Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8nOjD_jD1y6NeL7zdoRf-gNaspA.roa
File: 8nOjD_jD1y6NeL7zdoRf-gNaspA.roa (raw, json)
Hash identifier: GXy59y+DGw3tOThEtFy28zlmCQcj3OORiVj3BVOBE+k=
Subject key identifier: F2:73:A3:0F:F8:C3:D7:2E:8D:78:BE:F3:76:84:5F:FA:03:5A:B2:90
Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Certificate serial: 107F713E
Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8nOjD_jD1y6NeL7zdoRf-gNaspA.roa
Signing time: Sat 01 Jan 2022 00:53:26 +0000
ROA not before: Sat 01 Jan 2022 00:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45034
IP address blocks: 185.106.232.0/24 maxlen: 24
185.106.234.0/24 maxlen: 24
2a00:a700:a::/48 maxlen: 48
2a00:a700::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276787518 (0x107f713e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2
Validity
Not Before: Jan 1 00:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f273a30ff8c3d72e8d78bef376845ffa035ab290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:33:5b:da:c4:48:63:ee:ac:5a:1d:70:54:
58:f4:19:fa:6c:c7:1e:c9:1d:f5:62:f6:de:7e:6a:
c6:4b:51:b7:44:6c:03:4f:c6:7b:20:89:84:67:9d:
d3:54:8d:1b:94:42:79:79:4f:87:78:69:8e:7f:e1:
a3:26:db:f4:22:b4:b5:eb:47:4a:4d:17:e0:33:65:
68:88:94:33:31:20:a1:8e:78:bb:cb:79:d5:0c:92:
3e:fb:10:d3:d2:69:23:45:8c:b4:74:30:98:e1:cd:
78:a5:d3:04:fc:25:26:c5:00:6d:41:3b:96:54:96:
c3:74:63:39:1b:27:d1:5c:32:0c:9a:3a:01:bf:36:
26:82:b7:4e:2e:63:ae:a1:dd:07:21:c8:4e:26:a5:
1f:e5:76:08:41:89:5e:0f:5c:3a:a7:ad:99:e2:46:
4f:51:73:8e:f0:ec:71:81:91:d4:71:cb:42:0f:f8:
02:6e:74:32:fa:d9:d1:7d:e2:9b:81:91:07:45:0a:
41:a9:55:cd:b9:cc:bb:c7:6b:da:14:0b:f4:7c:a2:
69:ec:0e:92:80:47:d2:e6:d1:e5:93:fb:f7:9a:aa:
56:0c:36:f9:7e:2e:c0:61:01:9f:6a:de:ac:d5:a3:
88:78:6e:1d:da:aa:67:5c:ea:b2:a9:9d:d0:37:ed:
9e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:73:A3:0F:F8:C3:D7:2E:8D:78:BE:F3:76:84:5F:FA:03:5A:B2:90
X509v3 Authority Key Identifier:
keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8nOjD_jD1y6NeL7zdoRf-gNaspA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.232.0/24
185.106.234.0/24
IPv6:
2a00:a700::/48
2a00:a700:a::/48
Signature Algorithm: sha256WithRSAEncryption
06:0e:48:01:48:eb:81:e4:b8:bc:aa:c1:67:e8:74:76:26:3d:
60:c8:70:db:51:c7:56:d8:73:a2:2f:8e:51:d5:4c:f1:34:0a:
86:62:5c:77:4a:cc:6c:c9:be:39:be:43:d4:d2:4f:78:b8:14:
12:ef:a5:28:34:d5:8d:79:75:d8:f2:51:61:d0:27:ac:5c:59:
ac:8e:dc:40:f8:ba:87:ed:26:9a:d4:27:8c:e9:ec:75:5c:61:
84:40:50:e0:67:1d:f0:a0:fe:17:07:c1:67:08:d1:1d:78:c2:
6f:64:94:0b:3c:1c:71:cd:82:c8:a9:bb:23:e1:62:15:c4:69:
61:a7:3e:91:57:2a:a4:5e:e7:14:7c:91:43:1a:d9:af:8d:14:
68:be:4c:fb:6c:77:4a:25:9c:8e:bf:fb:b3:a4:f2:0a:56:e2:
02:dd:30:ca:8c:c2:3b:84:97:46:fd:e8:11:b9:26:5a:95:e9:
b7:9c:dc:e0:36:e6:96:ba:01:9c:51:99:77:a4:13:73:f2:7f:
88:c6:d0:76:6c:d1:92:8d:57:fe:ab:ef:63:1c:0e:5f:6b:70:
89:5d:d5:77:c3:92:ed:c0:00:11:19:05:51:a9:b5:93:e0:20:
4c:ba:7a:f2:43:90:a1:6d:55:94:64:f8:1e:9c:bc:89:82:da:
5c:f7:13:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:39 2024 by rpki-client on console-ams.rpki-client.org