Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D7LuGZyZysAufWmNe7Jn-EHprTc.roa
File: D7LuGZyZysAufWmNe7Jn-EHprTc.roa (raw, json)
Hash identifier: xFwarhsa3u4S8siHrEMRAvuKSgzbB36qfNE/pmleuVw=
Subject key identifier: 0F:B2:EE:19:9C:99:CA:C0:2E:7D:69:8D:7B:B2:67:F8:41:E9:AD:37
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2775A173
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D7LuGZyZysAufWmNe7Jn-EHprTc.roa
Signing time: Sat 01 Jan 2022 16:08:05 +0000
ROA not before: Sat 01 Jan 2022 16:08:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41301
IP address blocks: 93.170.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 662020467 (0x2775a173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fb2ee199c99cac02e7d698d7bb267f841e9ad37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:81:83:28:d3:81:a3:0a:3b:72:16:6b:9f:3a:
88:6d:b7:62:07:38:e3:f6:6e:b6:c3:6d:94:70:32:
6b:18:48:e3:1d:62:93:c0:04:31:38:5b:71:62:11:
53:a4:76:1b:a9:5b:8b:97:d1:4b:92:3c:93:bb:ed:
2f:ad:06:59:51:1d:dd:bf:25:38:fa:bf:57:43:b4:
c5:99:a1:fa:a2:72:88:e0:00:b7:d5:6b:94:e0:2b:
56:ac:78:0c:c8:58:61:9c:59:81:cf:84:01:d8:35:
0c:89:72:de:d9:f7:20:31:4f:cb:98:94:b9:ca:c9:
68:b6:f6:b0:fb:11:3c:40:b7:d8:31:62:7c:96:96:
6f:6b:89:6a:06:55:2c:e4:c8:be:fa:bb:39:d3:09:
0c:05:00:71:aa:60:ec:37:82:66:73:49:eb:90:a5:
ca:e6:3f:58:aa:09:28:da:1c:56:07:f4:09:48:15:
ea:71:28:b4:0a:9c:4d:c4:5c:82:8e:f7:24:2a:2e:
f1:96:bf:c8:35:b3:b3:37:e5:4f:63:26:16:de:73:
9c:14:94:81:4e:44:a9:89:d7:50:8c:3d:69:7c:84:
a7:28:09:54:2b:d1:83:e6:ee:c0:3f:4c:d5:8c:09:
ce:41:10:27:63:0a:f8:9f:22:d3:b1:58:24:3e:33:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B2:EE:19:9C:99:CA:C0:2E:7D:69:8D:7B:B2:67:F8:41:E9:AD:37
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D7LuGZyZysAufWmNe7Jn-EHprTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:f8:09:68:22:d0:5d:23:c7:ad:33:c6:15:58:bf:a5:16:4e:
13:3c:dd:8e:8f:35:5b:28:d3:cd:a9:e5:f2:02:90:41:b7:3c:
61:4d:96:40:dc:cc:a3:0c:bb:28:63:7d:c9:3d:71:a6:82:35:
26:18:36:30:25:b8:83:00:fa:ea:9c:0c:63:cb:9d:1c:ff:92:
62:3e:85:26:12:c9:d4:47:4b:17:52:b9:28:f0:c6:88:5d:13:
8f:4d:ee:1d:36:05:76:13:1a:df:78:69:b0:ab:13:3d:75:4a:
06:e1:29:a5:99:bd:99:82:d5:fc:c4:29:9f:91:bc:22:37:5a:
17:88:86:40:37:d2:7a:b6:51:8a:97:54:20:ab:6c:72:60:ea:
96:a5:2d:1b:fa:cc:51:21:2b:10:e8:0b:ae:c4:c8:cd:78:8e:
5b:83:31:4f:1c:0d:e2:17:b1:2a:25:fa:f1:b6:a2:6a:97:56:
39:9c:f7:a3:e0:72:6d:68:e1:9d:11:72:9a:03:6e:39:a7:5d:
9f:81:d4:9c:d8:03:43:8d:d0:d2:ef:19:76:ff:0e:b9:eb:46:
1f:a9:1d:d7:87:9b:d2:8d:4e:13:29:f9:f3:a2:c2:7a:2a:c1:
15:09:79:7c:85:c4:c9:5d:6d:a9:54:b8:7c:92:13:af:b0:16:
9b:16:c1:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ3WhczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDgwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGZiMmVlMTk5Yzk5
Y2FjMDJlN2Q2OThkN2JiMjY3Zjg0MWU5YWQzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALGBgyjTgaMKO3IWa586iG23Ygc44/ZutsNtlHAyaxhI4x1i
k8AEMThbcWIRU6R2G6lbi5fRS5I8k7vtL60GWVEd3b8lOPq/V0O0xZmh+qJyiOAA
t9VrlOArVqx4DMhYYZxZgc+EAdg1DIly3tn3IDFPy5iUucrJaLb2sPsRPEC32DFi
fJaWb2uJagZVLOTIvvq7OdMJDAUAcapg7DeCZnNJ65ClyuY/WKoJKNocVgf0CUgV
6nEotAqcTcRcgo73JCou8Za/yDWzszflT2MmFt5znBSUgU5EqYnXUIw9aXyEpygJ
VCvRg+buwD9M1YwJzkEQJ2MK+J8i07FYJD4zrg8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQPsu4ZnJnKwC59aY17smf4QemtNzAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0Q3THVHWnlaeXNBdWZXbU5lN0puLUVIcHJUYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2qGDANBgkqhkiG9w0BAQsFAAOC
AQEAnfgJaCLQXSPHrTPGFVi/pRZOEzzdjo81WyjTzanl8gKQQbc8YU2WQNzMowy7
KGN9yT1xpoI1Jhg2MCW4gwD66pwMY8udHP+SYj6FJhLJ1EdLF1K5KPDGiF0Tj03u
HTYFdhMa33hpsKsTPXVKBuEppZm9mYLV/MQpn5G8IjdaF4iGQDfSerZRipdUIKts
cmDqlqUtG/rMUSErEOgLrsTIzXiOW4MxTxwN4hexKiX68baiapdWOZz3o+BybWjh
nRFymgNuOaddn4HUnNgDQ43Q0u8Zdv8OuetGH6kd14eb0o1OEyn586LCeirBFQl5
fIXEyV1tqVS4fJITr7AWmxbB8w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:47 2025 by rpki-client