Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/n0gfjgCTOY5K5Su6GYCOWAxU9Cs.roa
File: n0gfjgCTOY5K5Su6GYCOWAxU9Cs.roa (raw, json)
Hash identifier: utrutBSDrl30TxO9WNdKfkPfZkpSfdNIxOB/3RacUcs=
Subject key identifier: 9F:48:1F:8E:00:93:39:8E:4A:E5:2B:BA:19:80:8E:58:0C:54:F4:2B
Certificate issuer: /CN=90d426209bd8c405cbefee5741b1a52548012bab
Certificate serial: 0B8E9573
Authority key identifier: 90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/n0gfjgCTOY5K5Su6GYCOWAxU9Cs.roa
Signing time: Sat 01 Jan 2022 01:58:06 +0000
ROA not before: Sat 01 Jan 2022 01:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60388
IP address blocks: 185.31.108.0/22 maxlen: 32
212.73.96.0/19 maxlen: 32
2a01:70c0::/32 maxlen: 128
2a00:b4a0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193893747 (0xb8e9573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d426209bd8c405cbefee5741b1a52548012bab
Validity
Not Before: Jan 1 01:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f481f8e0093398e4ae52bba19808e580c54f42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:92:1c:3c:d7:8c:2e:c5:c8:1b:42:bc:46:aa:
2b:2e:0f:aa:8c:c6:35:3a:1f:31:ea:b5:44:35:13:
83:50:80:d6:6f:64:b2:d5:50:40:48:a3:5a:21:16:
fe:93:41:63:27:63:f1:11:af:ca:e3:b4:f3:f8:fb:
01:29:e2:00:80:05:1b:a0:53:d0:19:3c:f3:12:e3:
34:d8:27:3b:45:05:1f:38:a4:f1:b9:21:29:25:4a:
53:c9:38:73:c6:93:41:af:ad:c3:c7:d4:51:f9:db:
50:a1:f2:cc:f3:a1:ff:52:4d:a9:6b:be:5e:38:69:
30:fe:e5:2b:c0:6a:46:82:76:03:de:c5:e3:7c:cf:
64:b6:e3:a4:b6:ad:88:27:57:7d:09:55:9e:1a:d2:
f5:b2:85:4e:b4:cd:ef:34:78:f9:ab:ca:3c:36:49:
cd:d6:59:3f:7b:2a:9f:74:68:12:82:a2:e9:1a:33:
29:b0:9f:97:c9:b4:cd:23:d0:a0:2d:31:ef:8a:e2:
5e:de:a9:69:c5:21:42:c1:e9:b9:f1:f6:45:fb:59:
bd:31:33:b8:2b:73:3d:91:a3:ee:93:04:01:bd:a1:
1a:91:e1:69:07:dd:4d:5d:3b:db:9a:0b:2e:82:c0:
0c:d2:c7:36:76:06:43:16:35:c1:ff:f1:b7:3e:38:
43:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:48:1F:8E:00:93:39:8E:4A:E5:2B:BA:19:80:8E:58:0C:54:F4:2B
X509v3 Authority Key Identifier:
keyid:90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/n0gfjgCTOY5K5Su6GYCOWAxU9Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.108.0/22
212.73.96.0/19
IPv6:
2a00:b4a0::/32
2a01:70c0::/32
Signature Algorithm: sha256WithRSAEncryption
5f:7c:0f:e9:6f:1c:26:37:93:51:03:e4:2d:db:68:9a:5b:ec:
9d:c7:fe:ea:7c:ff:00:48:6f:36:9e:9e:f5:90:20:ee:a9:77:
6f:37:50:52:3b:cd:ba:01:43:7c:e2:78:17:b1:2f:b3:02:c1:
1e:27:5b:be:76:ef:3c:ce:a6:0a:0b:a6:57:93:f4:c7:bf:84:
ac:ab:e3:c4:0d:c9:30:6f:bd:b3:8d:5e:ae:96:46:32:d1:95:
d9:52:4c:d3:32:04:a5:ff:2a:ea:dd:5f:38:f0:df:6b:2d:48:
68:95:51:d7:fa:ea:f0:b6:27:63:d1:86:fc:8c:d6:3b:ef:f4:
df:9c:43:97:fd:b5:e9:47:a4:2e:e0:e6:69:68:f4:46:8a:8c:
cb:1c:be:dc:28:47:f2:e5:3b:05:b1:80:4f:39:2c:f2:b7:b9:
96:ba:01:07:51:29:e4:ca:de:2a:48:bf:27:2e:b0:d3:ec:1e:
c5:ca:6a:9f:5e:26:be:e0:93:af:52:ae:06:5a:2a:27:4d:ef:
c8:4d:ea:36:05:cf:2d:ff:c3:0a:de:07:a9:a9:e7:30:92:41:
2e:e8:00:c5:65:c2:70:e5:c2:ef:fe:c8:46:8f:08:99:05:3c:
4d:5c:3c:c2:ab:9c:17:e6:80:69:90:07:9d:f5:9d:51:be:30:
51:92:d0:e1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:29 2023 by rpki-client on console.sobornost.net