Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/c73_UwyPlsR4ZFNJ_nuay-I4usk.roa
File: c73_UwyPlsR4ZFNJ_nuay-I4usk.roa (raw, json)
Hash identifier: gwaX6bg7kLlqx92rxG1uWpOXZQFnwsQXISf9OXrHNm0=
Subject key identifier: 73:BD:FF:53:0C:8F:96:C4:78:64:53:49:FE:7B:9A:CB:E2:38:BA:C9
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CBAED6E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/c73_UwyPlsR4ZFNJ_nuay-I4usk.roa
Signing time: Sat 01 Jan 2022 05:05:01 +0000
ROA not before: Sat 01 Jan 2022 05:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61272
IP address blocks: 194.32.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213577070 (0xcbaed6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73bdff530c8f96c478645349fe7b9acbe238bac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:69:ec:43:a3:4d:32:d6:76:da:f7:0c:fe:40:
13:89:c1:1b:07:bd:fc:da:44:85:35:bc:cd:49:49:
b8:78:ed:13:ca:a7:c9:e4:b3:8b:aa:17:7d:1c:3a:
0d:98:e3:70:79:7d:c0:35:b8:78:f2:99:10:0d:84:
dc:9e:55:24:77:78:ca:44:13:99:6c:8b:d1:4b:37:
af:29:f3:0d:54:1d:cc:d4:1c:a3:02:83:00:94:ca:
63:a1:ee:b3:19:25:fd:b4:a8:58:66:07:48:a8:3c:
c0:bc:68:d3:21:93:c0:b4:63:e7:d2:b8:73:66:91:
a3:d6:82:44:e4:cb:7f:dc:57:90:9e:e2:da:0e:ed:
4b:97:dd:3b:de:0a:b4:9a:36:69:15:56:e5:3c:84:
73:ef:63:67:05:72:58:db:d6:09:c3:7f:de:48:76:
b4:40:de:b9:77:18:4e:1c:4b:1b:7f:4e:37:49:b8:
9a:36:c9:a2:66:e3:cb:45:80:48:8e:bd:f7:22:4d:
87:2c:cb:e1:2f:8b:5e:bb:67:56:79:06:2d:18:91:
7c:d3:8e:68:95:71:fc:26:a7:ab:32:1d:49:8a:fb:
42:de:64:1e:24:4a:68:70:89:f6:f8:15:0b:3a:57:
4d:69:7f:f0:60:05:77:6e:14:02:62:9a:b6:7f:c8:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BD:FF:53:0C:8F:96:C4:78:64:53:49:FE:7B:9A:CB:E2:38:BA:C9
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/c73_UwyPlsR4ZFNJ_nuay-I4usk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:74:18:31:f5:11:fe:f4:21:33:6c:fa:e3:41:9b:bb:13:32:
5c:02:10:a1:17:06:57:a5:8d:c8:cc:fd:9f:3d:60:b1:70:41:
49:c0:8e:79:76:a9:1d:78:b5:60:88:2b:f6:45:07:70:77:06:
09:8a:a0:47:aa:53:c6:67:82:88:e9:c8:8f:ed:e9:6b:2f:7b:
9b:8c:2b:2a:51:6b:b1:a8:85:62:cf:26:93:1c:ee:d1:14:00:
a2:a0:84:a0:10:5a:a1:06:f9:f8:75:d5:13:52:e8:7e:18:02:
22:95:9e:20:d1:b6:a1:41:b2:38:ee:b1:ec:ad:0a:ff:38:09:
56:dd:2f:70:21:8c:c4:4d:1b:32:2f:52:12:ae:f9:71:f6:ce:
46:26:89:37:01:85:8c:10:dc:f8:19:7b:08:c1:b5:7f:f1:7f:
1b:7c:74:b4:ee:34:0e:1c:60:27:7f:5a:cf:0e:23:36:90:f1:
42:6f:ed:63:6a:e9:93:1b:d3:57:89:89:28:5f:bf:c6:f0:dc:
0c:25:20:06:da:00:0a:b7:f5:eb:34:ca:aa:75:8e:80:11:7f:
6d:25:87:63:5f:df:2f:5a:06:0c:89:34:13:c9:58:25:45:71:
62:bf:d9:79:79:3a:ac:c6:74:cf:38:32:8a:18:7c:f3:ae:1b:
a5:4b:3a:0d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDLrtbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NmMyYTRiN2Q1ZDczYzViNTcwNDYyMjNiZjMwZWI2NTMwMDViMGUyMB4XDTIyMDEw
MTA1MDUwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzNiZGZmNTMwYzhm
OTZjNDc4NjQ1MzQ5ZmU3YjlhY2JlMjM4YmFjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM1p7EOjTTLWdtr3DP5AE4nBGwe9/NpEhTW8zUlJuHjtE8qn
yeSzi6oXfRw6DZjjcHl9wDW4ePKZEA2E3J5VJHd4ykQTmWyL0Us3rynzDVQdzNQc
owKDAJTKY6Husxkl/bSoWGYHSKg8wLxo0yGTwLRj59K4c2aRo9aCROTLf9xXkJ7i
2g7tS5fdO94KtJo2aRVW5TyEc+9jZwVyWNvWCcN/3kh2tEDeuXcYThxLG39ON0m4
mjbJombjy0WASI699yJNhyzL4S+LXrtnVnkGLRiRfNOOaJVx/CanqzIdSYr7Qt5k
HiRKaHCJ9vgVCzpXTWl/8GAFd24UAmKatn/Il9sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRzvf9TDI+WxHhkU0n+e5rL4ji6yTAfBgNVHSMEGDAWgBQ2wqS31dc8W1cE
YiO/MOtlMAWw4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05zS2t0OVhYUEZ0WEJHSWp2ekRyWlRBRnNPSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvOGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8x
L2M3M19Vd3lQbHNSNFpGTkpfbnVheS1JNHVzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
OGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1OC8xL05zS2t0OVhYUEZ0
WEJHSWp2ekRyWlRBRnNPSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIgejANBgkqhkiG9w0BAQsFAAOC
AQEAfXQYMfUR/vQhM2z640GbuxMyXAIQoRcGV6WNyMz9nz1gsXBBScCOeXapHXi1
YIgr9kUHcHcGCYqgR6pTxmeCiOnIj+3pay97m4wrKlFrsaiFYs8mkxzu0RQAoqCE
oBBaoQb5+HXVE1LofhgCIpWeING2oUGyOO6x7K0K/zgJVt0vcCGMxE0bMi9SEq75
cfbORiaJNwGFjBDc+Bl7CMG1f/F/G3x0tO40DhxgJ39azw4jNpDxQm/tY2rpkxvT
V4mJKF+/xvDcDCUgBtoACrf16zTKqnWOgBF/bSWHY1/fL1oGDIk0E8lYJUVxYr/Z
eXk6rMZ0zzgyihh8864bpUs6DQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:55 2023 by rpki-client on console-ams.rpki-client.org