Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/tMhs6YgMo4r9gYS5iMb6nNwjjjc.roa
File: tMhs6YgMo4r9gYS5iMb6nNwjjjc.roa (raw, json)
Hash identifier: uzgl214iLI5dPe0pc3qgKom3Y6t/B1btRL/wK8aCqe8=
Subject key identifier: B4:C8:6C:E9:88:0C:A3:8A:FD:81:84:B9:88:C6:FA:9C:DC:23:8E:37
Certificate issuer: /CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Certificate serial: 0A7F9078
Authority key identifier: E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/tMhs6YgMo4r9gYS5iMb6nNwjjjc.roa
Signing time: Sat 01 Jan 2022 06:01:12 +0000
ROA not before: Sat 01 Jan 2022 06:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 93.155.104.0/22 maxlen: 24
2a00:1d30::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176132216 (0xa7f9078)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5fe02f2aa76c402b7d76a114dc7735d5f935b88
Validity
Not Before: Jan 1 06:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4c86ce9880ca38afd8184b988c6fa9cdc238e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:7b:f5:1b:45:51:25:01:da:bd:bc:4b:64:
1b:e7:06:2e:6c:45:97:0f:b3:3c:3f:3b:d7:d9:59:
35:b5:9d:2b:2b:70:fa:b2:cb:d7:f1:5c:72:2f:a3:
b8:d0:a2:73:86:fd:67:75:63:9e:26:ae:ca:98:ae:
e1:3c:00:81:bd:5b:bc:ec:aa:cd:38:28:57:e1:aa:
3c:11:4a:18:49:d3:59:cc:8a:b6:0a:d0:e8:6d:ba:
06:15:d4:c6:ed:05:14:af:73:e2:bf:57:1e:f3:89:
51:0b:48:7d:c9:f7:9f:bb:b2:92:34:ba:8c:fc:7c:
3f:10:7b:2e:25:a2:e3:4e:26:b9:a4:8f:af:d3:07:
62:d0:ed:d1:c6:b9:97:df:d6:01:e3:c4:b8:b7:ef:
87:b8:c8:2b:57:0b:d6:5c:94:85:d3:99:f2:45:a5:
b8:d2:b9:a1:9e:7a:44:99:99:f8:92:d1:ca:e4:0d:
96:48:f8:f7:99:56:17:be:6d:a2:a0:9d:45:8a:c0:
17:35:e6:39:c9:d5:10:33:83:62:7d:6f:07:f0:55:
bd:a6:a0:d3:cb:1f:bc:1a:cb:1f:b5:e5:77:ff:9c:
eb:12:20:72:d2:4e:4d:f3:32:70:12:ba:8a:77:b6:
56:e7:68:ab:97:30:78:69:6b:63:6d:e5:46:1d:ac:
d1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C8:6C:E9:88:0C:A3:8A:FD:81:84:B9:88:C6:FA:9C:DC:23:8E:37
X509v3 Authority Key Identifier:
keyid:E5:FE:02:F2:AA:76:C4:02:B7:D7:6A:11:4D:C7:73:5D:5F:93:5B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f4C8qp2xAK312oRTcdzXV-TW4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/tMhs6YgMo4r9gYS5iMb6nNwjjjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/31c3bd-e35c-481d-8588-fc60fb125573/1/5f4C8qp2xAK312oRTcdzXV-TW4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.155.104.0/22
IPv6:
2a00:1d30::/29
Signature Algorithm: sha256WithRSAEncryption
6a:56:b8:fb:4c:d4:ed:f8:d3:36:09:55:2c:1f:1c:f3:12:cf:
7c:0c:45:7b:e4:d8:74:7f:5d:e6:6c:f7:1f:86:df:4a:c9:25:
f7:76:03:67:12:23:33:72:f3:b7:6a:0f:fe:28:24:61:49:7b:
44:75:1f:e7:52:18:cf:b5:db:08:37:b3:a2:21:ae:6e:b0:22:
12:2e:80:74:1c:e9:9c:9b:0b:38:61:5c:88:cc:4f:42:11:90:
66:0c:a2:1b:0f:79:39:06:0c:38:d0:b1:b9:b3:3e:2a:7a:eb:
39:1d:f4:ef:dd:90:54:7b:36:81:9c:43:54:54:3d:5d:f0:4e:
3a:e8:ce:2b:d0:4e:8f:f5:10:8a:e4:ad:0a:cb:fa:04:e1:77:
a7:b1:49:65:c0:52:a6:22:17:cf:67:19:8c:17:c0:9f:77:a0:
54:e0:77:c5:49:af:12:aa:53:98:f2:ff:43:d9:f4:45:1f:39:
0d:e0:2d:f5:6e:9e:61:c1:b8:82:fa:8e:be:85:2c:cd:68:cd:
87:15:6b:ad:70:16:ba:27:0e:a4:7a:1d:8a:1f:db:0f:a6:a4:
8a:89:46:46:ee:a4:f2:86:9b:37:e3:85:c8:0d:2f:8a:a4:f1:
81:ef:e1:28:56:b5:68:3d:0f:e3:e8:d3:84:99:70:66:0c:7f:
53:92:83:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:31:10 2025 by rpki-client