Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/J_orVpMwgLeNMMcqrU8snjcRRno.roa
File: J_orVpMwgLeNMMcqrU8snjcRRno.roa (raw, json)
Hash identifier: Du3bd0QQkxfcB+oEnRZnMhFaDr398C4+RtF3tP1Dr+k=
Subject key identifier: 27:FA:2B:56:93:30:80:B7:8D:30:C7:2A:AD:4F:2C:9E:37:11:46:7A
Certificate issuer: /CN=7beef5e16c1467da7a02f19237653ae42b109652
Certificate serial: 07A77EDC
Authority key identifier: 7B:EE:F5:E1:6C:14:67:DA:7A:02:F1:92:37:65:3A:E4:2B:10:96:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-714WwUZ9p6AvGSN2U65CsQllI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/J_orVpMwgLeNMMcqrU8snjcRRno.roa
Signing time: Sat 01 Jan 2022 03:58:48 +0000
ROA not before: Sat 01 Jan 2022 03:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205890
IP address blocks: 91.207.94.0/23 maxlen: 23
91.196.144.0/22 maxlen: 22
91.207.72.0/23 maxlen: 23
2a0a:de40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128417500 (0x7a77edc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7beef5e16c1467da7a02f19237653ae42b109652
Validity
Not Before: Jan 1 03:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27fa2b56933080b78d30c72aad4f2c9e3711467a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ce:a9:c6:02:ce:ce:6f:03:e4:72:e1:1b:fb:
4b:44:1b:ff:6f:e9:76:e1:5e:61:ed:a9:bb:02:85:
78:14:8a:7b:30:c1:66:14:4e:a1:f7:dd:a1:be:51:
db:64:0b:28:06:65:15:12:d7:3c:4c:50:ed:52:93:
4f:63:5e:6f:61:1d:1b:2f:55:7d:02:9c:b6:b7:51:
d8:d8:5d:4a:64:c5:9c:bc:e2:2a:cc:c7:97:c0:0b:
a1:c9:73:ee:b2:af:1f:bb:a4:20:03:03:e1:fc:00:
d7:4a:2a:01:4b:20:0f:29:dd:ab:da:be:d7:db:02:
40:83:4a:36:43:9d:10:a3:5e:c5:72:e8:b8:28:b6:
58:18:0f:0a:aa:b4:75:5b:e6:b1:0c:4e:5f:8b:69:
c1:26:0c:20:e7:f2:1e:95:6a:9b:52:20:c2:74:72:
e4:0a:95:57:99:cb:20:c2:f3:6d:a5:55:0f:50:ee:
35:83:3f:9d:3d:eb:76:8a:29:fa:a1:d5:2a:26:0f:
63:cd:dc:6f:62:07:08:59:f5:f6:e3:f5:6f:e8:5d:
29:46:37:d4:ac:cd:1b:be:c9:96:d9:0d:75:c7:9c:
d1:94:31:4b:fd:68:64:5e:ff:62:f0:16:19:68:f3:
96:78:55:45:48:7b:f3:d4:0b:25:b3:26:61:f5:bc:
55:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FA:2B:56:93:30:80:B7:8D:30:C7:2A:AD:4F:2C:9E:37:11:46:7A
X509v3 Authority Key Identifier:
keyid:7B:EE:F5:E1:6C:14:67:DA:7A:02:F1:92:37:65:3A:E4:2B:10:96:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-714WwUZ9p6AvGSN2U65CsQllI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/J_orVpMwgLeNMMcqrU8snjcRRno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a2b983-5538-485e-b10f-17a69b702e1b/1/e-714WwUZ9p6AvGSN2U65CsQllI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.144.0/22
91.207.72.0/23
91.207.94.0/23
IPv6:
