Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3ocI4BEo0HS51-9BMRvQ1VrLdEU.roa
File: 3ocI4BEo0HS51-9BMRvQ1VrLdEU.roa (raw, json)
Hash identifier: sthn5Giiki6QlP/OfRm6JSSNjnq8wvZijy1j2Zane24=
Subject key identifier: DE:87:08:E0:11:28:D0:74:B9:D7:EF:41:31:1B:D0:D5:5A:CB:74:45
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2792FAC6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3ocI4BEo0HS51-9BMRvQ1VrLdEU.roa
Signing time: Sat 01 Jan 2022 16:08:20 +0000
ROA not before: Sat 01 Jan 2022 16:08:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44359
IP address blocks: 93.171.76.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663943878 (0x2792fac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de8708e01128d074b9d7ef41311bd0d55acb7445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:ad:32:4f:74:a7:f2:20:93:7b:6d:63:d9:
b6:8a:01:91:45:92:a9:03:ea:7f:1d:64:39:7d:26:
53:22:da:1e:ee:60:6c:b0:be:c5:14:ff:84:c7:40:
bb:50:14:18:f8:25:3d:4d:d4:1b:a0:37:4a:d9:ca:
83:72:43:57:06:58:9f:76:9e:87:ec:95:d9:a7:4d:
77:cf:08:d8:6e:bc:a5:52:07:86:b5:59:5f:1f:74:
2b:51:a9:b2:38:34:19:db:fc:cf:d4:23:32:cc:39:
79:fb:d0:6f:23:fb:f4:2e:13:3e:34:db:40:99:9b:
81:70:28:fb:2d:4f:82:f3:9d:5a:ca:e4:f6:ed:77:
16:04:5f:80:80:50:52:cc:39:6d:b0:76:8d:0c:d8:
af:1b:5c:1c:f9:74:b5:a2:b5:1f:c8:17:9a:07:1e:
e8:2a:11:57:43:17:32:e6:32:1c:7b:b9:c9:9b:37:
19:be:a6:81:4e:61:d5:09:35:46:01:86:af:6e:6d:
d8:b1:1d:3e:54:31:b4:46:46:59:66:3b:f3:74:4b:
83:11:4e:cb:e0:c3:57:26:a9:7b:6a:df:12:87:ac:
eb:a6:2e:ae:4e:bf:27:fa:6f:ef:42:e2:f5:8c:fa:
ca:de:09:3c:41:53:72:f8:d1:d4:0e:c8:d9:ca:78:
d5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:08:E0:11:28:D0:74:B9:D7:EF:41:31:1B:D0:D5:5A:CB:74:45
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3ocI4BEo0HS51-9BMRvQ1VrLdEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.76.0/23
Signature Algorithm: sha256WithRSAEncryption
96:90:68:61:3f:08:bb:74:95:09:0c:2c:85:5b:57:ff:26:9c:
4d:b5:8f:88:5c:94:34:70:de:69:af:a4:98:cb:9f:a5:9c:dc:
16:d9:58:a0:2f:ec:fb:54:ee:98:88:3d:80:85:2b:e2:5e:ab:
cd:3f:80:93:3a:35:e2:41:fc:4d:88:44:13:59:27:f4:db:b0:
7d:7b:25:70:82:e5:7c:34:b6:51:b7:db:89:bd:0f:7a:66:e4:
54:b7:cb:ad:e2:4b:26:5b:a9:1d:ce:e6:6f:30:f6:7e:82:ab:
59:52:e4:ec:4d:22:28:63:15:91:a4:50:65:c4:eb:f5:b0:5e:
f3:f6:af:fa:7f:6f:cb:09:c1:92:09:b6:3f:35:38:6c:59:c6:
c9:be:70:b9:b7:a1:e2:11:24:8b:30:5d:74:dd:39:fb:7c:c8:
be:d1:8c:59:80:0e:32:23:4f:49:9a:7c:84:0e:8c:25:32:e7:
b6:85:36:01:e6:33:c1:3a:57:52:64:88:24:85:e0:78:27:8b:
8a:04:6e:1b:60:d1:2c:00:b7:b2:93:7c:87:66:e3:ab:c0:9e:
c4:a3:22:cd:70:aa:9c:86:45:1d:70:a5:5b:00:c4:78:86:d8:
d9:3f:50:d6:5c:76:5f:c2:7d:55:3b:28:32:4f:3c:77:7c:54:
2d:ae:19:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:22 2025 by rpki-client