:47:76:1a:3f:b1:fb:d9:5e:5b:b4:b6:4b:e1:b1:40:4d:
fa:9f:ca:ca:39:a9:e1:e7:4b:f2:07:4d:f3:3e:fb:b5:ac:bf:
5d:54:67:06:ea:c6:7a:55:aa:e5:cc:7d:23:13:81:f4:9f:74:
53:6f:5c:cb:ef:f3:27:b8:7a:b5:0b:13:bd:26:5f:bf:0a:dd:
36:be:55:e2:fa:d3:98:ea:e8:42:82:be:82:ee:37:5f:19:73:
79:6c:0c:98:d1:18:75:de:fd:ae:3d:71:62:31:0b:f5:a8:a1:
85:eb:ab:77:13:f7:b2:a9:ef:b7:c1:92:cf:b2:b9:9d:17:a7:
50:4e:ec:37:a0:97:8c:13:82:63:ed:f1:74:19:43:4a:d0:43:
6b:7c:61:06:81:a5:c6:15:3c:c1:6b:f7:cd:5b:b1:1a:8e:aa:
5c:30:46:29:56:71:5f:01:32:66:cf:81:97:fe:44:32:6d:b4:
d1:c8:c2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:21 2024 by rpki-client on console-fra.rpki-client.org