Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7a7781-9b4c-482b-b295-9cd3c6a18866/1/n2-7H20ZXUl27hTjJJDEJuH7LeI.roa
File: n2-7H20ZXUl27hTjJJDEJuH7LeI.roa (raw, json)
Hash identifier: 5uRBLnhAH9VL7AUFKWFT+B3TGE2q0JyjKxgWLC+zHRY=
Subject key identifier: 9F:6F:BB:1F:6D:19:5D:49:76:EE:14:E3:24:90:C4:26:E1:FB:2D:E2
Certificate issuer: /CN=dd4670c2a6fd7223327f68badbe6d08322b78058
Certificate serial: 0528E0B2
Authority key identifier: DD:46:70:C2:A6:FD:72:23:32:7F:68:BA:DB:E6:D0:83:22:B7:80:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3UZwwqb9ciMyf2i62-bQgyK3gFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7a7781-9b4c-482b-b295-9cd3c6a18866/1/n2-7H20ZXUl27hTjJJDEJuH7LeI.roa
Signing time: Sat 01 Jan 2022 06:59:02 +0000
ROA not before: Sat 01 Jan 2022 06:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197177
IP address blocks: 109.106.4.0/22 maxlen: 23
91.223.52.0/24 maxlen: 24
185.174.12.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86565042 (0x528e0b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd4670c2a6fd7223327f68badbe6d08322b78058
Validity
Not Before: Jan 1 06:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f6fbb1f6d195d4976ee14e32490c426e1fb2de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:6f:54:48:38:01:8e:0b:47:9f:31:77:76:46:
57:fd:14:8b:20:7c:72:68:de:12:bf:bc:cf:b7:6e:
7a:ee:fe:c6:4b:dd:50:ac:d1:df:7d:bc:04:27:eb:
dd:19:02:7f:6b:08:93:cf:a8:b8:12:0d:cc:15:c6:
42:c6:3d:63:f4:d7:86:61:f8:88:77:51:82:3e:a7:
35:08:7e:af:6c:55:31:81:61:25:e1:82:4c:27:af:
bb:b2:08:e3:ba:ae:ce:32:71:b0:95:97:84:dc:5a:
0a:68:64:ee:1f:c2:48:0a:ef:9c:91:f6:0c:74:e1:
e7:63:fc:eb:74:61:97:bb:f6:ae:fe:50:3a:21:58:
26:25:53:68:a4:ac:40:6a:c9:87:5c:d6:e9:b1:89:
b1:47:b4:06:9e:e4:3d:4e:30:3f:7d:a8:d3:d8:77:
77:c9:9c:a1:28:0b:db:d0:ff:a1:09:ee:b1:87:e0:
e6:9a:3a:c7:55:50:90:94:d5:d4:ae:fb:12:8d:1d:
0f:76:e4:79:41:28:5e:c7:1f:b2:7a:a1:6a:16:8f:
19:4e:00:08:73:03:c4:6d:e8:8b:66:32:47:d0:e2:
0c:0c:36:fc:e4:f9:98:4b:f7:b7:dc:69:f9:02:44:
48:13:d9:ae:40:19:51:51:d4:fb:cf:b0:22:21:44:
d3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6F:BB:1F:6D:19:5D:49:76:EE:14:E3:24:90:C4:26:E1:FB:2D:E2
X509v3 Authority Key Identifier:
keyid:DD:46:70:C2:A6:FD:72:23:32:7F:68:BA:DB:E6:D0:83:22:B7:80:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3UZwwqb9ciMyf2i62-bQgyK3gFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7a7781-9b4c-482b-b295-9cd3c6a18866/1/n2-7H20ZXUl27hTjJJDEJuH7LeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7a7781-9b4c-482b-b295-9cd3c6a18866/1/3UZwwqb9ciMyf2i62-bQgyK3gFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.52.0/24
109.106.4.0/22
185.174.12.0/22
Signature Algorithm: sha256WithRSAEncryption
89:52:26:5d:33:0a:ec:41:f8:94:40:9c:3c:5d:0a:85:39:e7:
fe:d9:5c:03:3a:20:24:83:4f:47:a8:13:ae:2f:ec:24:00:3e:
e0:11:c4:fd:a3:b8:a0:f3:8d:2b:1b:a3:5f:6d:6e:bd:2d:26:
56:98:7e:72:1b:71:fc:70:25:c1:aa:9d:ed:95:3f:96:48:ca:
e1:d0:70:cc:3f:71:0a:17:3d:6b:dc:f4:3e:29:5c:53:b2:a9:
59:c2:85:74:f9:b7:d1:15:b7:36:74:20:bb:ab:88:82:23:22:
51:b5:f6:b3:2d:77:cf:6b:aa:69:56:e6:e0:a3:73:52:af:2e:
f7:9b:fb:c9:79:92:22:ad:ff:9b:5b:fe:3b:af:11:78:72:0c:
ce:24:14:7f:8e:8d:15:8b:4d:78:56:b9:7f:b9:e3:88:2c:8f:
a7:e8:82:93:fa:1c:8c:8f:2a:ce:a7:bc:11:cd:d7:8e:3a:6a:
cb:26:00:0f:b4:dd:71:23:d1:fd:63:20:28:87:b0:b4:61:b8:
a2:51:64:23:38:f1:08:97:54:ba:85:7d:45:f5:e2:69:7f:08:
15:71:66:bf:e4:9d:40:b2:ca:47:93:b5:0f:2e:0a:b4:33:26:
bf:15:a9:f2:ce:76:2a:dd:e7:19:ef:33:98:e6:93:6c:76:fd:
a3:0a:bf:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:37 2023 by rpki-client on console-fra.rpki-client.org