Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/C4QDqW61wQ1I-XUR8yRjAnCLPGo.roa
File: C4QDqW61wQ1I-XUR8yRjAnCLPGo.roa (raw, json)
Hash identifier: bxfPLyBF6EccgUAbsO4d59AraMsb8LHkLg+0ZWrBQe8=
Subject key identifier: 0B:84:03:A9:6E:B5:C1:0D:48:F9:75:11:F3:24:63:02:70:8B:3C:6A
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 06E07EDB
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/C4QDqW61wQ1I-XUR8yRjAnCLPGo.roa
Signing time: Sat 01 Jan 2022 09:56:50 +0000
ROA not before: Sat 01 Jan 2022 09:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207502
IP address blocks: 185.200.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115375835 (0x6e07edb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 1 09:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b8403a96eb5c10d48f97511f3246302708b3c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:55:55:d9:d6:20:4c:71:db:8c:d0:ba:4a:
78:9b:22:1b:ab:2c:6a:ec:aa:f3:91:74:5f:ae:a3:
21:f1:07:06:68:d6:2d:f4:b3:62:ea:cc:a4:06:47:
4c:26:3b:c4:ad:4d:55:e8:63:f7:87:de:21:1e:19:
1d:80:67:be:fa:6a:82:b8:d6:45:54:d4:bd:b9:31:
28:7a:57:81:b5:e7:9a:f2:a0:26:63:54:50:cd:66:
28:9e:2a:4b:39:57:e2:0c:d0:d2:a9:a3:5e:29:8e:
6f:c0:64:0b:d4:c7:77:b8:3c:7b:45:dc:55:72:f9:
b8:7b:2a:46:38:80:08:ab:f6:b7:d2:83:e0:45:c1:
27:e8:63:69:47:cc:47:f3:9b:58:f1:7c:cd:c3:01:
38:79:da:45:27:98:d4:50:d5:e0:e7:da:11:a5:bb:
d5:ea:13:b5:74:ac:28:de:aa:35:b6:1d:19:a2:b3:
3b:b0:c1:5b:14:25:d5:c4:1d:c4:46:1c:4f:21:50:
17:e4:1f:5d:1d:0b:a0:ea:1c:16:ae:8f:7c:03:f4:
74:ce:59:d1:35:46:35:b3:a3:4c:12:09:5e:f8:20:
3a:e5:a7:58:b3:6c:39:9f:93:b8:3d:13:ce:e4:2a:
e4:74:51:79:73:23:62:bf:02:53:34:ec:8b:b9:31:
29:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:84:03:A9:6E:B5:C1:0D:48:F9:75:11:F3:24:63:02:70:8B:3C:6A
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/C4QDqW61wQ1I-XUR8yRjAnCLPGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.14.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6b:d4:f3:fc:11:c9:c3:35:ba:0b:23:07:81:64:ee:0f:ba:
9c:d7:23:f5:56:50:85:ef:42:18:7e:85:05:b3:43:26:1c:bd:
53:23:ee:85:6a:40:83:86:13:e3:fd:49:52:3f:22:66:c7:48:
90:0a:86:e3:cf:95:e2:31:29:4c:77:65:5b:01:95:e9:cc:4c:
33:58:6e:3d:3d:ef:91:6b:10:df:4b:7a:29:9d:5f:6d:bd:5c:
e1:d7:76:0f:b7:6d:d2:95:a8:fc:ce:e2:96:e9:07:5a:bb:13:
60:05:62:a2:e3:4e:0a:7d:8a:cc:7f:9e:1e:60:14:0a:2c:da:
60:8d:19:60:70:1f:46:90:c7:a2:63:a1:43:f8:ca:0f:37:2b:
72:2e:9f:a5:77:97:0e:38:8f:f5:92:b5:71:ef:24:46:71:7e:
33:ab:40:f9:2f:77:73:f9:e4:1a:43:f8:f6:c8:a8:4d:e6:b6:
d4:42:47:49:5c:b2:6a:df:ec:5e:e5:ba:4a:c5:82:d5:b7:88:
96:b2:6e:15:27:a3:44:fd:1e:b8:71:79:5c:ed:91:7e:17:f8:
c1:24:ac:d8:c2:f5:99:82:84:0b:b4:e5:c1:87:7c:66:c7:3f:
c6:71:21:b9:10:35:de:c5:8b:ee:12:dd:b2:37:4b:0f:1b:c0:
a0:40:46:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:56 2025 by rpki-client