Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dVrDHSs1pUjcsjPTEcBFp6bnFDI.roa
File: dVrDHSs1pUjcsjPTEcBFp6bnFDI.roa (raw, json)
Hash identifier: ZWit3FdUzr4o09QhPV5vNOCmFwaC3mu2spEkq7AFOHQ=
Subject key identifier: 75:5A:C3:1D:2B:35:A5:48:DC:B2:33:D3:11:C0:45:A7:A6:E7:14:32
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 06E02EEE
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dVrDHSs1pUjcsjPTEcBFp6bnFDI.roa
Signing time: Sat 01 Jan 2022 09:56:50 +0000
ROA not before: Sat 01 Jan 2022 09:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200840
IP address blocks: 185.200.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115355374 (0x6e02eee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 1 09:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=755ac31d2b35a548dcb233d311c045a7a6e71432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:b4:6c:1f:52:79:dc:db:3b:77:a4:1a:a7:
f9:eb:e5:7c:34:4b:6e:c0:29:47:83:5f:23:be:cd:
d1:06:39:a1:79:d8:ad:3a:78:a5:70:3b:ed:12:b2:
94:18:01:50:fa:2d:c8:5c:e2:80:4f:51:71:6c:60:
ef:57:73:4f:68:df:4e:17:55:5d:5a:5b:26:ba:62:
a8:2a:f6:d4:be:d7:a1:cc:c0:62:22:c5:0f:98:bf:
ea:92:c8:27:79:20:4a:df:c4:41:55:e8:d4:03:2d:
b4:60:be:86:a5:22:50:c7:a5:b9:c4:7d:b9:84:f3:
74:b3:ff:7b:d3:4c:cf:2a:3e:bf:40:ff:7f:c7:f4:
ed:df:c6:56:48:8c:ec:11:9e:ca:a0:ac:48:d8:7f:
ae:e8:db:3c:58:29:d5:c5:b1:23:f0:53:89:fd:a8:
fd:61:34:5a:a0:c8:ad:bf:4e:e8:04:bf:6a:b8:46:
a7:f1:d4:02:3e:ef:92:66:67:b0:74:e4:30:1d:2d:
54:1d:c6:0b:71:d2:db:e6:7d:8f:a4:d5:e2:86:d6:
31:e6:06:5b:2a:de:00:cd:b2:c5:08:84:6e:4c:8d:
65:64:bf:bd:7c:30:fe:6b:59:26:30:6f:2e:0c:2b:
90:c4:1c:39:43:1b:3d:5b:33:a8:f9:aa:61:37:54:
3d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5A:C3:1D:2B:35:A5:48:DC:B2:33:D3:11:C0:45:A7:A6:E7:14:32
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dVrDHSs1pUjcsjPTEcBFp6bnFDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.14.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:7d:91:a8:e6:0a:78:72:ff:9f:03:64:5c:b1:89:c2:61:5c:
94:1a:b5:85:dd:82:43:5f:62:c3:2a:09:b1:4b:b7:15:72:ff:
7a:bf:1c:f4:50:ed:4f:01:7a:d8:ff:6d:17:1c:4b:02:11:9b:
aa:2c:2d:36:ca:cc:b0:95:5b:9b:11:92:b5:c6:84:92:f6:12:
47:8f:f4:4e:a6:c8:67:8d:f4:2e:fd:63:59:d1:11:35:47:4a:
cd:df:4b:0c:b3:d9:c7:24:fb:81:5f:f4:1e:01:78:45:ae:52:
e4:d9:33:56:f2:3c:25:b7:7f:bd:44:42:a1:f2:24:c7:66:2c:
ee:27:15:8c:04:ec:dc:71:05:fa:90:08:59:84:da:d4:6c:75:
6e:d0:9c:6d:09:d1:d8:67:49:32:2e:86:e6:b4:bf:52:36:41:
43:1c:f0:0d:20:a3:0e:7c:a3:ee:c1:b4:31:14:e4:8a:a6:f4:
1d:d3:fc:05:dd:5c:59:c8:3e:44:59:71:57:63:79:2a:81:1c:
66:ef:c2:fb:54:ec:3a:17:bc:c8:c3:36:4b:5e:2f:91:41:7b:
eb:83:07:15:7c:e9:42:ee:f4:82:6d:11:3e:02:63:e6:11:3e:
48:a2:7a:c3:6f:90:a2:49:9b:98:62:48:35:5b:8d:27:0f:4d:
1f:53:8f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:35 2024 by rpki-client on console-ams.rpki-client.org