Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/BR_1pjJABJzC1shiMq71_brbA_U.roa
File: BR_1pjJABJzC1shiMq71_brbA_U.roa (raw, json)
Hash identifier: 2/afZpBm/8sIc6Dou6wwEcqrI9NUVDP615we+QxPidg=
Subject key identifier: 05:1F:F5:A6:32:40:04:9C:C2:D6:C8:62:32:AE:F5:FD:BA:DB:03:F5
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 06DF8455
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/BR_1pjJABJzC1shiMq71_brbA_U.roa
Signing time: Sat 01 Jan 2022 09:56:49 +0000
ROA not before: Sat 01 Jan 2022 09:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.200.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115311701 (0x6df8455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 1 09:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=051ff5a63240049cc2d6c86232aef5fdbadb03f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:84:df:42:a5:22:a0:74:18:b5:00:2a:d2:95:
b0:84:b4:5d:ac:c5:86:be:ef:49:39:81:98:37:d1:
f6:d1:7d:99:8f:a4:e8:ff:9d:81:bb:cb:21:f9:e4:
57:86:b5:f2:cb:7c:cb:71:2f:56:a9:df:5f:f7:08:
96:d6:ec:9a:c4:59:5e:ab:55:0d:30:a8:20:ab:f2:
30:ad:72:cf:37:9a:6c:32:aa:f0:73:ab:f1:30:85:
44:45:f6:4c:a2:76:df:cf:78:e0:81:89:52:cb:58:
26:ec:2f:1f:be:c2:0b:51:34:10:bf:48:fe:27:31:
65:8c:ae:20:2b:cc:bd:1d:20:1a:df:63:7f:d9:a1:
22:d1:f4:36:1f:c1:9a:70:1e:59:aa:45:3c:1b:f7:
a7:95:bd:10:30:a7:19:49:07:d5:b9:b9:ba:ba:f4:
51:fa:fb:91:b7:fa:3d:97:5f:0f:2b:a3:a6:9e:25:
88:8e:b0:e0:38:35:3a:30:41:cf:30:83:73:a6:21:
9d:e6:be:74:e7:19:aa:8d:b8:df:6a:1c:e6:8e:b2:
9a:59:05:f2:b2:1a:f3:10:07:7d:38:c2:7c:a4:fb:
c1:a1:32:f5:79:22:a0:df:e6:42:bb:0c:bd:11:4b:
b0:f1:22:19:64:7c:6b:bb:d6:04:a3:c6:c3:97:d4:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1F:F5:A6:32:40:04:9C:C2:D6:C8:62:32:AE:F5:FD:BA:DB:03:F5
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/BR_1pjJABJzC1shiMq71_brbA_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.12.0/22
Signature Algorithm: sha256WithRSAEncryption
07:5e:e6:a4:50:96:dc:ec:f8:63:b9:2b:ba:43:ab:b5:88:28:
dc:be:f1:a6:da:fc:ce:1e:49:bc:6b:79:e7:3b:e8:54:74:ab:
a3:e8:68:43:b7:4d:18:a1:a2:f6:61:7b:4c:32:30:47:84:9c:
dc:02:8e:e4:98:21:49:98:fe:b0:97:34:66:9e:f2:92:07:e7:
50:4a:c8:89:0e:ee:da:41:c1:c0:01:94:7b:45:75:e5:b8:0b:
38:b6:f6:15:41:98:65:31:ae:8b:d5:7b:fb:a5:34:96:11:f7:
39:20:3e:64:dd:c3:19:ee:19:e9:2e:38:fa:b2:f6:3e:e3:5f:
94:97:77:18:13:9c:6d:81:56:3e:7d:a2:b7:cf:45:06:ca:2a:
2a:77:5d:68:6c:24:c9:51:8a:06:75:3e:3b:1f:53:69:56:02:
be:4d:1a:92:66:e1:ca:30:0d:da:0c:45:9f:13:71:7e:65:f4:
29:25:c3:9b:ea:1b:35:83:4a:cb:84:5a:42:8f:a1:ec:c6:64:
ff:7e:67:11:d9:c5:1f:90:76:1e:b0:14:04:ca:e6:bc:de:9f:
7a:90:f7:a1:bc:a8:4f:7f:35:94:d9:7e:d3:52:48:df:89:88:
82:80:b1:af:98:32:51:7a:01:d5:d3:7d:45:e9:9e:08:6f:1d:
10:5a:cf:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 21:02:31 2025 by rpki-client