Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/URRNKWFQ8dXw6fMDRg9zWPLUs5w.roa
File: URRNKWFQ8dXw6fMDRg9zWPLUs5w.roa (raw, json)
Hash identifier: a1rbLoQazfcs4nuuoXI34UlpXEesXvywHRG6mbEjMzM=
Subject key identifier: 51:14:4D:29:61:50:F1:D5:F0:E9:F3:03:46:0F:73:58:F2:D4:B3:9C
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 06DFBAA4
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/URRNKWFQ8dXw6fMDRg9zWPLUs5w.roa
Signing time: Sat 01 Jan 2022 09:56:50 +0000
ROA not before: Sat 01 Jan 2022 09:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.200.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115325604 (0x6dfbaa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 1 09:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51144d296150f1d5f0e9f303460f7358f2d4b39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:6a:23:08:da:78:71:43:90:44:c6:65:bc:
bc:2f:22:a2:31:9b:19:78:ff:52:5a:15:de:d4:2e:
78:8b:85:42:23:38:bb:42:9f:7b:2c:f7:49:ff:ed:
1d:e2:75:d5:93:6e:1f:b9:23:52:d9:a5:78:44:a2:
a3:10:3f:b6:2b:6f:8a:bb:d0:5e:57:2b:f0:c0:fe:
9a:37:48:2b:40:cd:7a:88:d7:8a:22:a5:bd:86:66:
ee:28:4a:6b:a5:4f:fd:c2:97:4b:9d:42:bb:08:76:
0c:22:66:4d:95:4a:a4:ff:c9:56:47:05:5b:6c:6f:
ef:16:e1:f8:90:ce:ed:0e:92:0d:88:d8:4a:47:bb:
91:40:44:3f:b5:79:16:4e:9c:11:58:4b:f8:80:63:
a6:c1:f8:6a:c5:15:7f:ca:3d:ee:d9:4c:7d:af:96:
c5:ef:ee:1d:af:25:4d:c6:8e:4d:cc:a8:84:49:83:
22:83:6d:bd:6e:93:c7:50:ca:f6:18:85:45:e6:62:
01:49:58:30:df:dd:60:f5:fd:90:91:2d:20:0b:0c:
a1:67:9a:c3:2e:a0:b5:73:0c:71:6a:40:f6:6e:85:
0a:49:72:02:7a:25:f1:0b:b0:22:46:ea:95:46:8f:
4c:2a:c6:fd:cb:9d:4f:15:51:be:72:bc:d2:5d:a4:
8b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:14:4D:29:61:50:F1:D5:F0:E9:F3:03:46:0F:73:58:F2:D4:B3:9C
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/URRNKWFQ8dXw6fMDRg9zWPLUs5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:93:95:6d:ce:38:1e:b2:68:db:65:02:05:d9:0d:12:1f:97:
92:89:38:62:40:30:2d:14:5e:e6:6a:a3:f1:16:b6:fd:65:e8:
88:18:cf:e3:6b:cb:9b:0b:a7:d3:5a:43:31:f0:62:c1:d2:33:
8c:a7:08:08:cf:b3:7e:9e:69:d0:fe:a5:3f:49:6c:93:1b:01:
69:39:35:3e:57:7e:c0:d2:b3:1b:af:bc:ff:8b:05:c8:e9:b8:
d7:c5:27:58:bc:6a:63:40:ea:4b:11:9d:40:fa:d1:c5:fd:78:
e9:a8:63:a1:4f:17:fc:15:f6:78:fc:c9:2f:41:e5:03:56:26:
07:aa:39:8a:87:6a:ac:91:61:6e:75:c5:6b:fd:fd:14:45:aa:
f7:a1:66:d4:5d:74:48:f5:fc:1c:4c:90:40:03:68:7c:a6:15:
6d:a3:fa:0a:24:a1:b0:16:72:fd:65:da:34:b6:ae:e7:4b:0f:
90:eb:69:9f:e8:47:d3:9c:a9:51:a7:2e:7d:fd:4f:6f:ba:63:
03:f2:40:7a:6f:55:c6:79:0d:35:d3:03:5c:1e:40:8e:4b:47:
f2:a1:42:8f:6e:d3:4b:07:f4:c3:21:f5:5e:00:55:cd:5b:11:
c4:c7:05:bd:c5:18:c1:27:99:b7:6b:22:30:26:d0:1e:89:5a:
24:ba:75:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:22 2025 by rpki-client