Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/i0mQfQWPy2injVo5Q0AqtyL9ifc.roa
File: i0mQfQWPy2injVo5Q0AqtyL9ifc.roa (raw, json)
Hash identifier: w2764HFIfR7pprN+j68IA3qhlb9WuJ5UqvAKvsOPmnw=
Subject key identifier: 8B:49:90:7D:05:8F:CB:68:A7:8D:5A:39:43:40:2A:B7:22:FD:89:F7
Certificate issuer: /CN=8e95484fff3a9f618c03a79621d0798d24865071
Certificate serial: 01857B08F0ABE1EA4B0A2154C58A1B3062A4
Authority key identifier: 8E:95:48:4F:FF:3A:9F:61:8C:03:A7:96:21:D0:79:8D:24:86:50:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jpVIT_86n2GMA6eWIdB5jSSGUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/i0mQfQWPy2injVo5Q0AqtyL9ifc.roa
Signing time: Wed 04 Jan 2023 04:27:41 +0000
ROA not before: Wed 04 Jan 2023 04:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43873
IP address blocks: 79.140.225.0/24 maxlen: 24
79.140.224.0/20 maxlen: 20
79.140.226.0/24 maxlen: 24
79.140.224.0/24 maxlen: 24
79.140.232.0/24 maxlen: 24
79.140.233.0/24 maxlen: 24
79.140.230.0/24 maxlen: 24
79.140.227.0/24 maxlen: 24
79.140.234.0/24 maxlen: 24
79.140.239.0/24 maxlen: 24
79.140.236.0/24 maxlen: 24
46.255.232.0/24 maxlen: 24
46.255.233.0/24 maxlen: 24
46.255.236.0/24 maxlen: 24
46.255.237.0/24 maxlen: 24
46.255.238.0/24 maxlen: 24
46.255.234.0/24 maxlen: 24
46.255.235.0/24 maxlen: 24
46.255.239.0/24 maxlen: 24
146.66.16.0/21 maxlen: 21
146.66.17.0/24 maxlen: 24
146.66.16.0/24 maxlen: 24
146.66.21.0/24 maxlen: 24
146.66.22.0/24 maxlen: 24
146.66.23.0/24 maxlen: 24
146.66.18.0/24 maxlen: 24
146.66.19.0/24 maxlen: 24
146.66.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7b:08:f0:ab:e1:ea:4b:0a:21:54:c5:8a:1b:30:62:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e95484fff3a9f618c03a79621d0798d24865071
Validity
Not Before: Jan 4 04:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b49907d058fcb68a78d5a3943402ab722fd89f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5f:a4:54:be:bc:88:e1:a6:cd:79:e5:f9:e9:
43:ca:47:b5:1e:b5:43:e0:c5:3d:59:99:a5:db:07:
ba:57:6a:47:34:bc:4b:bf:cf:02:73:c3:2d:fe:20:
f7:dd:d0:b9:f1:e2:3f:84:e1:63:05:dd:b9:16:7d:
ef:68:6f:83:79:ae:93:46:cd:66:e7:99:2c:63:f6:
2b:9d:65:d3:d3:df:ad:f7:3d:ae:09:07:70:c4:e3:
f8:ec:6b:02:ef:3e:dd:5e:6f:3c:e3:f3:4f:5b:21:
88:78:a9:b5:4c:df:12:02:36:5c:71:06:54:fe:d4:
46:58:de:54:7e:59:82:74:74:f2:e1:38:90:fe:1d:
e1:a3:1f:10:1c:fb:21:be:55:0c:b4:69:98:68:c8:
9e:f3:ac:83:ef:cf:75:b7:d8:09:17:37:78:fd:b3:
f1:f9:9f:9e:e3:46:c4:a3:a8:5a:82:41:ee:31:a7:
73:9a:1b:c7:6e:e3:73:19:fc:8f:ac:31:b1:40:ec:
58:bc:f6:51:c7:aa:ef:5e:0e:d9:9d:fe:2b:3c:03:
6f:68:fb:68:f2:d2:e6:77:4c:fd:a9:e0:cd:c1:ec:
ee:b3:5c:6f:25:ea:67:a8:b8:06:c2:38:b4:d1:5c:
6a:30:fc:26:28:fb:70:1c:23:6c:f6:45:b0:f5:86:
85:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:49:90:7D:05:8F:CB:68:A7:8D:5A:39:43:40:2A:B7:22:FD:89:F7
X509v3 Authority Key Identifier:
