Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/iYmE3o9vmn56Z1EdGEh46gypqYk.roa
File: iYmE3o9vmn56Z1EdGEh46gypqYk.roa (raw, json)
Hash identifier: kUy2vc7dL2Sjo4QrUZnm4eGuDygLeYNnwQoYzDsUFPM=
Subject key identifier: 89:89:84:DE:8F:6F:9A:7E:7A:67:51:1D:18:48:78:EA:0C:A9:A9:89
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 06CF192D
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/iYmE3o9vmn56Z1EdGEh46gypqYk.roa
Signing time: Sat 01 Jan 2022 05:58:48 +0000
ROA not before: Sat 01 Jan 2022 05:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209574
IP address blocks: 86.106.114.0/23 maxlen: 24
185.80.112.0/23 maxlen: 24
185.80.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114235693 (0x6cf192d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 05:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898984de8f6f9a7e7a67511d184878ea0ca9a989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:97:7e:89:01:c5:2b:dc:fa:69:2a:9f:4f:a5:
70:1a:45:c6:cc:f4:34:33:1c:2c:0e:a3:2f:10:ea:
c5:ba:61:a2:c4:f0:88:f9:82:d1:11:02:90:79:73:
aa:0b:08:b9:be:1a:09:a7:9e:29:09:92:74:ba:04:
0e:9d:d4:cc:1a:71:9c:9b:59:d1:45:06:4b:6a:56:
0c:9f:73:5b:98:67:7c:1b:d3:db:8d:9f:ec:21:cf:
1a:fe:0a:9d:67:9d:91:88:5f:55:43:b7:be:5a:aa:
ac:48:56:61:a3:69:50:cc:01:c8:f7:1a:d2:50:44:
fc:82:be:9b:3d:d1:9e:a8:f2:96:30:b7:6e:c2:52:
1f:14:41:05:d9:8b:25:5c:3f:60:7c:0f:49:17:68:
2a:a8:ae:0b:53:1b:85:c3:c1:12:d9:21:ea:f9:93:
b7:36:2e:6c:2f:54:e9:76:a0:cd:a7:44:87:e0:45:
d6:56:e4:25:89:35:cd:f4:5e:c2:d4:ea:79:90:21:
1e:69:3d:d1:c7:41:06:3f:f8:e1:2c:c2:7e:17:d0:
a3:0d:e2:7c:09:42:1c:9f:fd:3b:b9:06:7d:92:6e:
5a:44:80:6b:00:c9:74:30:02:4e:24:e1:23:67:d5:
1c:4d:31:7d:74:c6:03:bf:f8:5b:e5:7f:5b:2f:2c:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:89:84:DE:8F:6F:9A:7E:7A:67:51:1D:18:48:78:EA:0C:A9:A9:89
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/iYmE3o9vmn56Z1EdGEh46gypqYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.114.0/23
185.80.112.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:57:a4:0c:09:cc:bd:17:35:58:a1:fc:55:85:8a:2d:b9:5d:
ca:66:73:60:4f:78:0c:a9:11:b3:92:98:00:45:1a:31:ed:9b:
cc:30:ed:51:ac:4a:b7:98:d9:95:71:0c:61:e7:ff:7a:b7:e5:
87:f0:e0:71:e2:8a:c0:a4:c8:a8:9b:d5:8f:6c:0b:53:ab:9d:
f7:c2:63:7a:6f:05:e4:96:45:53:6b:9c:95:be:03:30:b3:e7:
fe:8b:f2:52:e2:62:c3:ba:36:9d:e2:32:df:f4:62:8b:28:c3:
cb:8f:4b:d3:54:2c:67:a9:f0:ff:a5:a6:a4:bd:34:09:ba:20:
66:27:3e:56:75:8e:56:5e:ce:1f:d3:ab:4a:fb:15:c5:c9:93:
5c:9c:b7:01:cd:a2:e9:d5:4f:ee:68:20:e2:f5:98:f6:b7:78:
27:a7:e7:65:0d:6f:73:ec:37:0f:1e:56:a1:f1:57:a8:c8:7b:
55:16:0e:c3:fd:ce:78:2c:8e:4f:14:86:4a:ed:c9:3d:d0:d3:
86:17:b4:5e:c4:ad:10:83:ca:d2:c7:7b:f3:d0:01:62:0b:cb:
af:63:6d:dd:0b:bb:8f:54:7e:53:46:1d:be:18:e0:4f:3e:a5:
ee:24:98:cd:4c:cb:68:cb:7c:62:a1:4c:ec:ee:ee:52:9e:43:
00:19:c7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org