Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PAVE9G_T8MRhaWqTs_RmvjSt_5k.roa
File: PAVE9G_T8MRhaWqTs_RmvjSt_5k.roa (raw, json)
Hash identifier: 2c2pLlGpkmOSgGFhJd8RDBlgUCaLEhmf+tC+sBOp5MU=
Subject key identifier: 3C:05:44:F4:6F:D3:F0:C4:61:69:6A:93:B3:F4:66:BE:34:AD:FF:99
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 010099AB
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PAVE9G_T8MRhaWqTs_RmvjSt_5k.roa
Signing time: Sat 18 Jun 2022 06:45:44 +0000
ROA not before: Sat 18 Jun 2022 06:45:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.106.192.0/23 maxlen: 23
185.106.194.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16816555 (0x10099ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 18 06:45:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c0544f46fd3f0c461696a93b3f466be34adff99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:6c:0c:d3:a6:41:3a:a6:15:13:b9:f4:8a:
d5:d1:e1:90:0e:fc:1d:92:cc:8b:39:a8:66:31:89:
4d:e5:81:47:f6:5a:98:29:79:b7:7c:75:a4:fa:dc:
e7:08:d3:41:bf:90:07:6b:01:89:57:79:c6:b3:62:
81:e1:c7:15:71:40:fb:0b:92:57:d7:26:6e:9b:8d:
fb:2a:50:66:72:89:a9:e9:e0:61:52:ae:b6:21:96:
e3:4f:2a:13:57:d0:f4:fb:f5:f7:3d:26:2b:77:b9:
b6:b6:14:82:ef:dc:cf:b0:30:1e:36:16:92:91:0b:
99:e3:54:54:2b:98:f2:32:f9:10:d9:df:ad:21:a7:
34:dd:2b:6c:03:48:6f:9c:6a:a5:e0:bc:2d:73:b5:
6f:fa:67:68:38:2f:f4:f6:4b:ad:66:b2:cd:fd:23:
b9:13:89:28:c5:cf:62:4e:61:0c:41:11:b3:b8:dd:
c1:3f:fc:05:58:51:8b:8e:48:de:a3:e4:a1:55:33:
6b:ab:5e:ae:9b:f2:34:57:c7:db:33:0b:cc:5c:ae:
f2:28:65:22:b6:43:98:26:b0:fa:c0:80:3a:41:a8:
13:66:3a:d1:a9:65:97:bb:30:c4:be:1f:73:32:16:
6d:4e:92:89:2a:52:3d:fd:0d:19:96:6c:bc:a3:64:
45:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:05:44:F4:6F:D3:F0:C4:61:69:6A:93:B3:F4:66:BE:34:AD:FF:99
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/PAVE9G_T8MRhaWqTs_RmvjSt_5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.192.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:34:ab:3b:fd:9d:6d:e7:4a:05:ed:c7:ce:45:88:51:58:3d:
68:dc:4b:c3:40:91:33:29:87:27:ff:4b:f3:45:b5:73:df:90:
b1:39:06:12:87:07:93:32:7a:00:9f:d9:ee:fd:d0:17:54:8e:
40:49:24:fb:54:75:a5:27:62:9d:9c:1b:00:ec:b4:32:92:5b:
73:80:e9:86:3a:21:16:35:94:bb:90:82:e9:63:af:a1:48:49:
a2:21:4c:3e:b9:71:e1:c8:45:c6:ef:09:19:60:1c:ca:30:72:
42:f2:16:d4:20:1a:7c:5e:67:bc:51:9d:f7:cc:07:03:60:b7:
6d:8c:dd:43:58:f4:12:01:92:e3:e8:7a:dd:29:38:5c:d4:0d:
00:b2:e3:80:1c:45:1c:83:15:7a:b4:96:00:4a:30:0d:1f:3d:
0d:b6:9c:8b:f4:40:fc:dd:25:b9:1e:a2:0c:66:49:c2:53:9d:
87:49:1e:86:10:61:ba:80:7b:fe:bc:fc:2b:7f:e6:09:cf:c7:
8b:d5:49:3c:d2:24:85:02:77:d9:01:52:0f:7a:f1:bb:13:35:
3d:1a:52:9e:6b:3a:89:32:81:d7:dc:28:c1:a7:4b:5c:f3:08:
23:34:59:3e:50:56:bf:47:3c:8f:79:92:d9:60:41:9f:58:e7:
d3:d9:16:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org