Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3VMkbfCexvpGPygAl8Jf6UhTXPQ.roa
File: 3VMkbfCexvpGPygAl8Jf6UhTXPQ.roa (raw, json)
Hash identifier: 57ZxcFMZSVriRVv6XehC6CLX0Tq2LHttxbPy46dAw3U=
Subject key identifier: DD:53:24:6D:F0:9E:C6:FA:46:3F:28:00:97:C2:5F:E9:48:53:5C:F4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E659FB
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3VMkbfCexvpGPygAl8Jf6UhTXPQ.roa
Signing time: Sat 01 Jan 2022 16:09:05 +0000
ROA not before: Sat 01 Jan 2022 16:09:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59762
IP address blocks: 93.170.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669407739 (0x27e659fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd53246df09ec6fa463f280097c25fe948535cf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:03:35:91:10:72:73:e6:35:0c:1b:31:5e:
5a:45:7c:50:ad:d4:ca:8f:11:40:22:31:22:11:bf:
07:9d:d0:b1:19:16:1d:21:bf:0b:96:d4:c0:5d:0d:
78:23:00:c6:64:c8:83:3d:cf:d7:2a:e3:a2:16:df:
72:b3:56:35:c1:b8:9d:58:3d:22:e7:30:69:e5:45:
d8:a8:fd:1e:70:17:69:42:35:e4:13:86:88:cd:56:
12:1a:f7:b0:dc:bf:1d:fc:7e:5b:ec:9d:78:ce:68:
64:76:75:0b:fd:6e:91:90:0a:b2:a2:c8:54:69:90:
eb:26:3c:f2:b1:bd:fd:96:63:38:3d:8f:44:b3:e3:
d6:53:6f:2f:b5:3d:d5:ab:98:89:26:b1:35:0a:7f:
f6:72:c9:e4:19:2b:02:57:ba:72:cc:02:11:6c:8b:
55:fc:92:66:cf:55:42:2a:ae:9c:ee:ab:32:e3:13:
69:12:70:01:53:05:7d:74:35:c9:3f:32:88:e2:f8:
08:c8:7c:af:7d:9b:8d:87:01:36:a3:cd:3a:1d:7b:
d9:3c:35:56:07:4c:6f:2a:6b:d3:a1:8c:f2:24:6c:
6b:56:86:e0:21:5d:79:d4:d1:c3:7a:bd:23:ba:03:
11:2d:80:c0:a1:cd:5a:8d:96:35:7a:f4:c9:73:fd:
96:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:53:24:6D:F0:9E:C6:FA:46:3F:28:00:97:C2:5F:E9:48:53:5C:F4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3VMkbfCexvpGPygAl8Jf6UhTXPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.97.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ca:5d:9f:6c:d4:a2:9c:fe:31:2e:b8:e3:43:b2:00:47:ac:
b1:b1:af:92:47:10:8c:d2:c1:12:71:af:27:d6:e9:64:b1:04:
1c:e4:d9:52:f6:ae:d0:c7:9b:0a:49:d1:56:73:64:00:2f:d1:
25:ff:0f:5d:f9:7a:b9:b7:b6:73:99:78:30:d2:6a:ca:99:8f:
9f:93:16:57:76:0d:eb:80:a5:bb:9b:ac:c0:3c:4d:23:ac:17:
1e:65:91:f4:0e:4e:4f:34:22:c4:d4:4a:94:0d:bc:d1:2c:2e:
8c:3b:19:63:43:5c:f5:63:34:2b:b3:1d:78:d4:67:b7:e1:da:
6f:29:89:78:fa:70:8a:30:07:24:3d:5d:7a:a5:bb:cb:88:39:
e4:35:40:c8:e0:2b:49:a1:e4:d5:86:fb:d1:b4:9a:d6:a5:6d:
e4:9b:6b:4e:03:e9:07:32:42:71:e1:e3:6d:13:bf:7f:8d:a7:
33:f7:2e:f7:96:60:ae:57:ed:85:e2:8c:c5:45:44:bc:65:b3:
37:43:15:78:1c:c5:e6:2d:cc:5f:38:b4:6c:e8:25:e5:e3:1c:
c7:bd:b2:8b:99:0b:1f:c7:da:55:bc:ab:28:fc:39:47:a0:f2:
56:8a:bb:6e:60:d2:1c:57:a4:c3:fa:cf:1b:a4:e0:47:61:35:
e5:6a:ec:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:52 2025 by rpki-client