Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/YyMjH3Dxvr9RAVSvp4agEAGyp6Y.roa
File: YyMjH3Dxvr9RAVSvp4agEAGyp6Y.roa (raw, json)
Hash identifier: H+VNkoOTSNa6oMRcWbertz2gbZNbQL3taaq0kAzzJ3o=
Subject key identifier: 63:23:23:1F:70:F1:BE:BF:51:01:54:AF:A7:86:A0:10:01:B2:A7:A6
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0109911F
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/YyMjH3Dxvr9RAVSvp4agEAGyp6Y.roa
Signing time: Mon 20 Jun 2022 12:44:46 +0000
ROA not before: Mon 20 Jun 2022 12:44:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.106.192.0/23 maxlen: 24
185.106.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17404191 (0x109911f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 20 12:44:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6323231f70f1bebf510154afa786a01001b2a7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cf:a4:79:7e:90:90:35:c6:7a:9b:2d:4c:03:
8d:41:a4:6d:ba:7d:4a:72:13:21:0d:f0:da:a5:04:
96:d8:c1:f2:9e:15:12:bf:9d:b4:25:a9:58:fc:bd:
62:89:32:2a:aa:13:e3:0b:38:8d:e5:d3:32:39:25:
ec:6a:b2:e8:66:58:1d:eb:6b:d9:08:0e:8c:73:4b:
42:b3:69:56:ca:3b:86:ef:d3:4f:ee:9b:14:04:d5:
56:ad:fb:3b:68:34:d7:f8:bd:77:a1:6f:21:ae:34:
4c:d5:38:19:12:48:4c:a5:e0:3c:b9:87:fa:07:de:
a6:38:75:21:05:49:8d:5e:2b:2a:15:a2:49:01:d5:
a4:2f:ec:ef:6a:3b:ad:fc:6f:e6:59:0e:ef:7f:39:
60:69:37:cf:a1:a8:a2:5d:ff:67:6a:e6:e2:13:fa:
f2:d6:78:42:09:24:c3:9d:be:44:20:07:29:6b:0f:
9f:2b:1f:0c:24:af:80:26:dd:31:ea:d8:8d:cf:df:
df:ae:8b:0c:e0:eb:32:3e:f2:a2:5b:d1:37:70:29:
1d:cf:6a:e4:e3:18:73:95:e7:05:90:6c:30:60:1c:
44:d6:e0:82:a4:d7:40:30:60:d3:69:96:dc:1b:d2:
e6:0f:d0:29:88:f8:6f:26:8f:f9:f6:0e:30:92:f6:
cc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:23:23:1F:70:F1:BE:BF:51:01:54:AF:A7:86:A0:10:01:B2:A7:A6
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/YyMjH3Dxvr9RAVSvp4agEAGyp6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.192.0/22
Signature Algorithm: sha256WithRSAEncryption
20:dc:e3:07:3b:9f:23:d9:96:fd:46:48:46:45:c0:5c:cb:ac:
cb:ef:17:23:95:2e:49:df:cc:5e:16:13:e8:9c:93:c7:03:96:
a3:69:11:51:98:ec:0f:03:73:5e:c9:68:8e:67:f2:fb:98:30:
2f:c3:7f:2d:eb:18:9c:96:89:f2:a4:58:d5:d1:8e:42:dc:da:
00:70:79:e0:cf:44:b3:ec:0c:d9:04:bd:9f:d2:97:49:e8:a0:
10:ac:05:05:87:77:cf:d9:3d:10:ea:b8:1c:17:1f:8f:75:f7:
7c:83:06:e1:d4:64:a9:a6:be:77:53:97:e7:d1:00:bc:54:de:
7d:c8:54:c2:90:3a:8b:12:59:2d:0c:23:7a:af:48:d6:9f:f1:
a6:b8:ac:f6:66:b8:0a:ba:6e:6a:9e:dd:67:ec:3b:e8:2a:a6:
79:52:5d:f6:68:66:29:f9:57:c8:ed:6f:68:44:b5:0d:1b:c4:
a7:79:d9:12:16:78:0a:aa:3b:38:b6:01:d1:c9:ae:6d:6d:ec:
46:86:1d:d2:79:38:53:d7:e6:f0:84:a6:27:62:ca:45:bf:5a:
3e:fe:9e:2b:49:01:a8:f9:d1:93:84:25:ff:1a:e5:28:a0:8a:
1e:17:86:f1:55:63:48:df:53:79:3f:d7:13:17:15:1f:49:b2:
c9:2d:be:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org