keyid:8E:95:48:4F:FF:3A:9F:61:8C:03:A7:96:21:D0:79:8D:24:86:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jpVIT_86n2GMA6eWIdB5jSSGUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/i0mQfQWPy2injVo5Q0AqtyL9ifc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/jpVIT_86n2GMA6eWIdB5jSSGUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.232.0/21
79.140.224.0/20
146.66.16.0/21
Signature Algorithm: sha256WithRSAEncryption
85:4a:d3:08:1e:b5:e4:86:dc:1a:fb:fe:6d:73:b2:ac:eb:58:
2c:a5:00:04:e8:b3:c8:ce:64:07:19:f6:39:2e:27:bb:ab:93:
42:88:f2:d1:1c:6f:7c:44:74:b2:84:00:3b:92:6a:53:77:5d:
bf:ab:63:60:a7:ee:f4:43:35:2f:da:f2:05:2d:57:b9:c4:4f:
e0:6f:36:92:d1:05:64:82:e1:04:b4:dd:f8:b7:8e:1b:03:86:
fa:13:44:05:95:22:18:c7:b0:40:9c:60:a1:e5:c0:b8:2f:1b:
b2:f4:37:73:30:44:2e:ab:21:70:b4:be:0b:15:b9:c1:49:a8:
e3:5f:1f:3f:56:dd:3d:ea:7c:58:7b:ee:04:5c:e5:0a:2b:cf:
da:b7:17:3a:e2:09:13:a6:5f:cd:1c:2a:9c:fa:79:14:9f:c4:
72:df:30:45:39:96:5b:6d:82:43:a7:ed:9f:f2:d1:ff:8f:43:
21:59:6f:14:1f:fe:1c:37:23:d8:ac:5f:03:71:d7:3d:61:01:
5d:84:4c:60:9e:5c:c3:7e:10:be:65:45:70:25:6a:7c:0b:ca:
1a:bc:4a:24:e3:1d:fd:46:f9:3f:84:f1:48:58:c4:68:d3:02:
65:fc:0a:24:72:a9:eb:49:e0:17:1b:cf:38:1f:d5:a6:f1:9e:
9f:7c:e1:9c
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYV7CPCr4epLCiFUxYobMGKkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlOTU0ODRmZmYzYTlmNjE4YzAzYTc5NjIxZDA3OThkMjQ4
NjUwNzEwHhcNMjMwMTA0MDQyNzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjQ5OTA3ZDA1OGZjYjY4YTc4ZDVhMzk0MzQwMmFiNzIyZmQ4OWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiV+kVL68iOGmzXnl+elDyke1HrVD
4MU9WZml2we6V2pHNLxLv88Cc8Mt/iD33dC58eI/hOFjBd25Fn3vaG+Dea6TRs1m
55ksY/YrnWXT09+t9z2uCQdwxOP47GsC7z7dXm884/NPWyGIeKm1TN8SAjZccQZU
/tRGWN5UflmCdHTy4TiQ/h3hox8QHPshvlUMtGmYaMie86yD7891t9gJFzd4/bPx
+Z+e40bEo6hagkHuMadzmhvHbuNzGfyPrDGxQOxYvPZRx6rvXg7Znf4rPANvaPto
8tLmd0z9qeDNwezus1xvJepnqLgGwji00VxqMPwmKPtwHCNs9kWw9YaFLwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFItJkH0Fj8top41aOUNAKrci/Yn3MB8GA1UdIwQY
MBaAFI6VSE//Op9hjAOnliHQeY0khlBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanBWSVRfODZuMkdNQTZlV0lkQjVqU1NHVUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS82NWEyZTItNzRjZi00ZDhiLWFhZDYt
YjJhMTM0NDBmMWE1LzEvaTBtUWZRV1B5MmlualZvNVEwQXF0eUw5aWZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS82NWEyZTItNzRjZi00ZDhiLWFhZDYtYjJhMTM0NDBmMWE1
LzEvanBWSVRfODZuMkdNQTZlV0lkQjVqU1NHVUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDLv/oAwQE
T4zgAwQDkkIQMA0GCSqGSIb3DQEBCwUAA4IBAQCFStMIHrXkhtwa+/5tc7Ks61gs
pQAE6LPIzmQHGfY5Lie7q5NCiPLRHG98RHSyhAA7kmpTd12/q2Ngp+70QzUv2vIF
LVe5xE/gbzaS0QVkguEEtN34t44bA4b6E0QFlSIYx7BAnGCh5cC4Lxuy9DdzMEQu
qyFwtL4LFbnBSajjXx8/Vt096nxYe+4EXOUKK8/atxc64gkTpl/NHCqc+nkUn8Ry
3zBFOZZbbYJDp+2f8tH/j0MhWW8UH/4cNyPYrF8Dcdc9YQFdhExgnlzDfhC+ZUVw
JWp8C8oavEok4x39Rvk/hPFIWMRo0wJl/AokcqnrSeAXG884H9Wm8Z6ffOGc
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:20 2025 by rpki-client