Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/5abc92-f55a-4548-9a00-5b4536a79e82/1/os6QfQUkwx6CJYJHNNmJ_yj23Pg.roa
File: os6QfQUkwx6CJYJHNNmJ_yj23Pg.roa (raw, json)
Hash identifier: Zb4bvLuszFFYacJgRHqRtCX5Uqkx729bOrKQUAjaelE=
Subject key identifier: A2:CE:90:7D:05:24:C3:1E:82:25:82:47:34:D9:89:FF:28:F6:DC:F8
Certificate issuer: /CN=1c2cf57271c2b8f04baa7e63a9b8103d5203d7f8
Certificate serial: 19E88A
Authority key identifier: 1C:2C:F5:72:71:C2:B8:F0:4B:AA:7E:63:A9:B8:10:3D:52:03:D7:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCz1cnHCuPBLqn5jqbgQPVID1_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/5abc92-f55a-4548-9a00-5b4536a79e82/1/os6QfQUkwx6CJYJHNNmJ_yj23Pg.roa
Signing time: Sat 01 Jan 2022 01:57:55 +0000
ROA not before: Sat 01 Jan 2022 01:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206496
IP address blocks: 185.198.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1697930 (0x19e88a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2cf57271c2b8f04baa7e63a9b8103d5203d7f8
Validity
Not Before: Jan 1 01:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2ce907d0524c31e8225824734d989ff28f6dcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:4e:25:8f:8e:36:b6:c3:a6:8b:c1:70:5a:
8b:8c:ed:95:03:b6:d3:dc:d8:34:9d:2c:a3:2c:83:
ff:cb:1d:9b:56:0d:94:77:d2:e6:61:49:c6:c5:a4:
5a:34:8d:55:39:a8:98:ef:04:c5:53:44:94:0c:0f:
f1:8d:9b:b7:03:9a:3b:b7:e5:42:6c:07:43:2d:d5:
39:ae:2c:ff:2c:0b:9b:9c:d8:d0:3a:b3:05:b3:66:
c3:e4:b8:39:60:d4:48:77:d6:dd:33:2c:c8:04:a6:
ed:d6:11:dd:fc:fa:d4:5b:19:82:91:59:8c:19:9b:
76:f8:dd:91:a7:c6:bb:ad:6e:40:bb:60:49:ce:98:
3a:1e:78:41:e4:67:bf:f9:1c:34:2c:86:d5:da:75:
20:00:e4:8a:ff:30:76:3c:cd:60:50:9b:5c:6d:ae:
31:ef:77:e8:c8:74:09:b2:8b:e7:46:d3:1a:e5:1e:
1e:8e:1f:c9:61:78:90:6b:45:04:41:cf:7e:1c:95:
9b:ea:db:21:32:d9:ed:4a:55:4b:90:ab:66:b5:11:
9f:55:e8:f8:56:71:88:5f:b7:49:88:e0:1f:26:dd:
09:2f:80:68:7d:9a:5e:12:b4:be:d5:40:00:3d:f2:
32:53:ff:ad:04:fd:37:ff:85:8d:5e:3b:e8:a9:ec:
af:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CE:90:7D:05:24:C3:1E:82:25:82:47:34:D9:89:FF:28:F6:DC:F8
X509v3 Authority Key Identifier:
keyid:1C:2C:F5:72:71:C2:B8:F0:4B:AA:7E:63:A9:B8:10:3D:52:03:D7:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCz1cnHCuPBLqn5jqbgQPVID1_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/5abc92-f55a-4548-9a00-5b4536a79e82/1/os6QfQUkwx6CJYJHNNmJ_yj23Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/5abc92-f55a-4548-9a00-5b4536a79e82/1/HCz1cnHCuPBLqn5jqbgQPVID1_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:5b:83:eb:5b:27:28:e4:c5:1f:30:31:4a:dc:1b:84:b8:23:
a1:a7:80:22:d9:aa:b8:ec:80:ab:32:36:8d:9c:da:ba:a1:26:
3b:ed:7f:23:46:58:b2:16:d0:f8:6a:62:a6:5f:86:48:af:87:
ce:a1:6d:ea:f5:46:e4:4a:7b:8e:c0:d2:0b:67:43:a7:c3:87:
60:66:98:40:cc:2a:ac:9f:0b:71:a5:aa:d0:b6:2d:2f:58:1e:
49:1a:a5:3c:10:c4:08:2e:5d:31:de:44:8d:56:bf:c6:8e:25:
20:84:49:62:6e:b7:51:06:b5:0e:55:4e:01:a5:d1:a9:01:d3:
00:54:60:ca:22:0b:29:59:27:02:b7:3d:b7:ac:3e:bc:a6:26:
bf:71:9d:fe:16:79:b0:80:2b:90:41:47:3f:f1:f6:98:43:06:
df:4a:87:ee:d9:d5:e1:05:af:81:55:a1:5c:20:25:66:46:d2:
8e:96:d2:16:a2:1c:de:42:23:eb:d4:4d:6b:34:3c:a7:d3:bb:
ce:3d:53:52:ee:06:3c:b3:4c:d0:c0:44:ee:26:18:f5:8b:c5:
94:3f:0d:9c:92:9a:fa:b8:30:83:3c:f5:24:2e:39:d0:01:f2:
3a:0a:5f:5f:e9:31:9e:1e:61:14:5b:5e:b1:25:79:46:59:ec:
e1:04:5d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:49 2025 by rpki-client