Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2Q5F-bQqixrzEHqVRzZknXy7Ymw.roa
File: 2Q5F-bQqixrzEHqVRzZknXy7Ymw.roa (raw, json)
Hash identifier: lbq1NlAzP2XOcC60xSsN5Hv0J4u0HZmWkruW5Egs7Bw=
Subject key identifier: D9:0E:45:F9:B4:2A:8B:1A:F3:10:7A:95:47:36:64:9D:7C:BB:62:6C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28125969
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2Q5F-bQqixrzEHqVRzZknXy7Ymw.roa
Signing time: Sat 01 Jan 2022 16:09:33 +0000
ROA not before: Sat 01 Jan 2022 16:09:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62330
IP address blocks: 93.171.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672291177 (0x28125969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d90e45f9b42a8b1af3107a954736649d7cbb626c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:10:6c:c1:7c:a7:0c:b3:45:53:52:77:1d:
19:ec:5c:7c:f5:32:33:d5:68:77:bb:1f:4e:1e:25:
e1:ab:67:a7:76:32:de:32:38:bb:e2:c1:e1:bb:d5:
8d:3e:d7:c3:99:27:bd:78:de:35:79:be:8f:1b:00:
ed:a1:93:8e:3f:63:72:71:6b:a7:24:44:30:02:cc:
5e:2a:36:cf:c9:8f:93:68:72:44:fd:48:94:59:d0:
49:bb:31:50:96:b8:5f:f9:f2:08:58:ed:09:32:3a:
f9:49:88:fb:cb:c1:d4:a5:dd:d1:59:e3:a5:61:b7:
27:dd:fa:00:aa:84:95:99:7f:c9:15:94:42:2d:bf:
4e:22:08:76:f0:8b:9e:c8:7c:fe:34:11:9b:81:f0:
c0:e7:e2:8f:0d:be:af:96:a8:af:83:87:24:fa:a5:
49:b8:ea:6c:61:78:c9:16:2a:2a:b5:c7:1e:46:9f:
10:33:ce:d5:ff:1b:63:f0:1f:57:6a:35:94:f9:f0:
4f:22:3c:49:c3:63:c7:1b:17:bc:50:4c:2c:d5:e0:
08:88:c8:ed:a1:04:e0:40:0e:d8:34:de:0b:26:ae:
37:41:f0:88:73:8f:9d:f2:f6:9c:5d:35:74:32:80:
08:b2:63:32:82:20:f9:f5:c8:2e:09:95:79:25:09:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0E:45:F9:B4:2A:8B:1A:F3:10:7A:95:47:36:64:9D:7C:BB:62:6C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2Q5F-bQqixrzEHqVRzZknXy7Ymw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.134.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d8:9c:64:ce:da:87:18:d0:e6:21:5c:87:40:00:74:8c:4d:
de:a8:77:8b:96:26:00:cb:b2:1e:8d:5c:f1:18:95:c3:69:4e:
30:38:52:4a:6a:8f:aa:d5:1b:e8:67:c3:a6:81:cf:02:a8:3f:
26:e3:11:d9:7a:a4:05:fb:19:8d:16:02:d6:0f:24:da:45:a8:
0f:6b:61:43:8e:88:1a:97:11:bf:13:c4:20:bf:98:c6:8a:d3:
27:d2:09:3b:78:5e:78:c6:37:bf:30:cd:6e:3d:9a:85:68:d2:
a7:3b:c7:8f:af:0c:f2:2f:75:12:68:f1:36:d3:d6:6f:0c:4c:
2e:57:70:59:ab:16:95:cb:b4:ab:f6:a7:fc:b3:33:2f:52:05:
dd:65:f4:64:1a:13:7e:6e:d7:7c:0d:f7:15:94:09:c2:76:16:
22:35:b8:3f:c0:77:a1:21:2a:9a:dd:2d:b7:1a:13:c9:c4:3c:
57:c0:80:4a:57:23:ef:7d:f5:ab:50:19:fc:c4:92:51:08:5e:
6f:eb:ed:17:75:2e:15:b2:ba:77:26:87:70:4a:e6:88:3c:5a:
e9:de:e6:0e:5f:de:24:2f:5c:ad:11:5c:f2:d5:48:72:1f:e9:
de:55:2a:f2:34:b0:d7:7f:c2:16:97:33:71:1b:de:ff:56:70:
51:34:ad:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:56:12 2025 by rpki-client