Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/k7DjoSR4sluXwH_ePF6d-yQL3T8.roa
File: k7DjoSR4sluXwH_ePF6d-yQL3T8.roa (raw, json)
Hash identifier: rui+F2Po/qBLWaiyHfqHnH84VeXBpDIsO+rj/SsbOII=
Subject key identifier: 93:B0:E3:A1:24:78:B2:5B:97:C0:7F:DE:3C:5E:9D:FB:24:0B:DD:3F
Certificate issuer: /CN=12a657f3424c8dd55215af853b93307c366c538a
Certificate serial: 01874E19029D91DBD30850E3064499E72AD5
Authority key identifier: 12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/k7DjoSR4sluXwH_ePF6d-yQL3T8.roa
Signing time: Tue 04 Apr 2023 21:07:54 +0000
ROA not before: Tue 04 Apr 2023 21:07:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211995
IP address blocks: 93.114.130.0/24 maxlen: 24
185.136.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:19:02:9d:91:db:d3:08:50:e3:06:44:99:e7:2a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12a657f3424c8dd55215af853b93307c366c538a
Validity
Not Before: Apr 4 21:07:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93b0e3a12478b25b97c07fde3c5e9dfb240bdd3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:7d:c7:87:e0:00:c1:26:de:0e:2f:cb:dc:
fd:1a:bc:87:53:5e:d4:45:d1:97:be:15:68:16:76:
0f:eb:6f:10:d2:78:24:31:c1:cc:e6:38:34:bc:ec:
e4:1d:c8:13:5d:07:ec:05:b1:15:66:de:0f:1e:57:
d6:b5:bd:f7:78:66:9d:00:02:d8:30:1c:2c:f3:bd:
7b:a5:05:35:68:4d:03:30:7b:2d:25:db:ec:0c:09:
93:18:f1:84:0f:30:e1:9c:50:e8:14:43:ef:15:48:
75:8a:28:54:46:ef:36:c1:42:5d:65:28:d2:f6:b0:
15:48:6e:f2:da:40:1f:07:21:7a:ec:9f:f6:4a:c9:
19:97:e2:20:47:57:2a:e3:98:87:c7:b2:d5:1d:b4:
fa:ef:70:9b:58:15:19:62:11:d2:a0:12:4e:28:20:
b8:4b:d0:9a:b7:e2:51:dc:52:aa:6d:db:e9:4c:ae:
63:a8:eb:31:1c:85:5f:36:80:3c:25:c2:09:a5:e1:
27:c9:dd:eb:00:fa:06:9c:ee:38:20:8c:48:4c:9c:
33:55:96:8f:5d:d3:2e:8c:ec:05:0c:c6:ab:bb:4b:
e0:64:30:c7:d9:48:4b:8c:fb:08:a1:5f:d3:47:70:
9c:92:f7:03:d9:bb:90:c1:f0:48:a1:ac:52:ac:20:
62:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B0:E3:A1:24:78:B2:5B:97:C0:7F:DE:3C:5E:9D:FB:24:0B:DD:3F
X509v3 Authority Key Identifier:
keyid:12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/k7DjoSR4sluXwH_ePF6d-yQL3T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/EqZX80JMjdVSFa-FO5MwfDZsU4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.130.0/24
185.136.207.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1d:a6:6d:f9:e5:01:c5:2d:c1:83:b0:35:85:15:68:66:fa:
0e:ef:91:2d:04:23:29:b1:ef:1b:a7:8b:b5:74:31:73:16:db:
74:4d:5c:eb:2d:f3:bc:15:32:b9:a4:18:3a:0a:4c:00:39:0f:
d2:66:e8:9c:03:75:f5:b3:74:0d:92:a4:e5:19:71:03:e1:43:
e4:84:0a:f6:62:10:44:50:59:09:73:f6:36:02:40:ff:62:6d:
20:d7:0a:f3:82:57:e4:88:c5:76:dc:4c:f9:88:21:a0:82:f7:
7e:a3:35:02:e1:45:fa:9c:75:21:24:8b:b2:07:ff:37:e0:c9:
62:76:d2:de:d3:ac:2e:dc:34:8e:fc:6a:ea:af:48:47:9e:21:
62:a3:fd:77:32:9f:fd:8a:06:3b:0f:cf:52:17:e4:c1:00:7b:
1d:f2:85:ca:7a:31:e3:3d:43:f0:81:42:c3:14:a4:b2:1f:aa:
5d:65:85:60:27:41:6e:78:5e:a3:d8:81:05:1d:ac:18:17:8f:
33:40:b6:9c:28:f7:cb:c2:95:b9:e7:d8:1b:0d:af:48:5b:f4:
c5:1f:ed:bc:53:36:19:04:62:20:c6:d7:0d:15:b1:cc:a5:b5:
05:82:4d:e0:1b:8b:b3:9b:ce:e8:0f:be:1e:d7:b0:36:e6:bd:
19:02:d0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:44:46 2025 by rpki-client