Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/CXx3IBW_b-6fqBREp-Tjag-mfAg.roa
File: CXx3IBW_b-6fqBREp-Tjag-mfAg.roa (raw, json)
Hash identifier: ZPpuIK+VD/021eK2bRZLPZVXEktB/TT53bkC4Qi+KFw=
Subject key identifier: 09:7C:77:20:15:BF:6F:EE:9F:A8:14:44:A7:E4:E3:6A:0F:A6:7C:08
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 018570D5481E5EB63A190006DDC525BD8310
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/CXx3IBW_b-6fqBREp-Tjag-mfAg.roa
Signing time: Mon 02 Jan 2023 04:55:03 +0000
ROA not before: Mon 02 Jan 2023 04:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207502
IP address blocks: 185.200.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:48:1e:5e:b6:3a:19:00:06:dd:c5:25:bd:83:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 2 04:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=097c772015bf6fee9fa81444a7e4e36a0fa67c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:80:5e:8d:18:c7:6a:73:e8:3c:15:bc:02:83:
d2:8b:32:25:73:b6:27:3c:aa:d7:48:ac:5d:b2:b2:
09:fa:3f:3a:40:80:00:74:a0:67:a8:fc:eb:88:d4:
91:39:f6:b4:fd:b6:dc:a4:ca:cb:9b:97:77:7f:f5:
b3:d2:c1:c5:26:0e:21:67:9c:50:7d:6c:8c:b1:51:
fe:b8:e8:80:cc:e4:3d:79:08:6c:41:15:5f:21:4e:
00:f8:f1:22:ff:2f:0a:70:5d:2c:6b:65:82:c7:ff:
85:34:f1:7a:b2:e1:20:16:59:ee:35:ad:fa:32:b9:
a6:09:8c:d5:67:bd:a8:dd:a1:56:fd:7c:48:58:48:
a3:d4:1a:45:4b:5b:8f:70:19:d6:cc:21:31:4f:1d:
71:34:cd:a1:68:c1:d6:20:6a:23:2f:00:87:d0:97:
ce:a7:fe:1c:88:13:96:b7:78:c8:64:8f:b1:71:72:
e0:08:7b:bb:62:dd:88:b8:1b:f9:83:ea:3d:7e:71:
23:e8:d3:1e:9b:69:f6:f3:88:ed:50:e0:f0:75:ed:
37:fb:a8:89:7b:0c:9a:c7:df:87:cc:c7:ff:3d:4d:
47:0a:00:85:fd:a8:98:c0:a1:69:62:0c:ae:cb:e3:
06:7c:2c:40:82:57:10:9b:64:b1:63:29:5b:aa:c3:
50:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7C:77:20:15:BF:6F:EE:9F:A8:14:44:A7:E4:E3:6A:0F:A6:7C:08
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/CXx3IBW_b-6fqBREp-Tjag-mfAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.14.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:98:f2:4b:34:02:8d:22:27:3a:1a:b0:7b:97:c0:23:dd:92:
dd:04:51:7a:0b:59:f7:2d:1c:cf:b5:98:47:7d:fe:fa:98:07:
ff:8d:26:94:c5:0f:d7:97:46:57:0e:92:99:5f:3d:e8:11:5b:
0a:5d:8d:fc:51:f6:ef:1b:87:ab:c7:37:92:1c:ae:05:7f:23:
aa:da:8d:eb:15:8e:39:af:df:30:6d:d3:da:38:e3:43:fc:f4:
28:e7:44:54:3c:e7:90:b8:64:f6:4f:4a:85:8e:03:98:62:96:
77:dc:9a:0f:94:de:5b:53:d6:04:d0:7e:e9:77:9d:dc:aa:32:
0b:e2:4b:ab:62:a5:34:66:9a:dc:c2:1e:57:57:1b:7e:c7:72:
75:ba:92:02:79:da:48:e7:19:33:2c:e5:3d:07:47:b0:bd:1c:
18:f2:4d:df:83:ac:82:1c:3c:94:b0:8e:78:5a:a9:fa:be:eb:
5e:dd:5f:25:91:1d:cb:8a:0d:d3:26:67:0b:7c:6b:5a:cf:48:
d5:e2:e1:f6:7f:9b:35:79:57:3b:44:a1:c0:31:13:61:6f:d7:
3c:83:5b:56:fd:99:49:b6:92:78:58:e5:3f:20:9c:0a:d6:4f:
33:26:ad:93:cc:9c:d3:89:19:af:85:cb:99:ce:72:9e:ce:15:
90:95:c6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:58 2025 by rpki-client