Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/jxWqLcFQ3jIxDH-RSp10HCvegM0.roa
File: jxWqLcFQ3jIxDH-RSp10HCvegM0.roa (raw, json)
Hash identifier: LyENQNYLCrafckH5Jer519GdUSLiuwzgAJAzMtE7Khg=
Subject key identifier: 8F:15:AA:2D:C1:50:DE:32:31:0C:7F:91:4A:9D:74:1C:2B:DE:80:CD
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 43A84CBF
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/jxWqLcFQ3jIxDH-RSp10HCvegM0.roa
Signing time: Sat 01 Jan 2022 14:00:57 +0000
ROA not before: Sat 01 Jan 2022 14:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 46.143.0.0/22 maxlen: 32
79.127.118.0/24 maxlen: 32
79.127.44.0/23 maxlen: 32
79.127.60.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1135103167 (0x43a84cbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 14:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f15aa2dc150de32310c7f914a9d741c2bde80cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:dc:b3:bb:22:ab:47:c5:fa:20:6b:f2:3e:c8:
f5:7a:03:cc:81:a1:ac:3a:12:df:d9:73:19:c8:ea:
b9:2c:c9:2d:50:05:bc:83:44:bf:1f:1f:2d:2a:59:
64:09:75:15:6c:f4:c5:f0:c5:31:51:4c:f2:45:0d:
53:f8:3a:fe:2b:ec:5d:a1:ef:bc:6c:b2:94:b5:e9:
5c:27:78:ca:83:16:cd:a3:b4:b7:b2:06:43:bf:b0:
e7:31:60:b4:66:e9:31:3f:96:dd:68:d6:98:79:0d:
11:6c:a4:7a:96:ce:02:04:71:c5:4c:e7:ed:74:91:
e9:7f:6e:65:c1:41:77:c9:b0:c9:32:a9:9d:ca:6b:
b7:cc:20:05:2c:84:29:00:12:6c:2f:5f:ff:c9:d7:
06:51:56:b9:c8:c1:e3:01:0b:15:e3:ec:58:70:54:
83:56:a0:9c:87:63:2c:54:11:87:4f:a2:75:ec:22:
d7:94:ba:4e:30:8d:57:c1:30:f0:94:4a:36:c5:43:
47:79:53:44:1e:52:11:f0:f2:e5:8e:96:8f:f7:15:
71:70:ad:72:b1:e1:6f:75:2f:74:79:56:f4:0c:35:
c7:87:9b:3c:f6:2d:e9:9f:8d:21:c8:69:71:5b:b0:
02:d2:8b:3c:a5:da:02:45:f0:f2:41:bf:5d:82:d8:
2f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:15:AA:2D:C1:50:DE:32:31:0C:7F:91:4A:9D:74:1C:2B:DE:80:CD
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/jxWqLcFQ3jIxDH-RSp10HCvegM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.143.0.0/22
79.127.44.0/23
79.127.60.0/23
79.127.118.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:e5:54:84:0c:4c:e8:b6:dc:27:c2:ab:47:be:f5:59:b8:ed:
f5:36:f2:17:73:e6:9e:a8:83:8b:fa:d3:e8:d1:91:7b:0b:87:
2c:6c:57:a9:ff:f2:dd:38:9f:b6:fb:0b:8d:69:aa:ae:7c:34:
a0:ac:2f:15:d7:d0:57:79:80:17:27:f0:c2:0c:9f:c5:4e:53:
76:9b:d7:35:18:d9:cd:6d:3a:d6:d0:33:2e:c9:1e:de:5b:30:
a5:c1:8a:0a:b6:8d:9b:88:c5:94:1d:78:6d:b1:91:9f:af:d5:
fd:22:ad:32:37:6b:8a:b3:0d:3d:48:9c:5b:5e:21:41:9e:be:
2b:e0:aa:94:86:95:63:36:c8:2d:75:71:8b:13:1e:a6:87:3b:
18:81:d1:64:0b:b8:36:6e:42:8b:84:c5:8a:3e:7d:ad:8b:15:
ee:66:ee:d0:c1:9a:5a:6d:10:5a:0d:e1:73:42:cd:b7:69:c6:
1a:3d:0f:07:c9:72:0a:c5:4a:38:8d:a2:9b:f4:33:12:1f:9b:
dc:a5:a4:1a:81:4f:a0:bc:36:fc:7c:fb:c6:39:5b:a7:43:0e:
63:de:2c:e9:8f:0c:6e:40:b4:89:4d:56:e5:8e:b7:77:c6:3b:
ce:ba:d5:33:6c:d1:9a:55:1e:77:3a:09:83:00:d5:44:3f:c3:
51:57:aa:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:20 2025 by rpki-client