Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/19136e-429f-43ad-94ef-8361a8303522/1/N2qjTwRbyiTc3V30B7uCxePK_ig.roa
File: N2qjTwRbyiTc3V30B7uCxePK_ig.roa (raw, json)
Hash identifier: afNdocu3c7eD53rVikuaRyu6YZXDGecfkgKXeIF7fKg=
Subject key identifier: 37:6A:A3:4F:04:5B:CA:24:DC:DD:5D:F4:07:BB:82:C5:E3:CA:FE:28
Certificate issuer: /CN=e47521e7b6b38abfb88bf71e9bc5a02b2eccd3b3
Certificate serial: 18510610
Authority key identifier: E4:75:21:E7:B6:B3:8A:BF:B8:8B:F7:1E:9B:C5:A0:2B:2E:CC:D3:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HUh57azir-4i_cem8WgKy7M07M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/19136e-429f-43ad-94ef-8361a8303522/1/N2qjTwRbyiTc3V30B7uCxePK_ig.roa
Signing time: Sat 01 Jan 2022 09:56:44 +0000
ROA not before: Sat 01 Jan 2022 09:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204248
IP address blocks: 185.109.242.0/24 maxlen: 24
2a04:c007::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407963152 (0x18510610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47521e7b6b38abfb88bf71e9bc5a02b2eccd3b3
Validity
Not Before: Jan 1 09:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=376aa34f045bca24dcdd5df407bb82c5e3cafe28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ea:6d:f7:d5:5e:02:74:57:6a:f2:6b:63:55:
40:02:1e:bf:fd:b8:3f:aa:15:ec:a2:3e:4f:76:f3:
d8:ac:1a:53:40:02:ab:2c:c5:f8:56:9f:87:56:dd:
09:20:2c:97:89:aa:31:4f:06:47:40:d0:f2:72:e9:
1d:d6:22:53:60:53:eb:b4:d7:8a:c1:48:41:e7:ca:
0b:7b:c5:da:49:08:dc:d5:33:b8:ec:b2:4e:b3:3b:
41:98:6b:b4:b0:d3:87:44:1b:00:5c:6b:23:b7:1c:
ab:d1:9d:f3:d7:db:ff:9e:fc:50:84:b9:eb:d3:3b:
67:a1:a4:6a:66:7d:71:be:98:e3:cd:f5:68:a0:8c:
8e:78:60:d6:63:12:cd:56:86:32:45:aa:46:62:3c:
fb:6b:a6:e7:ad:7a:e6:bd:76:e9:78:e8:ce:59:68:
5d:f9:10:dd:87:16:85:83:14:f6:b2:e1:a6:3e:f6:
46:31:d7:b0:7b:fe:6f:be:1c:f2:13:b4:79:35:41:
f2:55:e5:bc:2f:a0:09:ec:01:74:ad:68:65:d2:80:
a3:bc:da:ff:4b:05:e6:5b:26:1b:10:f0:55:e7:70:
82:e6:66:c7:94:ec:0b:bd:bb:e9:68:1a:54:31:4d:
ef:8f:ed:53:32:b1:72:78:36:44:13:d7:f2:7c:60:
22:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6A:A3:4F:04:5B:CA:24:DC:DD:5D:F4:07:BB:82:C5:E3:CA:FE:28
X509v3 Authority Key Identifier:
keyid:E4:75:21:E7:B6:B3:8A:BF:B8:8B:F7:1E:9B:C5:A0:2B:2E:CC:D3:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HUh57azir-4i_cem8WgKy7M07M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/19136e-429f-43ad-94ef-8361a8303522/1/N2qjTwRbyiTc3V30B7uCxePK_ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/19136e-429f-43ad-94ef-8361a8303522/1/5HUh57azir-4i_cem8WgKy7M07M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.242.0/24
IPv6:
2a04:c007::/32
Signature Algorithm: sha256WithRSAEncryption
60:93:55:54:3f:2b:e3:b7:6f:50:03:50:44:3f:d0:a4:95:9e:
5a:e5:55:ff:ab:c8:16:56:60:22:02:63:4c:33:34:1d:7c:82:
1b:3f:39:92:28:44:e2:34:0d:05:8f:92:c9:ba:54:8b:31:2e:
0c:9d:b4:87:e5:b3:2c:a6:19:12:aa:25:2c:6c:10:a3:09:26:
05:f4:eb:6c:34:cf:9b:6b:b7:c4:57:62:b2:d8:18:1a:91:fa:
7e:12:5d:5e:04:05:67:26:05:79:4a:42:ea:33:cc:69:ba:34:
3d:48:84:71:ed:7d:1e:4c:02:4d:eb:4d:60:d2:2e:b8:13:4b:
b6:3d:3f:a3:90:33:6a:be:3f:0c:1d:4c:7b:c6:fa:b1:7c:dd:
fd:01:8c:47:08:66:53:10:88:b6:9b:8b:df:8b:fd:10:41:b2:
a6:7e:6b:cc:10:bc:c2:a4:86:ad:85:2f:1e:2d:c7:b2:0e:14:
4b:dd:fa:f0:50:ee:22:96:f3:c6:16:45:3c:b0:5b:26:95:43:
f5:de:09:04:58:dd:e2:51:a5:d2:e4:b4:b7:d3:bc:ce:9f:a1:
04:bb:a4:e4:66:dd:eb:e3:d9:e9:49:68:eb:02:c0:32:56:5c:
d9:f4:d7:59:bd:8d:e2:5c:13:9b:ea:6f:a6:1f:8b:20:cd:0a:
4c:d8:ad:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-fra.rpki-client.org