Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/07Aj-dCupWWxS3k6NvC6ow2z--Q.roa
File: 07Aj-dCupWWxS3k6NvC6ow2z--Q.roa (raw, json)
Hash identifier: Wvakj3Qq+8bOgAEDa4P4ImokRpnsW5+ux6t0F7Wl6VA=
Subject key identifier: D3:B0:23:F9:D0:AE:A5:65:B1:4B:79:3A:36:F0:BA:A3:0D:B3:FB:E4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2830C20A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/07Aj-dCupWWxS3k6NvC6ow2z--Q.roa
Signing time: Sat 01 Jan 2022 16:09:49 +0000
ROA not before: Sat 01 Jan 2022 16:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204619
IP address blocks: 93.171.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674284042 (0x2830c20a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3b023f9d0aea565b14b793a36f0baa30db3fbe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ed:48:ce:81:2e:5a:d7:5c:58:57:6a:7c:77:
2c:3c:40:a6:5b:8d:0b:07:6d:96:a7:28:b7:2f:74:
5b:69:ef:2d:46:9a:fa:9a:11:42:32:b7:f7:75:ef:
d9:97:0b:b0:23:01:d5:a1:2a:6e:77:41:17:0f:66:
41:0f:89:b7:d6:1f:39:fb:40:0a:ff:c4:77:c1:80:
ec:92:6e:d0:e1:fa:a7:56:15:96:58:eb:07:5f:1e:
a5:64:a0:9f:ef:5d:cd:d5:07:b8:63:15:ab:98:b0:
85:7c:69:23:4d:6c:7e:4c:12:15:e4:fd:2a:8c:ca:
bd:2f:1b:28:26:dd:91:c1:e7:2c:71:4f:fd:bc:02:
5c:df:11:7b:39:18:f4:1c:80:dd:80:80:61:b6:a6:
7a:56:a6:14:f3:51:d0:bd:4e:05:d5:b5:43:37:c5:
3d:54:62:f1:f7:dc:1a:2e:de:42:b2:c1:e2:85:2a:
7e:bc:49:ff:6e:04:93:36:52:c9:44:0e:c3:83:37:
b6:2e:67:05:b1:fa:a9:f1:6f:2f:20:54:5c:c5:6b:
2e:a8:5c:53:e6:b4:d2:ec:28:bd:63:c6:2d:30:3d:
f8:2d:62:fa:eb:a0:8c:6f:3f:de:22:d0:0d:7b:d8:
1e:15:87:23:ea:f8:fb:69:e8:63:e6:97:b2:98:2a:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B0:23:F9:D0:AE:A5:65:B1:4B:79:3A:36:F0:BA:A3:0D:B3:FB:E4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/07Aj-dCupWWxS3k6NvC6ow2z--Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:47:da:4c:5c:e9:e2:11:a5:53:e8:49:18:92:7e:82:01:56:
8f:6e:ef:f5:7f:d9:f0:1e:73:22:f6:79:a4:57:de:05:d5:47:
5f:39:76:bc:14:aa:b3:99:81:e3:8b:07:2d:68:bf:83:34:22:
b4:2c:f8:b5:67:1e:b5:82:75:12:9b:b9:3f:e5:44:fd:dc:2d:
2a:44:a2:4e:61:75:ab:8b:37:ac:e7:21:93:c8:6d:8c:fd:29:
d7:51:0f:ec:27:39:56:89:7a:66:fd:de:43:da:54:f8:fe:08:
da:37:ec:7d:d5:7d:d0:46:b8:5e:e3:81:d4:bb:44:6c:d3:5d:
88:57:df:c7:f9:ee:1a:17:f2:bc:91:b1:8c:89:97:b2:25:e4:
0c:4f:13:ea:0c:94:ec:b0:ad:3a:2d:03:2a:4c:7a:05:17:19:
d4:e8:48:79:a3:67:8b:f9:fd:eb:73:65:55:62:bd:6c:a5:24:
8a:b8:90:d8:e1:d2:f9:04:cb:0b:ee:04:90:52:fb:0f:0a:ee:
42:53:2b:b7:fe:b4:e6:27:ff:e7:b0:19:d2:2e:21:a9:80:06:
5f:4d:bd:57:f0:84:61:8c:ce:ea:06:99:dd:51:2c:a2:13:b6:
37:99:4d:32:49:e6:34:ba:47:a2:39:70:fe:01:c8:45:40:8d:
66:10:d7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:38 2025 by rpki-client