Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/n6IEU_uA8aY4koMCk9LA8pkXaSM.roa
File: n6IEU_uA8aY4koMCk9LA8pkXaSM.roa (raw, json)
Hash identifier: e2xL1K4tkBOtVsiRBDh9uHyBOu4ryrVB0UtMA3K+kS4=
Subject key identifier: 9F:A2:04:53:FB:80:F1:A6:38:92:83:02:93:D2:C0:F2:99:17:69:23
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 13A17D8C
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/n6IEU_uA8aY4koMCk9LA8pkXaSM.roa
Signing time: Sun 01 May 2022 05:05:10 +0000
ROA not before: Sun 01 May 2022 05:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48359
IP address blocks: 185.126.42.0/23 maxlen: 23
109.232.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329350540 (0x13a17d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: May 1 05:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fa20453fb80f1a63892830293d2c0f299176923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:38:0f:b2:d1:f2:61:4c:51:16:d0:12:90:
3d:c5:b5:15:0f:18:04:0e:b9:bc:d7:54:a2:06:74:
2e:2e:08:18:90:4d:6f:19:1c:62:3d:75:df:23:d4:
5c:5e:9b:f0:26:c7:71:87:38:82:73:53:c2:eb:07:
7b:b5:c5:af:5c:29:6b:88:cf:b3:72:85:e5:34:16:
88:3b:7e:34:2e:96:24:b5:df:cd:96:d5:47:a2:da:
49:58:c4:b4:6f:31:49:d3:f1:b4:85:ab:36:42:30:
06:e8:f7:ab:70:94:4a:21:4f:ea:f1:e5:cd:eb:58:
72:9b:c8:17:38:2a:fc:ba:3f:31:67:8f:31:9f:4b:
b3:26:55:37:e4:7d:f4:b2:af:2f:a5:f5:6e:b6:a1:
a7:c5:5d:c1:56:11:56:24:6b:60:78:99:f9:1e:4e:
a0:97:22:fa:0c:20:d3:92:3f:1a:46:e7:76:e2:96:
f4:72:b3:b8:e3:42:78:9b:8c:65:9c:9a:86:0b:4c:
e4:c4:44:ef:5a:5a:73:e7:7c:d9:25:a7:91:c3:58:
6e:44:36:89:4c:45:b0:3e:64:7d:ff:f1:1b:7d:d6:
26:9b:a7:6d:55:92:61:3b:19:cd:78:16:ed:f5:35:
b2:11:70:65:8e:5f:9e:73:67:a9:a9:7d:f3:3e:b0:
0d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A2:04:53:FB:80:F1:A6:38:92:83:02:93:D2:C0:F2:99:17:69:23
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/n6IEU_uA8aY4koMCk9LA8pkXaSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.232.5.0/24
185.126.42.0/23
Signature Algorithm: sha256WithRSAEncryption
76:40:f5:01:f6:2b:0f:ff:4c:d2:cd:02:f4:da:64:38:89:4c:
5f:aa:b4:77:43:8d:bf:be:5c:1f:67:c1:ce:29:61:cd:bd:27:
8c:c5:fd:c5:15:97:b6:04:93:0e:7b:7f:61:cb:59:46:bd:96:
b1:f9:54:63:09:42:59:4a:56:51:94:22:1c:56:bf:78:d7:f5:
0d:c3:80:69:90:83:30:20:91:37:16:2e:dc:17:e6:23:5c:d9:
06:1f:24:bf:d8:01:f4:d7:0a:fd:71:93:0e:d7:94:9a:f4:ea:
ff:1e:31:5e:83:cc:19:88:f0:a8:14:a1:81:0f:e6:cf:b8:b3:
a7:eb:5e:a5:18:3a:83:c2:89:16:7c:02:aa:de:6b:9e:ad:57:
10:9b:80:92:af:f5:90:29:9f:df:ef:12:b1:b3:72:d0:f4:64:
cc:7f:e3:83:c5:35:39:ba:61:07:f5:44:52:55:95:8b:fc:09:
b9:7f:1f:69:a0:7a:75:4a:a9:b5:8b:5b:85:05:b0:eb:4a:b4:
99:50:a3:7f:5c:90:cb:22:50:c9:9b:d5:57:7c:6f:cc:bd:42:
98:e2:b3:d3:50:b8:16:69:89:8b:34:62:80:2d:c2:27:e7:dd:
98:77:75:5b:de:40:dd:bd:ee:53:45:3c:f4:e3:da:03:bf:67:
0d:90:aa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org