Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/9vJuuq4193CstcCmPe8kfniI52s.roa
File: 9vJuuq4193CstcCmPe8kfniI52s.roa (raw, json)
Hash identifier: zouGxqpepTy8Y4/+s9twKxcqYbEfL+Tr1IhewtWNYj0=
Subject key identifier: F6:F2:6E:BA:AE:35:F7:70:AC:B5:C0:A6:3D:EF:24:7E:78:88:E7:6B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27617FBA
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/9vJuuq4193CstcCmPe8kfniI52s.roa
Signing time: Sat 01 Jan 2022 16:07:53 +0000
ROA not before: Sat 01 Jan 2022 16:07:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21140
IP address blocks: 93.171.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660701114 (0x27617fba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6f26ebaae35f770acb5c0a63def247e7888e76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:b5:2c:ea:fe:db:8b:f6:c1:22:40:b8:b8:
0e:f8:b8:4d:f0:3d:8e:e4:ca:4e:f6:1f:7b:2e:af:
33:5b:18:f2:96:74:fa:35:22:5f:91:cc:08:75:ab:
1b:66:2d:df:c4:c0:33:66:ab:e7:15:fc:a3:ac:4f:
fa:6f:da:a5:12:a0:e0:54:8b:1f:4f:70:99:a9:60:
fc:e7:f1:99:4e:1d:cf:16:fb:f4:bb:84:83:1f:db:
56:9a:c7:89:41:2d:c9:6e:7a:02:61:f0:32:2c:4f:
24:e7:c8:a8:86:ad:38:53:32:4b:f9:b2:ff:57:12:
64:fd:d6:eb:be:10:2b:3b:e4:97:35:ac:dc:98:d2:
71:58:08:11:e7:e5:18:26:a2:69:34:a8:30:e9:57:
84:db:c9:59:1b:f4:5a:10:05:8a:ff:78:1b:03:bf:
1a:3c:fd:0b:fd:cf:96:eb:2f:8a:41:68:54:e3:ed:
3a:57:0c:69:9a:56:41:46:cb:20:aa:db:29:ab:81:
13:3d:9f:6a:af:78:cd:a7:d0:8b:5c:53:40:66:46:
83:e1:f8:6d:22:3f:b5:04:d1:b2:b2:db:b8:de:a4:
21:ac:fa:a9:ff:1a:08:93:d2:dc:cc:d7:b6:a4:eb:
6a:d6:09:8e:1c:eb:e0:6a:1e:da:13:4a:2c:16:a1:
fd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F2:6E:BA:AE:35:F7:70:AC:B5:C0:A6:3D:EF:24:7E:78:88:E7:6B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/9vJuuq4193CstcCmPe8kfniI52s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.142.0/24
Signature Algorithm: sha256WithRSAEncryption
16:80:14:0e:38:e7:6c:ce:13:08:96:a1:f2:70:9e:0f:01:dc:
6f:0d:45:39:4c:4a:42:ad:7b:7c:0e:ce:b9:65:26:73:8e:7c:
11:a5:f9:db:09:c4:3f:8a:d2:0d:69:77:86:48:ff:cf:1a:3b:
94:71:6c:1b:ee:b1:02:03:e5:e2:96:56:56:67:df:1a:ac:d4:
a2:ce:df:c0:12:e6:2e:c7:a3:5c:c8:ee:75:bc:f1:7d:20:07:
b4:02:17:8d:ed:14:16:9d:6d:ed:b8:b2:ac:12:81:2d:9b:a9:
91:65:80:77:11:d3:b8:03:4b:6c:e9:b7:e5:9c:e8:ce:97:e0:
ab:24:0f:f3:6e:7e:d7:cd:cd:49:6b:15:1b:fa:53:cb:62:f6:
cf:54:5e:2d:93:15:71:8d:1e:0c:b6:67:4d:80:7a:8a:46:e3:
63:0b:e5:55:12:d1:33:f8:80:d9:84:a4:c0:e5:75:fe:ce:3e:
7e:b6:22:73:3e:f5:04:6a:b9:52:8f:f6:55:cf:00:a7:04:87:
78:92:03:6b:fc:ed:b3:fb:29:58:33:59:20:ab:a9:b3:75:73:
24:4c:fc:4f:f4:f5:79:68:2d:29:cf:d2:e4:55:4e:52:2d:d3:
ba:70:51:a7:b3:2a:eb:4d:88:65:81:09:c5:40:0a:99:84:3e:
08:1e:7f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:46:50 2025 by rpki-client