Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8FLFpTc6yrU7zHX8HI4BGWkN4GU.roa
File: 8FLFpTc6yrU7zHX8HI4BGWkN4GU.roa (raw, json)
Hash identifier: skOTlqYoIJ3xlhiuas8y6LCGgOA7nDsrJlvM3ZjKpBQ=
Subject key identifier: F0:52:C5:A5:37:3A:CA:B5:3B:CC:75:FC:1C:8E:01:19:69:0D:E0:65
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27D09BFB
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8FLFpTc6yrU7zHX8HI4BGWkN4GU.roa
Signing time: Sat 01 Jan 2022 16:08:55 +0000
ROA not before: Sat 01 Jan 2022 16:08:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57197
IP address blocks: 93.170.90.0/23 maxlen: 24
95.47.122.0/23 maxlen: 24
93.170.44.0/22 maxlen: 24
146.120.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667982843 (0x27d09bfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f052c5a5373acab53bcc75fc1c8e0119690de065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f6:80:ca:95:4e:92:37:89:ab:5d:ef:41:25:
d7:0e:c0:71:7b:cb:f7:91:61:be:9b:4e:7c:83:e3:
b3:9d:dc:ff:f0:1b:a4:1d:0b:86:8e:71:1b:ed:79:
92:fc:75:78:24:5a:73:21:7a:8a:cb:0c:b7:03:d2:
c8:4a:74:16:7d:76:b4:7c:8c:3e:93:a3:60:a3:c9:
8e:de:6e:a9:b1:1c:03:8b:5b:af:b5:88:7f:a8:20:
31:59:c3:ab:a5:a8:3d:c9:81:fc:d4:4d:7f:a6:e7:
71:4f:7b:43:04:45:33:b6:f4:be:e6:c9:ac:cb:f5:
d9:2b:34:b9:43:ff:a2:3c:89:08:f4:05:92:c5:dd:
4a:09:5d:d5:fe:d1:3a:ca:90:36:d6:6a:a6:cf:32:
89:0a:dc:81:9c:8f:eb:5e:c6:0e:4d:d2:1f:d9:b4:
c4:3f:3b:c9:71:42:e5:af:87:c1:07:2b:b9:04:3b:
37:7e:64:b9:a4:1e:aa:fc:a1:31:34:11:a6:a5:91:
64:52:61:95:41:e0:1c:95:ca:e5:60:c1:05:d9:f3:
d9:63:25:6d:61:9a:28:4f:e6:e6:d5:21:c8:e4:83:
84:5b:15:15:58:f0:ca:17:e6:b8:d7:c5:fe:9a:ad:
f2:7e:a7:54:8c:b5:03:20:67:1f:67:e8:cf:6d:6d:
4e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:52:C5:A5:37:3A:CA:B5:3B:CC:75:FC:1C:8E:01:19:69:0D:E0:65
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8FLFpTc6yrU7zHX8HI4BGWkN4GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.44.0/22
93.170.90.0/23
95.47.122.0/23
146.120.244.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:32:93:89:98:5a:e7:c0:9a:7f:b1:3b:65:2c:52:ca:a6:b7:
58:53:7c:be:ca:cd:58:1b:80:24:fa:38:e2:d5:8c:3a:60:ca:
ee:f3:f0:50:f5:2e:c2:43:a1:23:b0:7a:1a:13:b4:88:42:ce:
18:5b:3d:7c:6f:e2:a5:39:81:42:54:bc:5e:56:3a:e2:02:14:
d8:4f:17:bf:1e:4a:e5:7d:ce:87:c8:12:aa:41:aa:a8:a7:cf:
0e:bf:b2:79:3c:66:5a:99:a1:6b:6e:9c:68:e4:74:5c:74:fa:
54:4c:ae:b0:02:b4:ec:4e:17:ee:d9:52:92:84:33:ee:e6:12:
55:39:9d:d1:e3:c1:9a:84:d3:67:72:b6:a7:47:fe:1c:de:76:
08:cc:8e:69:4f:93:f2:9d:c2:d3:f5:07:fb:aa:f5:11:f3:d5:
ee:3a:b8:7d:1c:79:40:6e:ac:45:ec:8f:67:68:be:8f:f4:3a:
83:cd:32:91:69:94:4e:48:14:50:75:f9:94:6f:68:a0:d4:06:
6a:29:35:20:ab:e7:23:6d:2a:db:26:34:4c:8a:41:57:b8:73:
93:b8:52:b1:5f:c6:2f:19:7f:80:a5:58:0e:af:b2:e1:fb:f6:
6d:e5:dc:1a:b8:d6:30:d3:37:2d:40:b2:7b:76:19:07:bb:e1:
40:bf:52:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:24 2025 by rpki-client