2a0a:de40::/32
Signature Algorithm: sha256WithRSAEncryption
2c:e1:08:55:63:3c:0f:48:c0:de:4d:8f:18:5d:bc:d6:16:88:
49:17:d1:72:51:ce:ee:d0:75:ac:77:f3:97:7f:e3:25:c8:f5:
8b:a4:0c:38:37:10:45:d1:f9:e4:b9:00:2a:39:96:9d:44:a8:
2b:d9:64:6d:74:fe:e2:c4:1e:5b:ff:64:40:e9:77:1e:78:9b:
e2:7a:6b:ef:1a:fb:c8:b8:39:4d:57:bf:af:69:12:63:16:69:
44:3c:24:ee:29:4a:80:e3:0c:45:8a:f0:50:75:0a:66:2e:37:
f5:70:1e:42:ab:0a:d2:67:16:45:aa:8a:ba:b1:00:7f:92:3d:
8b:16:b3:7e:fa:c1:04:c4:31:eb:cd:b2:37:62:81:8f:04:b9:
06:d1:87:7d:40:bd:3b:85:80:6e:fa:38:6b:d5:37:c0:ef:ee:
ac:35:08:8d:c3:cc:82:fb:32:7f:71:f2:1d:4a:2d:6f:c4:74:
00:34:47:3d:f6:ae:a4:20:8e:45:87:68:97:b5:4b:36:4e:4f:
82:a9:25:04:19:cf:a3:36:3c:d8:d4:8a:83:06:94:9f:5e:0a:
5b:64:4a:63:ac:7d:2e:d1:98:34:2a:69:56:e9:55:49:a7:90:
60:34:e5:e8:d3:62:d8:c2:19:06:d4:10:74:22:a3:6a:bb:92:
3f:1a:08:9b
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEB6d+3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YmVlZjVlMTZjMTQ2N2RhN2EwMmYxOTIzNzY1M2FlNDJiMTA5NjUyMB4XDTIyMDEw
MTAzNTg0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjdmYTJiNTY5MzMw
ODBiNzhkMzBjNzJhYWQ0ZjJjOWUzNzExNDY3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALzOqcYCzs5vA+Ry4Rv7S0Qb/2/pduFeYe2puwKFeBSKezDB
ZhROoffdob5R22QLKAZlFRLXPExQ7VKTT2Neb2EdGy9VfQKctrdR2NhdSmTFnLzi
KszHl8ALoclz7rKvH7ukIAMD4fwA10oqAUsgDyndq9q+19sCQINKNkOdEKNexXLo
uCi2WBgPCqq0dVvmsQxOX4tpwSYMIOfyHpVqm1IgwnRy5AqVV5nLIMLzbaVVD1Du
NYM/nT3rdoop+qHVKiYPY83cb2IHCFn19uP1b+hdKUY31KzNG77JltkNdcec0ZQx
S/1oZF7/YvAWGWjzlnhVRUh789QLJbMmYfW8VZECAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBQn+itWkzCAt40wxyqtTyyeNxFGejAfBgNVHSMEGDAWgBR77vXhbBRn2noC
8ZI3ZTrkKxCWUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2UtNzE0V3dVWjlwNkF2R1NOMlU2NUNzUWxsSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvYTJiOTgzLTU1MzgtNDg1ZS1iMTBmLTE3YTY5YjcwMmUxYi8x
L0pfb3JWcE13Z0xlTk1NY3FyVThzbmpjUlJuby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
YTJiOTgzLTU1MzgtNDg1ZS1iMTBmLTE3YTY5YjcwMmUxYi8xL2UtNzE0V3dVWjlw
NkF2R1NOMlU2NUNzUWxsSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEAlvEkAMEAVvPSAMEAVvPXjANBAIA
AjAHAwUAKgreQDANBgkqhkiG9w0BAQsFAAOCAQEALOEIVWM8D0jA3k2PGF281haI
SRfRclHO7tB1rHfzl3/jJcj1i6QMODcQRdH55LkAKjmWnUSoK9lkbXT+4sQeW/9k
QOl3Hnib4npr7xr7yLg5TVe/r2kSYxZpRDwk7ilKgOMMRYrwUHUKZi439XAeQqsK
0mcWRaqKurEAf5I9ixazfvrBBMQx682yN2KBjwS5BtGHfUC9O4WAbvo4a9U3wO/u
rDUIjcPMgvsyf3HyHUotb8R0ADRHPfaupCCORYdol7VLNk5PgqklBBnPozY82NSK
gwaUn14KW2RKY6x9LtGYNCppVulVSaeQYDTl6NNi2MIZBtQQdCKjaruSPxoImw==
-----END CERTIFICATE-----
Generated at Tue Apr 22 19:21:34 2025 by rpki-client