Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/93f8fb-d424-4dab-9a0e-0f5be224f820/1/pkoKzY3F0OCK9JiKuPYwKle4Gf8.roa
File: pkoKzY3F0OCK9JiKuPYwKle4Gf8.roa (raw, json)
Hash identifier: X8ZB4v6q5LGkDygJ9rEMsdhiN6T8mumwOmN1qhAw8cM=
Subject key identifier: A6:4A:0A:CD:8D:C5:D0:E0:8A:F4:98:8A:B8:F6:30:2A:57:B8:19:FF
Certificate issuer: /CN=bab73676fabaf12056edbb9c79d7154fede01f2c
Certificate serial: 05FAA8B5
Authority key identifier: BA:B7:36:76:FA:BA:F1:20:56:ED:BB:9C:79:D7:15:4F:ED:E0:1F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urc2dvq68SBW7bucedcVT-3gHyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/93f8fb-d424-4dab-9a0e-0f5be224f820/1/pkoKzY3F0OCK9JiKuPYwKle4Gf8.roa
Signing time: Sat 01 Jan 2022 05:00:14 +0000
ROA not before: Sat 01 Jan 2022 05:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47935
IP address blocks: 185.106.134.0/24 maxlen: 24
2a10:1680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100313269 (0x5faa8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bab73676fabaf12056edbb9c79d7154fede01f2c
Validity
Not Before: Jan 1 05:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a64a0acd8dc5d0e08af4988ab8f6302a57b819ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:f3:44:14:a6:70:be:a4:d9:21:0c:8e:ae:
a0:bb:f1:93:2f:b6:03:9a:83:98:48:c8:69:e0:6c:
1c:71:4c:90:71:68:ef:40:25:f1:4b:51:84:50:22:
be:d1:e9:3f:1c:14:72:60:2c:b3:a9:94:1d:33:35:
7d:fb:82:f3:bc:ef:60:5a:c9:36:02:e3:fc:31:bc:
41:ca:4b:16:4f:35:63:df:3d:fc:8d:7e:23:a2:1a:
f9:56:a6:3a:3b:ef:37:1d:ca:81:f4:38:f0:ea:96:
c2:b2:46:ee:d2:32:d3:ca:05:5a:86:56:63:51:79:
1d:46:2d:58:69:d0:a5:d8:eb:64:28:bc:e5:ae:7e:
56:c0:a8:ad:1d:82:f5:9c:6d:64:a5:f6:46:5b:32:
1a:95:10:70:20:77:bf:f8:5d:cc:46:c5:db:e7:57:
a8:0a:99:9f:ba:c3:da:07:1c:ba:f1:d4:9b:0e:9c:
41:f7:32:e4:3d:ec:14:79:51:ad:1a:3a:cf:7a:7e:
55:2e:9f:73:c8:9f:0d:00:9b:f4:21:f1:d7:b2:25:
4a:b3:2d:27:9c:9a:07:65:72:bc:39:62:fa:09:d9:
e0:3f:f8:93:d0:d2:29:be:2b:09:8e:4f:b6:5d:96:
94:98:c8:32:72:92:02:a1:f4:ae:a7:93:b2:87:64:
fa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4A:0A:CD:8D:C5:D0:E0:8A:F4:98:8A:B8:F6:30:2A:57:B8:19:FF
X509v3 Authority Key Identifier:
keyid:BA:B7:36:76:FA:BA:F1:20:56:ED:BB:9C:79:D7:15:4F:ED:E0:1F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urc2dvq68SBW7bucedcVT-3gHyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/93f8fb-d424-4dab-9a0e-0f5be224f820/1/pkoKzY3F0OCK9JiKuPYwKle4Gf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/93f8fb-d424-4dab-9a0e-0f5be224f820/1/urc2dvq68SBW7bucedcVT-3gHyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.134.0/24
IPv6:
2a10:1680::/32
Signature Algorithm: sha256WithRSAEncryption
0e:10:cf:99:6d:7e:03:09:3a:ea:cb:61:5e:52:d4:67:15:cc:
d4:d7:3f:4b:26:bc:e6:40:23:39:a6:a6:c4:8e:9a:93:09:72:
66:95:bb:fa:e8:29:32:c5:6a:81:55:87:b1:6e:4f:b7:39:36:
93:25:eb:52:4f:56:76:6a:d8:b3:a4:a8:5a:93:66:6d:00:3e:
14:de:26:0e:d3:3d:c6:a5:6d:8d:c2:54:52:71:bf:cb:42:b7:
d6:d3:62:8b:e5:c2:2a:59:03:41:75:0b:36:04:96:1b:4f:7c:
d5:19:b5:ed:2e:6f:e3:ca:69:69:42:46:f7:26:a7:af:93:42:
7d:97:18:1d:9f:65:0c:14:34:4e:76:49:34:ba:ca:cd:5c:80:
d5:a6:9e:82:13:f1:3e:3e:15:20:60:71:74:24:10:8f:a1:e1:
ab:fb:c5:2e:9e:77:24:fa:3f:91:cf:ca:7b:8a:fb:4f:fc:a1:
d9:f5:bc:03:9c:80:92:ad:ca:83:4d:cc:18:7f:2f:55:45:38:
47:31:5e:32:a7:a2:28:17:42:d2:b3:9b:eb:4d:24:e8:74:c6:
a6:9f:a4:8e:2b:56:24:fb:f5:44:cb:06:ba:54:3a:53:94:25:
c4:b6:d8:9c:f1:65:79:70:4d:f8:a9:58:af:dc:f1:ca:9c:22:
5d:d1:be:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:21 2024 by rpki-client on console-ams.rpki-client.org