Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHSbNv-PQ9eOgyv-a3LmwEP9FuE.roa
File: gHSbNv-PQ9eOgyv-a3LmwEP9FuE.roa (raw, json)
Hash identifier: 3i833cZUbvQO5S54WXvHRQCG3922RNjD/erbrMpwxXs=
Subject key identifier: 80:74:9B:36:FF:8F:43:D7:8E:83:2B:FE:6B:72:E6:C0:43:FD:16:E1
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 2DCD8A
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHSbNv-PQ9eOgyv-a3LmwEP9FuE.roa
Signing time: Mon 21 Mar 2022 06:50:42 +0000
ROA not before: Mon 21 Mar 2022 06:50:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.106.192.0/23 maxlen: 23
185.106.194.0/23 maxlen: 23
188.215.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001738 (0x2dcd8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Mar 21 06:50:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80749b36ff8f43d78e832bfe6b72e6c043fd16e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:9f:82:49:dd:eb:4b:1a:81:c9:2b:3b:7c:
86:7c:76:67:12:cf:1c:a5:05:72:3e:2a:69:16:01:
a6:9c:a7:04:ec:22:bc:bf:5f:db:4c:bd:50:a4:72:
12:a7:1f:e8:5a:08:64:31:7c:3f:c9:df:af:ef:4a:
c3:fb:60:35:82:72:72:01:60:55:b1:ef:52:f5:98:
8b:c2:02:2d:63:cd:b7:48:9e:ee:32:c9:14:e8:b6:
18:9d:aa:5c:f0:63:68:46:e6:9f:b1:84:d6:b3:a9:
f0:69:c0:4c:13:d2:ae:d3:cf:ac:ee:54:66:27:89:
5f:da:9e:df:eb:a4:11:22:e1:e3:ed:fb:b2:46:45:
ce:70:51:31:70:32:c0:ca:dd:2b:c1:ee:e6:a8:ac:
0b:63:94:9e:72:d7:55:fe:5c:51:30:c3:fa:07:10:
e6:bf:dd:8f:b0:6e:14:0c:a0:0b:d3:23:0a:e0:bd:
93:be:8a:f8:49:04:fa:71:21:5c:a3:be:ac:84:ce:
a8:4c:63:db:da:92:9d:33:8b:fb:78:94:fe:76:ad:
47:94:6d:2d:4a:5b:e6:01:f9:8d:dc:16:06:a6:b2:
27:f0:f6:1c:0c:7a:79:ef:9b:b9:67:d4:db:c1:85:
e1:77:08:71:36:4d:7f:60:20:27:a6:ef:5b:a0:72:
17:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:74:9B:36:FF:8F:43:D7:8E:83:2B:FE:6B:72:E6:C0:43:FD:16:E1
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/gHSbNv-PQ9eOgyv-a3LmwEP9FuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.192.0/22
188.215.120.0/22
Signature Algorithm: sha256WithRSAEncryption
87:f7:7b:3b:70:01:7e:01:72:03:23:59:64:00:2c:c4:57:96:
2d:7e:fb:29:73:10:fb:53:c2:0c:ad:c1:6f:ef:47:1e:b7:62:
b0:32:86:18:76:c8:0e:c3:79:bf:ae:1c:c3:ca:e8:a5:f4:d3:
92:8d:2f:a5:11:e0:71:c3:43:e6:f2:0c:82:59:1d:fd:48:88:
64:09:32:79:7b:7f:6a:fc:05:af:57:75:4d:87:e1:8d:08:3b:
35:a0:5c:ab:89:05:3b:0d:c1:b4:50:b5:a0:36:e3:17:26:3b:
42:29:6f:47:ff:81:06:ae:f0:2e:b9:05:03:9b:31:d9:3b:4d:
6d:69:0f:13:3c:1b:36:90:e6:56:a2:8b:95:25:1e:89:6a:05:
57:28:5f:98:23:bb:60:42:5d:46:30:3c:cc:e2:ce:53:6b:74:
b2:66:bf:06:3f:07:e7:f0:05:e7:7b:3b:8f:fa:5d:8d:7e:ca:
81:81:39:ea:63:e6:59:b9:e1:9f:5e:8d:db:c8:fe:e4:05:b4:
f1:c2:1f:36:d2:9f:95:2a:b7:b8:12:e6:74:f6:51:b7:d2:3d:
b5:ca:99:ac:3f:e9:39:54:d0:32:8e:0b:f7:f0:e9:a5:fb:4e:
5c:d0:e3:f6:22:a5:69:4c:f2:5a:b9:a4:a3:b7:59:0b:18:a3:
24:91:fc:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org