Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WrBqeOcsGuUX6f5kjZYY_qOtz8g.roa
File: WrBqeOcsGuUX6f5kjZYY_qOtz8g.roa (raw, json)
Hash identifier: rBOV2+pmV/ZfaeHiX9IKmOqr2WapwYR3dTFQq036XzM=
Subject key identifier: 5A:B0:6A:78:E7:2C:1A:E5:17:E9:FE:64:8D:96:18:FE:A3:AD:CF:C8
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841936B404DCED05630F6AB2025AE8F054
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WrBqeOcsGuUX6f5kjZYY_qOtz8g.roa
Signing time: Thu 27 Oct 2022 11:32:06 +0000
ROA not before: Thu 27 Oct 2022 11:32:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202768
IP address blocks: 91.107.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:36:b4:04:dc:ed:05:63:0f:6a:b2:02:5a:e8:f0:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 27 11:32:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ab06a78e72c1ae517e9fe648d9618fea3adcfc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:56:c1:0b:ec:0a:e3:fe:3f:7e:bb:25:55:59:
8d:15:e6:c4:67:99:00:dd:99:4c:8a:c2:03:52:b7:
e3:c3:05:79:d4:54:de:00:06:5d:63:d5:04:e4:5d:
bb:62:d3:d8:31:35:3c:6b:04:8c:d4:a4:ba:4e:0a:
24:35:e2:04:94:f2:d0:1d:07:73:77:31:f8:d2:59:
21:0d:95:21:8f:f8:82:98:fe:5c:ca:bc:64:43:a9:
72:3a:b0:3d:95:e4:fe:c9:00:77:dc:94:bf:cf:be:
0e:c6:4c:8f:e6:62:52:fd:7c:45:78:8e:0e:5b:36:
ef:61:02:71:5b:07:27:95:8d:a5:3a:8b:fa:53:dc:
ef:5c:8c:df:23:45:fc:a9:7b:4e:0c:c6:f0:39:6f:
3a:0a:75:58:c9:00:e1:2f:e7:fc:22:f7:eb:12:ca:
25:f9:6e:d9:7b:dc:3d:0c:d3:e4:8c:21:aa:07:18:
81:8b:1b:5d:e2:c1:f5:d7:3a:e3:2b:f0:18:0d:26:
1d:97:08:12:6c:77:3f:00:b4:1b:52:06:ef:e8:36:
9f:b7:d8:3e:66:1c:0a:bb:96:6f:72:9d:3b:cb:97:
96:f3:a5:45:2a:d5:68:fc:95:1f:d0:d6:3f:09:61:
68:e0:50:c3:bd:1e:3b:33:7a:81:e7:ab:1e:5b:70:
ab:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B0:6A:78:E7:2C:1A:E5:17:E9:FE:64:8D:96:18:FE:A3:AD:CF:C8
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/WrBqeOcsGuUX6f5kjZYY_qOtz8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.107.115.0/24
Signature Algorithm: sha256WithRSAEncryption
52:01:56:92:7a:45:60:3c:d8:75:2c:2f:0b:4a:50:51:3d:5d:
00:e8:a5:d0:37:c1:56:8f:39:5c:78:21:e8:d7:20:1d:10:6f:
26:7b:75:8e:f9:28:06:e8:41:6a:23:84:da:c7:65:4d:eb:f5:
be:99:67:7b:8d:3d:c3:ac:b6:81:40:b8:af:d2:ef:19:4f:9b:
30:ee:2f:a3:a4:5d:f1:62:d0:93:42:11:5d:10:75:66:21:20:
3c:3a:bf:f5:18:8d:78:b5:af:fd:9d:53:36:37:12:86:71:5f:
94:e5:c7:09:4f:dc:d3:50:8a:17:04:8c:70:92:a1:53:08:b1:
e7:54:0d:09:20:bb:87:aa:c0:cd:01:b1:32:ce:14:3b:c9:1e:
6a:8d:ba:5b:ae:e6:9d:bd:d8:71:d9:3f:4a:e2:0f:99:84:e0:
dc:ca:5c:cd:e6:2d:1b:94:7e:c9:e1:4f:2d:12:25:0a:d6:be:
c1:4e:e1:f3:6d:6d:07:fc:e1:d0:70:da:43:04:07:71:c3:29:
4c:86:48:4f:fd:d8:28:a9:a9:d3:47:a2:f8:1e:06:7c:15:cc:
9d:e8:e1:ff:7f:a3:ff:f7:a7:45:1b:46:be:50:e8:6d:2b:85:
c7:6b:1c:17:9b:27:83:59:2b:9b:16:c1:80:ba:41:8f:68:2c:
fb:b0:f3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:25:52 2025 by rpki-client