Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6dLu15RqI0QYM968eKQlwot-GCQ.roa
File: 6dLu15RqI0QYM968eKQlwot-GCQ.roa (raw, json)
Hash identifier: N3uTPYoRvcsjHr9VkhGM3Bo96qrnpPPy6K3elZc1b8g=
Subject key identifier: E9:D2:EE:D7:94:6A:23:44:18:33:DE:BC:78:A4:25:C2:8B:7E:18:24
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27FED78F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6dLu15RqI0QYM968eKQlwot-GCQ.roa
Signing time: Sat 01 Jan 2022 16:09:19 +0000
ROA not before: Sat 01 Jan 2022 16:09:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61308
IP address blocks: 93.170.200.0/21 maxlen: 24
93.171.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671012751 (0x27fed78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9d2eed7946a23441833debc78a425c28b7e1824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f2:65:ec:77:2e:2c:0c:f6:13:5f:dc:1b:cf:
6e:ac:84:9d:16:81:92:81:ad:58:97:3e:4d:f4:be:
c9:94:60:b5:7c:1b:2a:ea:75:86:23:00:92:5c:94:
96:74:0a:cf:19:be:37:95:5d:0f:05:cf:b6:52:eb:
80:f6:77:85:43:aa:8a:90:2d:ab:06:09:28:5a:79:
75:94:17:93:31:c1:4b:ca:e5:3b:90:c3:c9:3f:b2:
7a:ea:3b:43:1c:86:13:ee:a2:6a:27:85:ba:14:05:
55:da:ca:7b:a4:64:12:cc:a9:5d:db:29:ed:53:11:
01:4c:ed:8d:ec:56:06:77:5e:42:2a:1c:8e:38:56:
7b:b7:f8:38:a0:74:84:98:a7:c2:65:e1:d8:5e:8a:
a4:93:0e:ec:39:97:00:76:cf:6f:bd:dd:03:83:b1:
49:7c:0b:42:12:f5:13:d1:d4:71:e1:98:e4:f1:95:
58:02:82:7e:51:43:95:cf:e2:c8:58:c4:a7:98:56:
73:b6:be:5a:fc:cd:19:49:be:7f:d3:28:9a:84:4e:
d1:d4:f8:8a:88:cd:69:80:00:56:ab:92:12:7f:8a:
28:bf:7f:f0:87:92:fe:fc:4a:9f:ef:0a:80:5a:8a:
07:ab:90:a0:55:ed:14:6d:92:08:a7:9b:6e:4e:b2:
3d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D2:EE:D7:94:6A:23:44:18:33:DE:BC:78:A4:25:C2:8B:7E:18:24
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6dLu15RqI0QYM968eKQlwot-GCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.200.0/21
93.171.192.0/21
Signature Algorithm: sha256WithRSAEncryption
32:61:86:b1:fe:e2:8e:5d:e5:7a:a6:0c:3d:88:35:a5:11:71:
1a:90:a5:33:b1:07:59:a3:11:28:56:11:2d:1d:85:31:dc:47:
69:5e:b2:4e:7e:b8:dc:84:e0:bd:5a:ab:4a:13:19:21:ba:17:
b5:d0:8d:d9:c7:3f:f6:b9:45:80:d4:2f:f2:fb:91:f6:f0:b8:
ac:e5:85:1c:9c:ef:39:e6:f8:56:90:45:1f:42:10:d9:c1:39:
dc:8b:d2:ac:29:43:b3:09:ed:61:ac:e0:bb:a0:16:a6:c4:d7:
2d:f8:ff:be:7f:02:e9:bd:ea:9a:14:af:75:5a:e8:4f:df:1b:
3d:06:66:dc:c5:d8:76:db:9a:23:3f:dc:1b:62:59:5a:0a:03:
96:fc:14:44:f4:8d:48:f4:7b:2b:15:41:5f:b7:7c:fd:d1:da:
dc:d7:c9:a4:39:d4:fa:ce:be:e8:a6:51:cc:d1:ca:51:9a:84:
70:72:4c:b5:fe:a2:1f:60:73:8a:78:33:c6:dd:60:61:98:a8:
a5:f1:ee:18:b5:55:3d:90:1e:cc:25:09:8c:85:0d:85:ce:98:
54:41:97:36:d8:aa:44:92:65:42:72:b3:42:e2:47:f3:30:62:
07:a1:5a:3a:ae:3c:db:e8:db:04:38:55:a2:f2:41:56:9c:0e:
24:3c:ae:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:40 2025 by rpki-client