Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/kC5JxVClXWhXA5zrpH2YduT2WH4.roa
File: kC5JxVClXWhXA5zrpH2YduT2WH4.roa (raw, json)
Hash identifier: V0jzaIPR7tPivQcfmGiIdKe2SRbxH+fZ48ifPJt14L8=
Subject key identifier: 90:2E:49:C5:50:A5:5D:68:57:03:9C:EB:A4:7D:98:76:E4:F6:58:7E
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 9453A8
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/kC5JxVClXWhXA5zrpH2YduT2WH4.roa
Signing time: Thu 05 May 2022 05:42:18 +0000
ROA not before: Thu 05 May 2022 05:42:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.106.194.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9720744 (0x9453a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: May 5 05:42:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=902e49c550a55d6857039ceba47d9876e4f6587e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:36:3a:c6:ce:33:86:dc:ed:b9:28:11:b6:07:
7f:ef:ed:53:af:86:c0:01:f9:34:22:04:07:9d:69:
45:d0:38:3a:a0:c3:aa:7b:0e:18:5c:d7:f4:50:9e:
0e:d8:5c:2c:b9:f4:21:5f:48:7d:1e:fe:02:c0:2c:
9b:d6:5f:eb:68:c4:03:24:4b:f9:9a:05:cf:5f:92:
63:87:2b:6c:cf:da:8e:41:a7:d4:dd:ac:cf:93:56:
9d:8a:9b:b0:ed:1a:83:b5:a3:2e:79:14:d3:58:fe:
ac:23:c1:f5:45:13:96:5e:cf:54:a9:42:12:64:22:
e6:b3:c3:d3:dc:20:03:ea:ee:cd:fc:5a:77:ee:45:
7c:00:be:1b:60:eb:a8:9a:8f:3f:eb:7e:19:8d:46:
6e:58:dd:61:18:ba:63:66:37:28:5a:e7:3f:c7:d5:
d6:90:dc:b1:b0:54:06:fa:90:4e:3e:29:c2:b6:11:
15:6b:27:e7:a7:53:eb:81:d6:96:e4:73:36:2c:67:
8b:00:97:2e:da:39:2c:83:a3:39:c1:9e:87:a8:a3:
b4:c5:90:d0:e9:b5:0e:ec:f9:12:6b:12:63:fa:5f:
7e:6e:68:4a:89:31:af:75:de:a5:c4:09:37:03:9e:
28:3c:1a:3f:4e:d8:60:cc:ef:c9:6c:05:b0:33:8c:
c1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2E:49:C5:50:A5:5D:68:57:03:9C:EB:A4:7D:98:76:E4:F6:58:7E
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/kC5JxVClXWhXA5zrpH2YduT2WH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.194.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:8a:df:cf:d4:b0:3e:6d:5c:c9:1f:a1:50:d5:32:c9:3e:15:
8a:b5:e8:fc:88:49:d8:c1:ad:ab:78:6c:03:e8:fb:88:ab:be:
d9:5e:d7:ae:c5:0c:22:53:fa:39:c7:81:1d:da:b1:38:b6:c7:
11:85:d4:69:be:8e:47:97:1e:12:e4:bc:74:ba:e6:32:ec:39:
31:f0:36:1f:cb:e5:56:59:0e:a5:16:7d:78:b0:7d:c0:02:88:
b7:12:03:6a:4a:00:67:6d:22:13:3c:ee:19:23:e1:7c:be:71:
a1:55:fd:b1:e6:fc:4a:03:5c:86:3d:7c:5c:4b:e0:49:37:29:
89:d2:3e:ec:9f:20:34:3e:e0:bf:08:f7:b1:b2:a6:1f:68:ee:
21:c4:8f:8b:c7:82:8d:cd:e9:c5:8e:98:c7:ba:f6:80:b3:d5:
4e:73:f7:a5:f4:7f:39:aa:a4:3e:9b:9a:e7:cd:4b:8e:f9:f1:
b0:9c:d0:1e:5e:79:37:bd:9f:32:49:e7:7e:64:e4:a3:a5:e2:
a1:b4:ff:45:9c:23:ba:ee:f6:83:e7:0d:5b:11:61:da:7f:3e:
f0:2a:45:6a:41:71:71:11:ee:e1:4d:ce:e7:a5:21:7c:28:f3:
e4:18:03:30:50:fb:89:5b:81:9f:0b:c2:f6:96:3b:3f:de:bb:
1a:d0:de:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org