Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/ba7214-5568-4a42-a999-7a5a8d0967c8/1/1-HfRc-GgayxwXDY4UhRFyt6FBNk.roa
File: 1-HfRc-GgayxwXDY4UhRFyt6FBNk.roa (raw, json)
Hash identifier: 5uU66pz0k+1uJ1Td4mjhw5pXSYnWZeqttA6U+aRXi8s=
Subject key identifier: F8:77:D1:73:E1:A0:6B:2C:70:5C:36:38:52:14:45:CA:DE:85:04:D9
Certificate issuer: /CN=c98a186e8eeb8714edca5b0d716e51d66c168ce1
Certificate serial: 06CF5C8D
Authority key identifier: C9:8A:18:6E:8E:EB:87:14:ED:CA:5B:0D:71:6E:51:D6:6C:16:8C:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYoYbo7rhxTtylsNcW5R1mwWjOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/ba7214-5568-4a42-a999-7a5a8d0967c8/1/1-HfRc-GgayxwXDY4UhRFyt6FBNk.roa
Signing time: Sat 01 Jan 2022 08:53:55 +0000
ROA not before: Sat 01 Jan 2022 08:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42703
IP address blocks: 185.106.225.0/24 maxlen: 24
185.106.224.0/24 maxlen: 24
185.106.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114252941 (0x6cf5c8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c98a186e8eeb8714edca5b0d716e51d66c168ce1
Validity
Not Before: Jan 1 08:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f877d173e1a06b2c705c3638521445cade8504d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b5:fb:85:95:94:a0:53:c1:1e:35:7d:c8:d4:
28:ac:99:24:54:28:ce:2e:53:3d:ea:b8:c7:03:bf:
20:cb:27:c6:08:91:7e:8a:3d:3b:33:63:3f:cc:6c:
35:d1:4d:b6:20:bc:7b:d8:1c:d4:29:be:e9:1f:4f:
41:86:dc:7b:ab:d3:47:fc:63:4c:fe:a4:91:ec:21:
64:09:b8:2c:1e:53:a6:d6:7f:3c:1e:90:24:8c:db:
17:f6:98:3a:70:be:21:05:76:b4:eb:43:de:e7:96:
c0:c9:73:7a:10:bd:7e:aa:ea:a6:86:32:cf:81:2d:
87:33:2e:0d:6a:7d:fa:fc:2a:97:d4:df:69:e2:84:
66:6a:c6:34:d7:7a:14:6c:70:40:b7:8e:8c:5b:0d:
0c:ff:4d:ea:26:d4:56:c0:02:a7:93:9d:3d:da:aa:
6b:19:10:ec:83:2d:05:ea:8b:9f:5b:a9:af:08:c9:
ae:26:97:ea:b6:f5:9e:a5:ee:2d:11:5a:ff:8f:d5:
7d:bc:d4:8b:bf:a9:6b:85:a9:f9:74:de:ed:7c:17:
cd:64:93:8f:b0:eb:cd:cb:96:40:39:19:a8:d1:07:
68:7e:cb:77:1e:f1:ef:09:a1:d1:06:27:81:92:15:
b8:ae:77:90:21:11:5e:91:cf:c0:bf:6b:34:16:ad:
3c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:77:D1:73:E1:A0:6B:2C:70:5C:36:38:52:14:45:CA:DE:85:04:D9
X509v3 Authority Key Identifier:
keyid:C9:8A:18:6E:8E:EB:87:14:ED:CA:5B:0D:71:6E:51:D6:6C:16:8C:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYoYbo7rhxTtylsNcW5R1mwWjOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ba7214-5568-4a42-a999-7a5a8d0967c8/1/1-HfRc-GgayxwXDY4UhRFyt6FBNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/ba7214-5568-4a42-a999-7a5a8d0967c8/1/yYoYbo7rhxTtylsNcW5R1mwWjOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.224.0/23
185.106.227.0/24
Signature Algorithm: sha256WithRSAEncryption
30:bc:2c:ea:08:bf:ac:b0:12:82:f3:44:7e:64:e6:ba:2d:14:
a9:10:8f:12:79:e5:a2:63:90:a1:66:9d:12:2b:4a:5c:45:90:
2a:2a:77:a7:94:f5:34:02:69:98:0a:63:b5:81:96:53:3d:30:
4a:ed:88:47:0d:2c:4e:7f:4a:03:0c:62:79:0a:af:e9:43:73:
7d:54:9f:3b:c4:d0:e8:80:94:2b:e5:92:61:de:a8:0c:cb:db:
a2:38:5f:0c:3b:e7:bf:fa:42:73:bf:25:27:d8:22:f9:31:a2:
d2:7c:ab:30:13:1e:f1:c3:03:e6:c0:d1:f0:ec:c4:6b:5d:15:
f3:b4:b8:4f:1c:1f:a3:ac:c5:ad:d8:b6:c2:56:63:8e:4d:a0:
cf:30:99:bc:8b:98:90:16:07:96:ec:0b:e6:9e:cc:6a:37:38:
8c:a8:69:c4:cb:b0:37:1e:f0:9d:2e:5b:64:4c:cd:ef:ef:8a:
ab:dc:3d:1e:1d:fd:16:8c:26:d6:9c:f2:23:79:de:db:9d:4e:
78:fa:d5:be:55:c0:f5:24:93:80:0b:10:e6:c0:9f:6a:84:d3:
b8:51:82:2b:e7:8a:ac:5d:29:dd:6e:50:a0:19:15:5d:df:27:
64:db:28:d2:ef:94:03:e6:33:34:48:92:38:4d:ec:9a:ec:fd:
e1:6a:41:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org