Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/p2Rw_JNoBRQkJ1aUH624w9O3k70.roa
File: p2Rw_JNoBRQkJ1aUH624w9O3k70.roa (raw, json)
Hash identifier: RpTjVwftqdXHb/AcBDIo9RsdtxpRd8qtjc2byVGCIj8=
Subject key identifier: A7:64:70:FC:93:68:05:14:24:27:56:94:1F:AD:B8:C3:D3:B7:93:BD
Certificate issuer: /CN=c2fca944458606b1017e26c3ca17430f7ff924b3
Certificate serial: 4BC2B97F
Authority key identifier: C2:FC:A9:44:45:86:06:B1:01:7E:26:C3:CA:17:43:0F:7F:F9:24:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wvypREWGBrEBfibDyhdDD3_5JLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/p2Rw_JNoBRQkJ1aUH624w9O3k70.roa
Signing time: Sat 01 Jan 2022 09:59:37 +0000
ROA not before: Sat 01 Jan 2022 09:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51988
IP address blocks: 91.220.194.0/24 maxlen: 24
2001:7f8:46::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1271052671 (0x4bc2b97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2fca944458606b1017e26c3ca17430f7ff924b3
Validity
Not Before: Jan 1 09:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a76470fc93680514242756941fadb8c3d3b793bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:99:06:34:e1:c6:00:7c:65:20:a6:4d:b9:65:
65:34:a6:f2:cb:1b:6a:59:ea:4a:f2:b6:c6:18:a6:
e0:7d:5c:b9:7e:49:b2:05:39:67:da:0f:bf:98:42:
d6:24:c0:60:44:ba:83:cb:d7:36:1e:af:98:44:b0:
9a:56:33:4b:cc:7e:ac:1e:37:5b:3d:d9:2e:41:2b:
e9:90:a2:3c:ec:34:dc:7f:fc:fd:03:94:a9:fe:da:
45:63:32:c3:b6:38:60:3e:79:7c:a5:71:d7:c5:3e:
65:36:e3:8e:31:d7:1f:e2:53:9b:3b:ac:da:da:e9:
47:72:ca:37:e1:a4:f8:0c:20:b4:be:27:0b:c4:31:
4d:2f:57:24:20:59:2d:f5:f6:8c:3c:7f:65:fb:ca:
8e:b1:94:3e:d8:89:dd:d9:c0:89:a8:47:3d:84:d1:
ef:a9:f6:d9:1a:f0:99:b8:4b:3c:79:b8:d8:43:27:
6a:3d:e8:99:41:26:94:9a:58:dc:7a:90:27:fb:a2:
c6:68:d0:0d:3f:dd:4b:13:bf:f2:bb:ac:93:c4:6f:
9f:68:32:3d:4f:77:02:8a:47:2e:a9:53:2d:67:16:
e4:15:2d:7a:28:49:c5:ce:5c:6d:65:f8:5f:79:4b:
7a:0b:5e:e0:23:7e:0c:d8:34:99:8c:31:7f:a2:99:
3a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:64:70:FC:93:68:05:14:24:27:56:94:1F:AD:B8:C3:D3:B7:93:BD
X509v3 Authority Key Identifier:
keyid:C2:FC:A9:44:45:86:06:B1:01:7E:26:C3:CA:17:43:0F:7F:F9:24:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wvypREWGBrEBfibDyhdDD3_5JLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/p2Rw_JNoBRQkJ1aUH624w9O3k70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/90033c-5b03-4709-b6d3-a865e189ed8a/1/wvypREWGBrEBfibDyhdDD3_5JLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.194.0/24
IPv6:
2001:7f8:46::/48
Signature Algorithm: sha256WithRSAEncryption
02:2d:96:dc:16:8f:f1:e3:48:9d:c1:18:80:59:b4:e0:93:b9:
35:2f:cd:ee:e2:56:4d:ad:9a:03:49:65:35:cf:67:a5:08:bf:
6a:6e:91:94:56:04:45:12:f4:b6:a2:62:81:10:5f:2e:04:6e:
ec:07:c1:b7:c7:ca:71:03:c9:df:57:63:24:98:3c:99:1a:a3:
f2:90:3e:eb:e0:48:c2:4a:6c:bf:81:66:c0:49:02:7e:10:8f:
56:25:87:96:2f:43:ef:a0:f6:bd:32:c2:fb:7a:17:82:37:0a:
66:b1:72:fa:b2:fc:09:5f:d3:6f:70:d1:ab:76:0e:ac:50:dc:
e8:bc:b9:14:b6:24:8a:32:45:93:4a:c6:cc:81:d4:77:69:a4:
4d:47:ba:37:01:1e:4b:70:ae:da:1c:14:ee:33:66:2f:03:fc:
db:85:c1:86:c2:32:02:4d:9d:f5:68:75:cd:de:c0:d1:f6:0e:
e5:7d:e8:be:91:10:70:a3:3d:34:4c:d4:f3:ca:a4:ed:49:dc:
4c:6a:5c:fc:88:69:eb:6e:0f:41:15:d4:72:82:12:41:d5:bd:
aa:57:63:10:b0:69:c9:68:95:a6:a7:a1:b3:c4:17:1d:a7:59:
bf:4c:72:76:e5:b3:18:9e:13:d4:9c:2f:34:b9:26:a1:04:2b:
a6:c2:50:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:33:32 2025 by rpki-client