Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/hwGM71zIjTdGw6PNQOTVLnzf8Ig.roa
File: hwGM71zIjTdGw6PNQOTVLnzf8Ig.roa (raw, json)
Hash identifier: A6dnJ0Uof/4HeNSNKOX9CwjcVOxSqX+4xdWuI4NntAE=
Subject key identifier: 87:01:8C:EF:5C:C8:8D:37:46:C3:A3:CD:40:E4:D5:2E:7C:DF:F0:88
Certificate issuer: /CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Certificate serial: 0BCC6661
Authority key identifier: 2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/hwGM71zIjTdGw6PNQOTVLnzf8Ig.roa
Signing time: Sun 20 Mar 2022 12:12:33 +0000
ROA not before: Sun 20 Mar 2022 12:12:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56624
IP address blocks: 91.237.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197944929 (0xbcc6661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Validity
Not Before: Mar 20 12:12:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87018cef5cc88d3746c3a3cd40e4d52e7cdff088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:43:ba:bf:9f:e9:2f:d2:f9:ef:d4:c6:6a:
5e:c1:80:f8:8a:49:b2:6c:7d:45:78:fe:0c:0b:d4:
aa:9c:9e:04:8c:c8:b2:93:50:86:4b:02:50:b6:f7:
ec:0c:49:6f:26:ca:e5:bd:ee:f1:76:bd:a2:a0:f2:
ad:b7:ff:08:31:d9:de:bf:89:53:d2:18:ee:4b:33:
17:d3:c4:7f:f3:84:62:47:69:fd:72:66:35:d9:f4:
59:11:62:d7:79:92:6e:19:bf:93:03:4e:c1:95:b7:
c8:cb:a5:a1:25:dc:ab:d5:4a:83:f4:cb:17:cc:f9:
5d:d4:f0:56:c7:b6:11:8a:1c:c8:11:a3:8e:2c:a7:
c8:01:58:ad:f9:d5:bc:93:45:0d:de:e0:ac:92:5d:
68:d4:92:68:8e:3e:9b:a3:09:a7:33:c1:52:f5:33:
ae:9e:a3:e1:9d:7f:c7:ce:49:ec:74:5f:c3:16:ef:
27:a3:01:b2:8d:0d:e4:85:c1:9d:7e:6e:1a:c7:c8:
c1:d8:6c:15:2c:72:3b:28:c6:e8:48:67:9b:f0:98:
7e:2b:02:4e:10:6a:b9:75:72:d1:d8:79:70:bb:8d:
47:f6:ee:ed:c4:46:e0:e4:65:bf:b2:25:22:d3:91:
5d:50:0e:fc:aa:ce:80:92:74:63:5f:96:c1:7d:f8:
39:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:8C:EF:5C:C8:8D:37:46:C3:A3:CD:40:E4:D5:2E:7C:DF:F0:88
X509v3 Authority Key Identifier:
keyid:2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/hwGM71zIjTdGw6PNQOTVLnzf8Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/LycJyzmcThaMy9oW2xNrW8i5bdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.236.0/22
Signature Algorithm: sha256WithRSAEncryption
96:f8:04:e0:24:2d:4b:87:c9:3d:f1:49:2f:fb:1a:de:75:7c:
c2:e2:c5:ef:14:70:ed:42:94:82:8e:73:9a:fb:32:25:1f:c4:
e7:db:45:6b:1a:eb:e3:58:26:4b:3e:dd:11:bd:bf:64:0b:8e:
b1:24:fb:91:be:cb:5d:4e:98:ee:6b:eb:c3:5a:d1:8e:9b:a2:
49:bc:f2:12:1e:a4:52:69:c5:3c:40:50:1b:ab:21:97:3b:bd:
c2:ba:f3:54:fe:e3:a8:04:ea:cd:f1:28:54:c8:25:f5:6f:4e:
df:5b:e5:30:91:2d:b3:bb:70:39:7d:b9:f4:49:d7:5f:ad:e7:
ae:21:60:5a:8f:3f:21:84:5b:7a:7e:4b:d2:39:02:8a:ce:86:
b7:9b:94:50:37:8a:db:3d:89:3a:ed:0e:c2:26:05:cc:76:57:
1d:fd:fa:d3:0a:81:54:d2:3e:09:e0:3b:40:7a:17:68:be:d0:
67:30:85:3b:06:f2:31:55:94:49:61:02:dd:93:a0:c1:e6:76:
72:b5:0e:64:80:cc:77:cd:95:08:e8:8e:f0:6a:d9:84:98:ef:
e7:ad:f5:09:c6:2f:88:9d:6d:53:d6:a4:fa:05:d0:af:65:0d:
be:04:03:fe:45:88:24:21:3e:4a:9a:29:c9:81:f3:78:ca:86:
af:a4:ec:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 17:57:40 2025 by rpki-client