Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHGTJEvnnkMh2tPeZO1wuEv8o2E.roa
File: gHGTJEvnnkMh2tPeZO1wuEv8o2E.roa (raw, json)
Hash identifier: Vpf+iOqvNsGK2hMZ0GMmTcW3EHMKC1g515W0fD6nVDg=
Subject key identifier: 80:71:93:24:4B:E7:9E:43:21:DA:D3:DE:64:ED:70:B8:4B:FC:A3:61
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 262AAA
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHGTJEvnnkMh2tPeZO1wuEv8o2E.roa
Signing time: Thu 17 Mar 2022 06:44:50 +0000
ROA not before: Thu 17 Mar 2022 06:44:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.106.192.0/23 maxlen: 23
185.106.194.0/23 maxlen: 23
188.215.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2501290 (0x262aaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Mar 17 06:44:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=807193244be79e4321dad3de64ed70b84bfca361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9c:d0:e2:be:eb:b0:73:75:cd:ad:fe:ae:44:
1f:e4:03:92:aa:76:9f:c4:02:cd:d2:ba:6f:ac:50:
10:9e:3c:27:c9:9c:10:35:e2:3a:10:17:ad:f4:74:
70:59:3a:99:65:5d:c7:54:f4:d9:00:70:a5:dd:ce:
8d:cd:45:e3:04:31:09:72:a9:64:15:f0:75:d6:63:
10:82:bf:f2:0a:c3:4d:2f:57:91:f1:8e:3c:39:88:
cc:5e:81:0e:fb:3d:d1:9b:75:bc:1c:09:06:99:67:
a3:da:cc:90:f8:be:41:6b:6d:eb:7c:9f:71:60:91:
47:a2:a9:1b:52:87:f6:7e:e5:8d:18:c3:d8:06:28:
51:15:d4:50:06:39:2b:09:59:39:00:79:76:20:91:
e2:7b:55:42:99:c5:ea:af:c7:cb:b4:6a:75:b5:15:
aa:2b:3e:a9:6e:2a:99:75:e3:41:e8:ac:10:10:99:
e8:9e:39:27:e2:27:8b:2f:1a:5a:02:a6:67:e2:b3:
7b:1a:42:65:62:43:aa:b7:1c:82:29:e4:4c:c6:0f:
9c:0c:9e:1e:f4:1f:05:a4:cd:36:1d:88:8e:5d:1e:
f5:95:41:08:db:37:4a:3f:d5:ff:38:ff:b3:79:bf:
f3:a0:84:c4:60:ed:38:b5:f7:68:a8:04:28:db:d3:
b1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:71:93:24:4B:E7:9E:43:21:DA:D3:DE:64:ED:70:B8:4B:FC:A3:61
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHGTJEvnnkMh2tPeZO1wuEv8o2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.192.0/22
188.215.120.0/22
Signature Algorithm: sha256WithRSAEncryption
37:b2:ec:c5:04:1b:04:e2:70:be:8c:6a:d0:01:06:72:a8:74:
55:91:ee:8d:8f:40:b8:e9:fa:a5:29:8a:42:26:77:ae:3d:a3:
7d:2e:f1:b9:d4:44:71:9b:23:00:1f:e9:ea:24:62:c6:85:03:
25:46:b0:9c:13:c2:aa:9a:63:60:83:6b:2e:42:43:27:12:f8:
b3:1f:a3:51:b6:2d:a9:fd:2c:f5:3a:18:05:4d:6a:85:05:e0:
78:9a:39:31:34:98:67:67:dd:82:b6:3b:2f:99:79:f5:dc:66:
19:5a:59:d0:8d:a7:22:4b:02:4c:5b:be:45:97:ea:2f:93:d6:
a9:86:c4:25:e3:fb:0d:0a:48:dc:ae:e3:df:10:ed:72:3d:86:
74:03:6f:28:ad:5a:d8:98:06:b9:10:6a:0e:03:3b:b4:36:78:
d7:8a:d7:05:e1:23:66:56:1b:45:95:84:be:f3:40:47:d6:fb:
88:f9:c4:61:5a:82:7e:6d:88:a2:7f:25:2c:cb:b1:89:6c:5d:
71:de:a3:fa:67:68:e5:aa:a3:93:e1:84:f2:37:2e:bb:a8:39:
03:84:7b:46:16:1d:3e:e1:82:3a:59:29:6f:dc:65:e0:e9:73:
9d:2d:0a:de:03:05:09:8a:94:35:8c:a1:10:ac:b1:a8:4b:92:
a9:32:fd:31
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDJiqqMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDg2
Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2N2IxZTQwHhcNMjIwMzE3
MDY0NDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4MDcxOTMyNDRiZTc5
ZTQzMjFkYWQzZGU2NGVkNzBiODRiZmNhMzYxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAp5zQ4r7rsHN1za3+rkQf5AOSqnafxALN0rpvrFAQnjwnyZwQ
NeI6EBet9HRwWTqZZV3HVPTZAHCl3c6NzUXjBDEJcqlkFfB11mMQgr/yCsNNL1eR
8Y48OYjMXoEO+z3Rm3W8HAkGmWej2syQ+L5Ba23rfJ9xYJFHoqkbUof2fuWNGMPY
BihRFdRQBjkrCVk5AHl2IJHie1VCmcXqr8fLtGp1tRWqKz6pbiqZdeNB6KwQEJno
njkn4ieLLxpaAqZn4rN7GkJlYkOqtxyCKeRMxg+cDJ4e9B8FpM02HYiOXR71lUEI
2zdKP9X/OP+zeb/zoITEYO04tfdoqAQo29OxUwIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFIBxkyRL555DIdrT3mTtcLhL/KNhMB8GA1UdIwQYMBaAFIbM4G5w35cNkKv+
PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
aHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4LzEv
Z0hHVEpFdm5ua01oMnRQZVpPMXd1RXY4bzJFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82
NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4LzEvaHN6Z2JuRGZsdzJR
cV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuWrAAwQCvNd4MA0GCSqGSIb3DQEB
CwUAA4IBAQA3suzFBBsE4nC+jGrQAQZyqHRVke6Nj0C46fqlKYpCJneuPaN9LvG5
1ERxmyMAH+nqJGLGhQMlRrCcE8KqmmNgg2suQkMnEvizH6NRti2p/Sz1OhgFTWqF
BeB4mjkxNJhnZ92CtjsvmXn13GYZWlnQjaciSwJMW75Fl+ovk9aphsQl4/sNCkjc
ruPfEO1yPYZ0A28orVrYmAa5EGoOAzu0NnjXitcF4SNmVhtFlYS+80BH1vuI+cRh
WoJ+bYiifyUsy7GJbF1x3qP6Z2jlqqOT4YTyNy67qDkDhHtGFh0+4YI6WSlv3GXg
6XOdLQreAwUJipQ1jKEQrLGoS5KpMv0x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org