Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/558c39-7510-4b63-aa57-1e2230df0746/1/2pqn9_4Gz9brAow9Y2CcGEtOFZI.roa
File: 2pqn9_4Gz9brAow9Y2CcGEtOFZI.roa (raw, json)
Hash identifier: RGxHFxqR532LYHxDnAJQHkjQUxARj8+22cdDQP5tIn8=
Subject key identifier: DA:9A:A7:F7:FE:06:CF:D6:EB:02:8C:3D:63:60:9C:18:4B:4E:15:92
Certificate issuer: /CN=af758e88feaf8d67059dc8787a2e5f31a06ac1e9
Certificate serial: 01AAE8
Authority key identifier: AF:75:8E:88:FE:AF:8D:67:05:9D:C8:78:7A:2E:5F:31:A0:6A:C1:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3WOiP6vjWcFnch4ei5fMaBqwek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/558c39-7510-4b63-aa57-1e2230df0746/1/2pqn9_4Gz9brAow9Y2CcGEtOFZI.roa
Signing time: Tue 31 May 2022 09:41:13 +0000
ROA not before: Tue 31 May 2022 09:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35413
IP address blocks: 91.195.181.0/24 maxlen: 24
91.195.180.0/24 maxlen: 24
193.239.253.0/24 maxlen: 24
193.239.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109288 (0x1aae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af758e88feaf8d67059dc8787a2e5f31a06ac1e9
Validity
Not Before: May 31 09:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da9aa7f7fe06cfd6eb028c3d63609c184b4e1592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:46:31:a5:4e:ef:e1:b7:24:91:2e:78:75:
a9:60:d1:3b:64:c0:0e:c2:db:4e:6a:8e:69:49:7b:
fd:2c:50:00:8b:9d:22:e0:3f:af:bc:02:f8:88:61:
e5:01:8b:dc:cb:4d:1c:78:62:c2:d6:02:ec:c2:82:
2d:87:31:9f:37:62:e9:0e:cf:16:89:7c:04:1b:f9:
87:49:e1:c9:22:d0:04:76:50:cd:ca:a0:99:c5:ed:
ea:64:d1:c1:08:6b:4c:6f:fa:7a:cf:65:87:94:20:
2d:c4:06:0f:3f:09:c0:ac:36:9c:31:dd:f7:3a:ad:
a4:48:0c:c4:1a:49:56:6f:89:4f:31:0e:60:fc:69:
f2:8e:36:84:cc:0b:57:8c:1a:24:15:ea:4d:39:db:
b9:3f:8b:22:76:ee:40:49:80:28:ad:b8:62:75:a5:
7f:65:10:11:09:87:4d:e3:47:19:7b:2e:70:de:cc:
4e:cc:99:73:fa:0c:72:5d:d1:5f:72:49:3d:c0:f1:
53:c9:49:a4:26:c6:f8:e8:70:c4:9e:97:58:68:13:
62:18:2f:57:47:5c:1a:23:55:71:95:f5:13:90:00:
2b:ae:d0:33:29:a6:53:7c:03:8e:56:88:ef:7b:4b:
40:04:62:53:18:04:ab:70:08:c5:cb:ab:ae:68:c6:
4e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9A:A7:F7:FE:06:CF:D6:EB:02:8C:3D:63:60:9C:18:4B:4E:15:92
X509v3 Authority Key Identifier:
keyid:AF:75:8E:88:FE:AF:8D:67:05:9D:C8:78:7A:2E:5F:31:A0:6A:C1:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3WOiP6vjWcFnch4ei5fMaBqwek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/558c39-7510-4b63-aa57-1e2230df0746/1/2pqn9_4Gz9brAow9Y2CcGEtOFZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/558c39-7510-4b63-aa57-1e2230df0746/1/r3WOiP6vjWcFnch4ei5fMaBqwek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.180.0/23
193.239.252.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:83:d7:91:57:de:c1:58:3c:26:da:58:95:ce:3f:f4:02:86:
0e:d0:ef:88:3a:34:e8:4c:11:e7:b1:e8:95:ca:1d:3f:7f:2d:
f4:41:7e:56:be:1e:dc:b4:ee:73:28:94:56:ec:75:32:03:4a:
74:3c:79:4b:d3:b9:b5:ad:c3:8c:ef:b3:c9:30:16:0a:04:29:
bd:90:c9:1c:f5:97:77:74:49:69:3a:3d:d5:d7:ca:be:51:3d:
2d:67:26:b9:99:fd:3a:35:62:a3:07:de:23:19:99:7e:3a:e0:
e9:ea:f9:b4:02:fb:b0:23:9d:a4:8d:1e:77:92:4f:ef:2b:ff:
45:b3:19:81:72:79:3d:4b:15:0a:22:72:b6:90:22:0a:fa:86:
10:5c:d6:b3:57:2c:87:4c:f6:ea:c1:ca:e0:be:ef:78:49:0b:
d5:de:76:67:45:d6:b3:23:db:f8:bc:7c:95:3e:51:27:7b:60:
81:d8:eb:50:5a:76:43:99:e5:90:e4:9e:23:29:76:ef:2f:f8:
58:6c:fb:4e:92:2b:f7:19:4c:3a:2f:e2:60:ec:21:3c:de:b2:
01:bc:42:d8:86:6b:51:82:36:d5:d1:da:27:78:14:5b:8b:36:
2d:94:57:0a:a0:e9:89:6a:4e:36:62:b3:69:17:ce:3d:13:1f:
9c:d0:e6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:56 2024 by rpki-client on console-ams.rpki-client.org