Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/n7zv7TOB-9G_Wn9PubyjODOJJ6U.roa
File: n7zv7TOB-9G_Wn9PubyjODOJJ6U.roa (raw, json)
Hash identifier: uVSr94vp8Ov2P2uJHDGXukhWIMfG0LULTj8xf4wg/DI=
Subject key identifier: 9F:BC:EF:ED:33:81:FB:D1:BF:5A:7F:4F:B9:BC:A3:38:33:89:27:A5
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 01EA9E5B
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/n7zv7TOB-9G_Wn9PubyjODOJJ6U.roa
Signing time: Sun 06 Mar 2022 07:49:55 +0000
ROA not before: Sun 06 Mar 2022 07:49:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 194.124.218.0/23 maxlen: 32
194.124.224.0/23 maxlen: 32
45.142.156.0/24 maxlen: 32
45.142.157.0/24 maxlen: 32
45.142.158.0/23 maxlen: 32
194.147.98.0/23 maxlen: 32
194.147.100.0/23 maxlen: 32
45.150.226.0/23 maxlen: 32
193.218.200.0/23 maxlen: 32
45.154.212.0/22 maxlen: 32
45.150.164.0/22 maxlen: 32
193.221.94.0/23 maxlen: 32
45.151.132.0/22 maxlen: 32
45.145.74.0/23 maxlen: 32
45.145.72.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32153179 (0x1ea9e5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Mar 6 07:49:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fbcefed3381fbd1bf5a7f4fb9bca338338927a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:52:88:49:1a:a0:0d:08:c5:de:95:88:1b:75:
fc:36:e9:5b:c5:0a:eb:be:5e:80:0a:ce:cb:71:43:
5c:2d:d0:61:8d:80:07:e1:fc:7c:65:e9:03:34:ce:
49:f6:1f:7a:a7:4c:cc:5c:9a:2b:55:cd:bc:7c:0e:
ce:f8:22:ae:56:bf:11:29:21:9c:df:20:c5:8a:64:
17:76:0f:16:0e:97:5f:b8:4d:a6:45:04:f6:54:f3:
9d:89:ba:ff:3b:cb:80:39:2d:92:83:13:16:29:1c:
cb:c2:ee:a1:cf:c2:85:90:be:14:6f:e0:86:6a:c5:
7e:47:f4:bd:32:56:a7:9b:f9:61:11:c6:53:38:93:
c5:a5:e0:a7:95:1d:28:78:13:b1:03:da:ac:72:c4:
4c:61:a0:31:4e:9f:3f:8c:26:3a:87:79:30:28:85:
d7:7a:de:db:6f:0f:6e:dc:08:cb:d5:a7:ea:28:b3:
70:d6:e5:14:a7:d4:b0:a7:c9:88:79:60:e5:d0:4d:
e8:63:6e:3c:0e:7d:1d:5e:e2:e0:7e:08:e6:65:5e:
e8:6b:0a:c6:b1:8e:3f:7f:e1:91:42:72:8e:a2:37:
72:9c:60:a6:e4:f0:81:12:ac:7d:02:96:d1:3f:fe:
fa:b5:16:7c:44:3d:8f:30:c4:08:d8:f5:57:4b:d4:
81:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BC:EF:ED:33:81:FB:D1:BF:5A:7F:4F:B9:BC:A3:38:33:89:27:A5
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/n7zv7TOB-9G_Wn9PubyjODOJJ6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.156.0/22
45.145.72.0/22
45.150.164.0/22
45.150.226.0/23
45.151.132.0/22
45.154.212.0/22
193.218.200.0/23
193.221.94.0/23
194.124.218.0/23
194.124.224.0/23
194.147.98.0-194.147.101.255
Signature Algorithm: sha256WithRSAEncryption
40:62:3c:66:e6:a9:4e:22:8d:83:2f:6f:f6:cc:2c:ba:9b:05:
d4:22:c8:8a:61:5f:e6:b8:92:98:69:7d:96:e6:48:60:be:3d:
e0:06:d4:44:53:e5:52:90:29:3e:61:d7:db:16:e4:19:23:06:
4c:ed:56:53:4b:2f:11:29:b2:39:aa:17:e0:a7:a6:19:91:d4:
7b:2e:de:14:88:b7:90:14:82:fe:d3:1e:68:ec:ee:fc:93:0d:
1c:0a:b1:55:ee:29:d3:ef:95:2c:fe:e6:f5:ce:b5:2f:8c:68:
97:81:aa:26:21:d6:da:b6:54:34:52:f5:60:75:c1:ec:7a:a1:
06:8f:6f:c8:67:4a:46:68:47:ca:1b:f4:57:fa:eb:8f:e4:77:
8a:66:6b:63:74:a9:f6:be:80:ee:18:d8:63:e9:30:73:39:7a:
a2:e3:00:25:69:dc:79:6b:40:f1:ea:10:03:a6:02:63:57:30:
52:7e:f1:ec:e9:b7:4f:a8:a4:f2:14:c7:84:3a:34:75:86:0a:
77:03:44:78:7b:2e:a5:d8:b9:e7:df:87:a4:ee:8a:94:de:dd:
f1:51:e7:66:43:32:4e:7b:61:f0:7f:62:ea:90:37:8b:4e:49:
c4:0c:f3:c4:5d:de:46:78:da:cf:d7:97:bd:0f:ae:d1:bf:ad:
a4:04:27:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-fra.rpki-client.org