Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6mWCQWu58XCB-idLHMqhOe4h7T0.roa
File: 6mWCQWu58XCB-idLHMqhOe4h7T0.roa (raw, json)
Hash identifier: yp6Ao74MsvgWExsLqgKbKH2bj2QGP0AnUjz9xa/UHrw=
Subject key identifier: EA:65:82:41:6B:B9:F1:70:81:FA:27:4B:1C:CA:A1:39:EE:21:ED:3D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27D36BE0
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6mWCQWu58XCB-idLHMqhOe4h7T0.roa
Signing time: Sat 01 Jan 2022 16:08:56 +0000
ROA not before: Sat 01 Jan 2022 16:08:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57712
IP address blocks: 93.171.228.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668167136 (0x27d36be0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea6582416bb9f17081fa274b1ccaa139ee21ed3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5d:ea:d3:06:0c:f5:63:a0:2c:93:bf:ca:ce:
8e:44:ac:b5:e7:9f:f5:4c:7c:24:aa:06:56:f8:59:
27:76:b6:af:d5:6d:26:a4:a5:ac:77:5e:e2:9b:45:
1f:b9:ec:d2:62:99:ed:c0:36:2b:0a:c5:88:e8:f4:
7f:59:6e:5a:22:90:5c:73:11:12:af:f7:79:4b:10:
ce:4d:9d:47:5f:56:4e:0a:ff:df:bb:09:38:c9:09:
2c:b4:c6:34:64:c6:8d:9e:a6:d5:54:e7:4a:87:01:
6e:30:88:94:2e:e5:4c:fd:17:a3:98:d9:e5:a6:1a:
86:fa:1e:82:68:20:ec:ca:e4:68:2e:3f:85:b4:1d:
86:58:32:08:00:48:13:60:c8:92:20:63:c9:d5:cd:
f4:4b:90:54:bd:a4:9c:88:15:44:fa:b9:fb:b9:be:
03:74:fa:04:d3:e5:76:67:45:d5:ca:67:31:fb:d1:
3f:0a:85:62:76:4b:6a:a7:fe:ac:1c:94:53:b7:87:
1a:c3:24:c6:b2:c6:4e:b1:11:10:00:79:e9:95:0b:
1d:7a:b8:ca:06:8a:0a:19:11:15:43:90:f1:14:bf:
24:85:90:89:c6:9a:1d:e1:69:22:7c:29:22:5e:eb:
33:0a:c7:4c:bc:99:40:39:81:87:86:69:4c:94:7f:
d3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:65:82:41:6B:B9:F1:70:81:FA:27:4B:1C:CA:A1:39:EE:21:ED:3D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/6mWCQWu58XCB-idLHMqhOe4h7T0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.228.0/23
Signature Algorithm: sha256WithRSAEncryption
49:ea:e2:b5:f0:df:84:17:5b:b0:04:a2:a6:e7:e1:2d:78:11:
22:f1:1b:89:70:59:8a:cb:94:ca:7b:21:91:be:09:51:73:96:
59:cf:80:8e:5a:7f:4c:20:6d:8d:9a:37:78:97:e7:01:a7:31:
a0:30:56:b9:f2:ad:1a:e1:65:70:b2:c0:1d:cc:da:24:52:ba:
8b:81:82:b5:b8:5b:d8:b7:86:80:43:32:49:9b:60:51:c6:fe:
e3:c0:aa:66:c9:96:40:fd:c4:ce:12:eb:b8:dd:25:fb:5c:7e:
2a:4e:10:13:73:3f:7e:ef:41:13:52:01:e4:aa:6a:61:69:6d:
4c:b5:73:26:6b:cc:67:f8:e1:e3:1e:ac:30:04:2d:a7:50:54:
60:54:a9:89:af:92:ab:70:c2:5e:38:6d:a8:5a:d0:d4:47:b3:
40:6c:dc:e3:14:29:39:dc:fe:e8:00:29:98:55:01:b4:4b:ea:
6f:a6:dc:2e:c4:20:ae:df:6b:a8:aa:cb:9c:ff:22:a3:a5:df:
d5:c2:cf:44:e9:78:03:79:35:2f:47:12:5d:87:57:4d:a6:a8:
74:40:12:a5:27:3a:59:dd:ba:41:41:e6:2a:23:74:80:02:8a:
fe:e3:29:58:27:ae:85:f5:85:74:ec:c8:de:2f:c6:b3:61:ab:
5a:66:8e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:46 2025 by rpki-client