Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/FHAeCDYthIFJL2YTJBiFiAC74ng.roa
File: FHAeCDYthIFJL2YTJBiFiAC74ng.roa (raw, json)
Hash identifier: wgaTxKeGK0O16zXCztlZrCHhux07wMJ7Uf1+D340e90=
Subject key identifier: 14:70:1E:08:36:2D:84:81:49:2F:66:13:24:18:85:88:00:BB:E2:78
Certificate issuer: /CN=8b2e0d184ff553375c847c38d4dfcdcde1219fd3
Certificate serial: 018340CFFE7366289BD2DB01DBF41F98F77F
Authority key identifier: 8B:2E:0D:18:4F:F5:53:37:5C:84:7C:38:D4:DF:CD:CD:E1:21:9F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iy4NGE_1UzdchHw41N_NzeEhn9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/FHAeCDYthIFJL2YTJBiFiAC74ng.roa
Signing time: Thu 15 Sep 2022 11:01:56 +0000
ROA not before: Thu 15 Sep 2022 11:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203226
IP address blocks: 185.14.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:cf:fe:73:66:28:9b:d2:db:01:db:f4:1f:98:f7:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b2e0d184ff553375c847c38d4dfcdcde1219fd3
Validity
Not Before: Sep 15 11:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14701e08362d8481492f66132418858800bbe278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:ef:c1:9d:9e:b4:01:6f:d5:a2:8f:6d:a8:
fa:8d:26:b9:9e:83:50:45:6a:ec:c7:81:27:49:1a:
1d:8f:26:b5:7b:56:0f:f8:be:0c:df:28:d1:31:b7:
54:af:c8:79:d1:f1:0d:06:7c:12:61:99:65:af:ea:
75:d8:31:37:03:16:d7:5c:c3:dc:8a:ae:c9:1b:df:
0a:ac:f9:b4:49:78:c2:f7:07:0e:1a:03:0d:32:c4:
e7:45:0b:9b:a7:4b:23:b6:51:b0:73:65:96:20:cb:
ed:33:37:55:f8:3e:1e:3c:ae:c8:05:d9:b0:d5:33:
f0:12:7e:07:41:9f:90:4a:50:ab:a6:fa:1b:74:cc:
0c:40:eb:aa:f9:31:a4:73:25:32:05:51:68:18:f6:
3f:47:18:7e:8a:30:31:41:67:50:cb:45:58:aa:11:
5f:5d:35:b0:56:42:71:b1:34:54:11:2f:7b:13:ed:
55:55:ee:5e:70:aa:12:b8:47:7e:62:7b:d6:d4:5a:
9a:e8:d9:cf:0a:71:cd:9e:ac:89:0d:0f:59:f1:8c:
35:10:c7:e4:b0:fe:d5:34:1b:0d:0b:94:a2:8c:9b:
19:c8:36:3f:e6:23:e1:0d:75:a5:e7:16:4a:e8:81:
f5:4a:97:0a:b4:96:98:6b:3f:ed:85:b2:be:cb:b6:
34:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:70:1E:08:36:2D:84:81:49:2F:66:13:24:18:85:88:00:BB:E2:78
X509v3 Authority Key Identifier:
keyid:8B:2E:0D:18:4F:F5:53:37:5C:84:7C:38:D4:DF:CD:CD:E1:21:9F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iy4NGE_1UzdchHw41N_NzeEhn9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/FHAeCDYthIFJL2YTJBiFiAC74ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/iy4NGE_1UzdchHw41N_NzeEhn9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.98.0/24
Signature Algorithm: sha256WithRSAEncryption
26:44:e2:e2:91:a2:16:c9:8e:1b:3a:46:e0:2b:b0:d2:91:5e:
0e:4c:5b:68:50:45:07:24:2a:1d:7a:dd:65:f0:49:e3:3f:35:
be:1b:74:6a:2d:54:08:c6:3b:21:ec:b5:c9:98:bd:d9:90:2f:
6f:29:5b:82:92:30:8c:9d:84:f4:f2:3f:d6:7f:a5:4d:23:5e:
7b:e4:c6:98:1c:61:98:f9:64:ec:9d:9c:bc:88:1d:16:d5:67:
32:cc:29:f7:e5:64:92:23:95:7a:a3:4a:e7:63:f2:cb:ba:af:
0e:25:ac:4e:ce:c5:d3:1a:4d:67:a9:a7:d2:5a:c5:29:15:ff:
6d:02:41:a3:90:ae:dc:6f:99:1f:ba:02:a6:48:e9:54:5d:39:
74:de:f4:0c:54:7d:c9:1a:73:83:91:27:ca:47:61:78:44:0b:
d5:1a:80:cc:95:de:b2:51:bb:f7:6e:0f:d6:9a:ca:bf:1a:0e:
86:e7:9a:5a:28:95:9b:db:63:7d:48:6d:29:5c:64:71:47:14:
4b:bd:84:16:e0:05:d4:0e:d1:90:6a:d5:94:e3:bd:b7:53:cf:
a6:d8:86:7c:00:ce:a0:a2:9e:c9:f9:21:08:53:44:ba:26:ef:
76:da:33:26:51:e6:87:f6:f1:69:c2:46:da:97:bd:26:09:e8:
f3:28:0c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:35 2023 by rpki-client on console-ams.rpki-client.org