Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2jgv65cPCOr1MvphljU-SlcUyVk.roa
File: 2jgv65cPCOr1MvphljU-SlcUyVk.roa (raw, json)
Hash identifier: aVkM8RoA3lRhqvHPu/VtuudFOSE/zJo/pTI7vUl5Dz8=
Subject key identifier: DA:38:2F:EB:97:0F:08:EA:F5:32:FA:61:96:35:3E:4A:57:14:C9:59
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709567E138AB45C416839CA40260D9CD
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2jgv65cPCOr1MvphljU-SlcUyVk.roa
Signing time: Mon 02 Jan 2023 03:45:17 +0000
ROA not before: Mon 02 Jan 2023 03:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59826
IP address blocks: 93.171.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:67:e1:38:ab:45:c4:16:83:9c:a4:02:60:d9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da382feb970f08eaf532fa6196353e4a5714c959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:00:93:22:e6:77:a8:72:f6:6a:ef:fc:c7:
da:0f:d7:c1:ca:53:7b:86:c2:0b:5e:be:81:d0:e6:
38:4f:ec:2a:c3:90:bf:af:4d:5f:7d:d9:cc:1c:33:
f8:15:fa:7e:db:c8:2f:76:51:36:16:55:66:6f:53:
d6:f5:97:f7:d3:fc:4e:0d:e6:0d:9a:0b:33:41:c5:
10:ae:5c:96:7b:a1:e5:d8:4a:75:99:a7:93:7e:c4:
05:25:1e:62:cd:9d:f5:cc:bc:65:60:cc:75:a2:4b:
39:82:cd:39:c4:a4:ea:c7:d5:49:3c:dd:af:92:70:
1a:20:be:33:40:81:90:9a:83:92:14:1f:e3:85:2e:
60:cf:ff:34:af:de:09:a1:75:a4:83:31:87:a1:35:
4f:a4:50:dc:f3:5a:73:71:54:71:cc:3c:c4:12:2f:
9e:9f:72:dd:22:68:97:29:4c:13:8c:cb:f0:ca:4f:
04:81:3e:a3:f4:d4:cb:6d:3a:da:d6:8f:05:15:ff:
c0:2c:2f:10:3e:e1:1c:1f:1a:8a:4b:cd:12:e0:63:
a5:94:a7:b6:70:bc:56:b8:27:7b:82:83:7a:9c:27:
b7:2b:b3:6e:78:6e:c3:c0:8f:93:8a:2d:30:a2:ec:
7c:60:7e:1c:6e:f4:c5:9f:6c:a7:cf:d4:48:18:75:
fc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:38:2F:EB:97:0F:08:EA:F5:32:FA:61:96:35:3E:4A:57:14:C9:59
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2jgv65cPCOr1MvphljU-SlcUyVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.172.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:d4:6e:ae:4d:6c:f3:f7:73:b1:2b:73:92:da:55:5e:3e:44:
85:8d:e3:52:36:40:a7:32:b7:aa:c7:a4:99:dc:11:41:f5:ee:
70:3e:94:c7:2f:63:0a:69:ea:1d:e2:ab:32:e0:4c:1b:b6:05:
b9:2f:27:ac:9d:7a:d2:f6:be:30:72:3e:bc:db:ac:19:bb:29:
94:9f:13:2c:a1:a0:8f:5c:4c:34:30:10:29:18:0f:02:00:8c:
9f:f6:16:00:fd:2a:64:7e:91:9b:69:e0:55:af:c5:9e:97:e9:
f9:b6:ae:bf:21:ab:d8:cd:16:1d:a7:2b:80:e4:98:ea:f6:73:
9a:e3:b9:df:27:38:44:f1:b4:ac:59:4e:7e:17:83:ca:30:59:
7b:59:0a:1f:2c:59:12:9a:26:fe:dd:03:ff:94:0a:f0:32:78:
b0:80:d0:ac:d0:4a:cb:9a:b3:56:54:8b:d3:6d:87:24:93:95:
e4:bf:87:b9:e2:fa:f5:c0:d6:af:d5:f0:3b:2d:5a:57:c0:e2:
a1:e2:3e:8b:d0:cb:b6:80:f5:de:a3:a6:c4:eb:cc:43:d5:ef:
f5:85:f3:c0:ac:06:60:b6:a4:3b:79:29:11:9a:f3:1f:fe:9a:
0a:d1:c8:06:c0:80:63:25:ba:75:a4:96:92:5c:87:fc:43:06:
06:11:7d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:13 2025 by rpki-client