Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/czcaLNwMtm0PdMQ9AND7K_6UN6U.roa
File: czcaLNwMtm0PdMQ9AND7K_6UN6U.roa (raw, json)
Hash identifier: gTDhAaubEm3Ts7Frad3yMgUbwz09PZ1AMpZMIDnQxTs=
Subject key identifier: 73:37:1A:2C:DC:0C:B6:6D:0F:74:C4:3D:00:D0:FB:2B:FE:94:37:A5
Certificate issuer: /CN=1ba8ea3a2288a6af8f64a8383002c74085579a07
Certificate serial: 04D51C8E
Authority key identifier: 1B:A8:EA:3A:22:88:A6:AF:8F:64:A8:38:30:02:C7:40:85:57:9A:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6jqOiKIpq-PZKg4MALHQIVXmgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/czcaLNwMtm0PdMQ9AND7K_6UN6U.roa
Signing time: Sat 01 Jan 2022 10:58:03 +0000
ROA not before: Sat 01 Jan 2022 10:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47727
IP address blocks: 185.115.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81075342 (0x4d51c8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba8ea3a2288a6af8f64a8383002c74085579a07
Validity
Not Before: Jan 1 10:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73371a2cdc0cb66d0f74c43d00d0fb2bfe9437a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4a:78:89:6c:f8:55:54:2c:b4:52:e0:92:3f:
1f:bc:be:f0:c2:10:9f:a1:a7:08:d6:3f:5b:90:5a:
56:05:6a:7f:17:88:4f:95:8f:38:90:40:9c:a4:ac:
25:1a:64:7c:c5:64:a0:4f:27:3d:6e:35:f1:60:b2:
b8:b0:aa:f2:9d:0e:30:b0:13:83:05:6c:4b:ae:1d:
cd:c2:88:c0:9d:54:2f:12:0a:5b:35:8c:4b:fd:8f:
ac:cf:18:9d:bc:01:97:9d:3d:51:b9:f4:97:37:5b:
63:e9:8b:af:99:9a:9d:8a:cd:91:c6:e1:43:29:71:
31:39:38:a4:1d:c2:f8:9a:49:e2:aa:05:28:ae:cd:
d5:1a:5b:c4:da:23:2d:40:dd:05:c2:17:58:d0:46:
15:a0:e7:3e:d0:23:14:9c:b9:72:44:c7:34:10:2b:
76:7f:04:4f:fb:5a:b4:a3:78:46:2d:fc:47:3e:d3:
c5:dc:4b:05:6c:05:15:74:e4:c5:54:f2:b9:e3:76:
f4:63:01:09:11:fc:74:69:bb:ce:5a:01:60:df:3f:
7e:75:20:4a:a0:fb:cf:41:04:e7:64:cd:95:18:60:
2b:63:83:b7:a4:b0:6b:bc:ec:59:55:d7:23:ca:82:
f7:19:59:5e:03:67:ff:14:56:20:13:a4:1d:6e:9c:
ce:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:37:1A:2C:DC:0C:B6:6D:0F:74:C4:3D:00:D0:FB:2B:FE:94:37:A5
X509v3 Authority Key Identifier:
keyid:1B:A8:EA:3A:22:88:A6:AF:8F:64:A8:38:30:02:C7:40:85:57:9A:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6jqOiKIpq-PZKg4MALHQIVXmgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/czcaLNwMtm0PdMQ9AND7K_6UN6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/G6jqOiKIpq-PZKg4MALHQIVXmgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.72.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:34:c4:1b:7f:f6:2a:bb:2f:a4:4f:b8:8c:cd:26:f5:ec:d2:
1e:3f:f0:9c:19:a9:ad:1c:b1:8e:66:e4:5a:88:18:30:67:a1:
3a:41:19:b4:9d:48:df:79:ea:a2:c1:62:03:aa:63:bf:cd:42:
ec:38:97:73:60:b2:de:c4:91:bb:b0:42:94:ce:a9:a9:af:bc:
9c:b3:11:42:d4:86:6c:f3:e4:b1:70:1c:f9:f7:b9:21:71:2c:
df:d9:e2:35:40:86:9b:be:54:43:4e:c7:3b:76:30:c2:fc:c0:
08:0d:2a:fb:3e:9c:b6:2f:a8:f1:ea:85:07:ac:9a:31:e9:15:
97:eb:07:7c:04:0a:e1:ec:20:61:41:41:00:aa:48:94:64:71:
b9:04:79:79:6b:03:9e:0a:27:4d:36:b1:4a:cd:25:83:09:70:
87:15:bb:86:f6:d5:4d:c8:b2:0f:34:1d:54:aa:b8:86:d9:9e:
70:03:76:f5:52:b8:90:74:c8:5a:4b:06:66:4d:a7:cf:16:56:
dc:10:15:00:1e:03:8c:aa:1d:f4:4d:0f:ad:ad:26:e4:b8:cb:
f2:29:9f:65:27:d3:24:16:15:6f:74:e4:5f:2f:32:c1:94:6c:
63:be:f6:2d:ff:a8:aa:f3:77:c5:8f:6f:63:67:26:25:f7:1c:
24:c2:6e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:41 2023 by rpki-client on console-ams.rpki-client.org