Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/bf4a44-bb8a-4651-a0aa-38d292d0f7ec/1/KWBlUJtX9mLLS9uJK3ADxzYlzXs.roa
File: KWBlUJtX9mLLS9uJK3ADxzYlzXs.roa (raw, json)
Hash identifier: WMKj+VmQSVRE5dttOEVWJV/xrOSy4SaxAqCGCex17iE=
Subject key identifier: 29:60:65:50:9B:57:F6:62:CB:4B:DB:89:2B:70:03:C7:36:25:CD:7B
Certificate issuer: /CN=c1e3a44ae8cf0243f1dffe2684e3dd5a8fc85d79
Certificate serial: 04BF9EA4
Authority key identifier: C1:E3:A4:4A:E8:CF:02:43:F1:DF:FE:26:84:E3:DD:5A:8F:C8:5D:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/weOkSujPAkPx3_4mhOPdWo_IXXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/bf4a44-bb8a-4651-a0aa-38d292d0f7ec/1/KWBlUJtX9mLLS9uJK3ADxzYlzXs.roa
Signing time: Sat 01 Jan 2022 00:58:02 +0000
ROA not before: Sat 01 Jan 2022 00:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202240
IP address blocks: 79.98.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79666852 (0x4bf9ea4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1e3a44ae8cf0243f1dffe2684e3dd5a8fc85d79
Validity
Not Before: Jan 1 00:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=296065509b57f662cb4bdb892b7003c73625cd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e2:12:d2:8f:d4:1b:75:57:d5:47:6c:d1:1b:
86:95:30:30:83:ed:2b:e2:c1:ed:8d:b3:6f:68:bd:
aa:25:b3:5a:f9:5d:bb:bf:dd:9d:1d:a9:2d:f6:1c:
cc:dc:75:74:30:99:9a:5f:5b:a1:3d:59:6d:76:1e:
39:2f:37:b4:b7:fe:51:9f:10:4e:88:c9:a3:94:8f:
2e:ec:e1:16:d1:8f:48:d1:5e:6b:06:e0:61:3f:11:
70:da:8c:d6:b1:d2:c6:a5:a1:43:e6:20:bb:1c:fa:
73:23:8e:5d:a7:cb:16:a9:77:31:56:eb:84:16:b1:
72:fc:86:a2:61:61:e3:39:16:fa:4f:e5:4c:25:b1:
b1:a8:24:a6:e9:13:a0:3b:dd:8a:d7:90:95:03:f2:
13:a1:91:72:16:06:7f:bf:8f:b3:f2:66:4a:35:02:
0a:4a:07:c2:eb:06:a5:da:75:a1:f3:91:a8:3a:00:
3e:3c:5d:80:15:8a:ae:68:05:b4:52:4a:39:1e:1f:
a2:c0:a2:44:00:da:bb:d2:f7:2b:46:77:82:5d:fa:
40:2f:8c:76:ff:de:c6:38:59:72:f7:ff:7e:58:6c:
38:87:08:7b:16:e0:30:44:9a:f1:58:bd:a9:52:6b:
b6:2c:de:53:5a:0f:7c:8d:80:eb:fb:5b:69:38:26:
ce:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:60:65:50:9B:57:F6:62:CB:4B:DB:89:2B:70:03:C7:36:25:CD:7B
X509v3 Authority Key Identifier:
keyid:C1:E3:A4:4A:E8:CF:02:43:F1:DF:FE:26:84:E3:DD:5A:8F:C8:5D:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/weOkSujPAkPx3_4mhOPdWo_IXXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/bf4a44-bb8a-4651-a0aa-38d292d0f7ec/1/KWBlUJtX9mLLS9uJK3ADxzYlzXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/bf4a44-bb8a-4651-a0aa-38d292d0f7ec/1/weOkSujPAkPx3_4mhOPdWo_IXXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.188.0/22
Signature Algorithm: sha256WithRSAEncryption
54:1b:b5:f9:1c:83:0d:22:37:f4:04:56:8c:d2:21:e2:dd:88:
b0:67:05:91:94:14:02:9b:3f:b7:3f:9b:bb:1b:f9:5d:d2:be:
61:5c:a4:09:f6:c4:28:f8:16:d7:a7:f2:39:39:c8:34:83:b1:
d4:35:74:81:1f:94:f1:ce:07:17:55:4b:5c:fd:ac:99:67:d5:
6a:ce:a8:44:e5:77:64:61:ff:a7:83:d3:db:49:c8:3d:22:69:
b6:e5:6b:c7:ef:73:eb:e5:11:55:3e:44:2d:de:18:0e:df:3e:
2c:27:30:4c:4f:ca:03:c9:b6:4d:f6:3c:40:90:92:9b:2a:b7:
30:ec:9b:5f:05:93:26:6f:be:ea:81:5f:8e:b3:2e:c2:cf:79:
b1:0d:b9:c4:c0:b0:39:9f:ed:69:36:05:83:47:88:cf:93:13:
f0:20:cc:bb:a4:37:45:0d:1e:56:82:24:e1:72:21:3e:2a:92:
de:52:df:d4:a7:54:66:c6:3f:9d:da:ef:21:2b:90:9f:83:8a:
62:7d:64:85:06:8d:ff:df:49:28:7b:86:95:1d:b2:fa:53:48:
96:41:09:96:81:d1:06:39:67:cb:b8:9e:ab:6e:81:fc:51:e0:
a5:46:d8:ba:10:21:86:93:84:7c:7c:cd:a2:86:48:f2:71:84:
5b:41:32:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 17:12:43 2025 by rpki-client