Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/4469b5-3bf7-4095-89c2-be9dd15d8291/1/jWDz_BWRQyNMbaoyKmUcdIelWfo.roa
File: jWDz_BWRQyNMbaoyKmUcdIelWfo.roa (raw, json)
Hash identifier: S9zVtXc7Zggu8hSsvW3MU1CzPkmcMs7VBXFMRQMI+pQ=
Subject key identifier: 8D:60:F3:FC:15:91:43:23:4C:6D:AA:32:2A:65:1C:74:87:A5:59:FA
Certificate issuer: /CN=a8f1e05bd7b3f8ca9b4abd0f899912179b566df7
Certificate serial: 9CCE
Authority key identifier: A8:F1:E0:5B:D7:B3:F8:CA:9B:4A:BD:0F:89:99:12:17:9B:56:6D:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qPHgW9ez-MqbSr0PiZkSF5tWbfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/4469b5-3bf7-4095-89c2-be9dd15d8291/1/jWDz_BWRQyNMbaoyKmUcdIelWfo.roa
Signing time: Thu 21 Apr 2022 10:06:28 +0000
ROA not before: Thu 21 Apr 2022 10:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48786
IP address blocks: 91.212.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40142 (0x9cce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8f1e05bd7b3f8ca9b4abd0f899912179b566df7
Validity
Not Before: Apr 21 10:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d60f3fc159143234c6daa322a651c7487a559fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:86:42:39:a8:ab:cb:7b:b1:8f:84:f1:f2:
01:e7:32:5f:4c:eb:41:7a:eb:5d:f8:d9:f5:88:38:
91:c3:bf:8b:17:49:69:b1:35:b6:7f:b4:70:f8:39:
6e:bd:75:67:5f:9b:eb:06:31:9c:f3:a8:ca:1a:de:
2d:d6:8a:aa:cc:c3:b0:83:b3:8c:21:b0:dc:4e:6f:
cd:61:24:41:d0:ea:aa:0a:72:4e:99:7c:87:e1:e5:
cb:7b:b1:99:67:8a:49:b0:78:bb:cf:be:78:3e:35:
84:d5:e7:51:49:a4:d7:58:a0:5a:b8:ce:7e:90:74:
03:74:4e:f6:2c:14:fd:6d:b9:08:4c:48:a5:2e:65:
84:a5:57:c2:78:e0:9e:a7:83:03:66:d2:bf:36:2f:
2b:08:41:32:e6:02:c1:e0:a4:6d:bd:ad:a8:04:d6:
31:53:8c:af:52:67:78:66:27:01:29:28:1a:71:27:
c8:d2:47:46:81:70:e3:9a:0d:b9:78:fd:39:d4:41:
92:a1:e5:59:67:3d:3e:93:08:09:a8:2b:02:fc:ff:
bc:74:21:d1:fb:06:e5:14:ce:6c:3f:e8:f7:4a:a0:
7d:65:cd:79:b6:5a:b6:96:98:4b:94:97:07:b2:f9:
61:5e:3c:f6:b0:c8:14:cc:f1:d6:b6:1b:fd:cd:20:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:60:F3:FC:15:91:43:23:4C:6D:AA:32:2A:65:1C:74:87:A5:59:FA
X509v3 Authority Key Identifier:
keyid:A8:F1:E0:5B:D7:B3:F8:CA:9B:4A:BD:0F:89:99:12:17:9B:56:6D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qPHgW9ez-MqbSr0PiZkSF5tWbfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4469b5-3bf7-4095-89c2-be9dd15d8291/1/jWDz_BWRQyNMbaoyKmUcdIelWfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4469b5-3bf7-4095-89c2-be9dd15d8291/1/qPHgW9ez-MqbSr0PiZkSF5tWbfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.35.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:5d:0f:5c:7a:73:d2:86:3c:41:7f:c1:c6:d0:1c:d7:54:83:
13:b1:62:84:e8:19:8f:37:d7:ff:3c:b0:02:51:4f:4f:ef:36:
57:47:00:33:d1:fe:f4:7f:f9:60:08:4a:36:8f:5b:45:85:f4:
88:05:77:49:2e:67:4e:af:ca:ae:41:33:d1:c7:d5:c6:a6:c8:
9d:5a:01:e6:d7:b3:f8:85:08:8d:0a:52:8f:74:7c:0c:6e:c4:
a4:99:53:17:c8:b3:29:86:06:89:05:d6:3f:1e:3f:57:0e:f3:
e1:6c:f3:97:f5:9e:73:c9:6a:cd:9c:b5:88:94:5c:0c:12:c4:
5c:ab:fa:56:20:b0:f7:bd:a9:28:23:6f:fd:a8:79:f4:d2:af:
72:ae:26:f7:ad:42:c3:49:7d:de:f4:0c:0a:37:7b:10:90:f0:
32:6a:08:22:00:d8:5f:74:7d:a8:00:ab:c2:98:c1:8c:42:ff:
30:fb:19:8b:d9:84:f3:1e:36:47:a5:f5:f6:ce:58:25:6b:36:
82:72:8b:93:e2:15:e4:b6:d7:99:b5:70:57:37:e4:1b:4e:82:
e3:3e:bb:ca:d8:0e:43:4e:b8:26:c4:a5:61:a0:05:96:ab:13:
34:03:78:14:eb:c7:57:b1:21:e6:11:19:35:2d:f0:b0:8e:03:
0a:b9:57:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:32:15 2025 by rpki-client