Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ESVOyU-PPLDk4QUAcvtlyDpE_6o.roa
File: ESVOyU-PPLDk4QUAcvtlyDpE_6o.roa (raw, json)
Hash identifier: 0bwHrl4NYwrswXlP1aOt+qXYJM3Z1u8rrgp37qeC5iA=
Subject key identifier: 11:25:4E:C9:4F:8F:3C:B0:E4:E1:05:00:72:FB:65:C8:3A:44:FF:AA
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01863557BFFDBFE78B56D6BF65F64AD93178
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ESVOyU-PPLDk4QUAcvtlyDpE_6o.roa
Signing time: Thu 09 Feb 2023 08:43:08 +0000
ROA not before: Thu 09 Feb 2023 08:43:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201591
IP address blocks: 93.171.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:57:bf:fd:bf:e7:8b:56:d6:bf:65:f6:4a:d9:31:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 9 08:43:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11254ec94f8f3cb0e4e1050072fb65c83a44ffaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:82:57:55:7a:07:2e:ab:62:06:a1:1d:dd:
55:77:98:59:6b:87:68:51:c1:3e:9f:13:03:c5:c5:
b0:6f:c9:39:02:1b:fd:a1:d3:a3:26:4c:dc:07:36:
2f:4b:f7:84:cd:85:97:78:97:56:84:5d:78:00:db:
48:e7:dc:ef:9a:3d:01:bd:25:d3:b4:ef:f4:a0:48:
bd:38:82:ff:17:50:9f:ee:92:6b:8f:1a:e6:a2:fc:
c9:82:be:90:40:ed:14:de:d9:fb:84:a2:28:05:01:
8e:22:7d:04:c6:16:0f:b0:64:6c:76:e4:34:97:ca:
ff:7e:ba:ae:fe:ac:ea:bb:f6:91:7f:6a:60:b8:b4:
41:51:95:a1:ea:f8:ae:d4:53:9d:94:c1:f2:39:13:
19:1e:b4:db:3f:ec:c9:08:51:b5:3e:31:e9:d4:58:
81:2d:4e:9c:be:4c:ac:06:ad:ca:f3:50:08:dd:94:
c7:80:26:df:2d:39:48:af:6b:99:81:93:4d:ce:53:
ec:b6:1a:a2:13:f7:bc:21:54:30:a6:24:d4:fb:7e:
d3:c6:24:56:bf:18:fe:3a:28:68:d7:b1:bd:7c:26:
a3:0e:9f:89:8c:83:51:5a:53:a8:e0:62:e6:bd:a6:
3c:2a:ff:22:c7:d0:2d:32:a5:b9:ee:03:77:72:3d:
53:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:25:4E:C9:4F:8F:3C:B0:E4:E1:05:00:72:FB:65:C8:3A:44:FF:AA
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ESVOyU-PPLDk4QUAcvtlyDpE_6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.136.0/24
Signature Algorithm: sha256WithRSAEncryption
43:bd:27:52:b4:54:0e:3a:af:f8:f8:b4:f7:57:e9:cf:08:1e:
76:ef:4e:3c:68:8b:af:c5:d3:83:8b:d9:a6:00:0c:bc:39:f4:
ea:c6:64:3b:c2:3c:1d:4f:fc:04:d2:3a:ce:97:ff:52:ef:8a:
64:c9:cb:50:8a:d3:b7:d5:60:93:13:7c:e7:67:eb:80:4e:ef:
6e:c4:3a:80:2f:f6:07:39:3d:8e:6d:63:df:c1:1c:d2:c9:a3:
7d:be:83:91:a7:bc:65:b4:cc:d0:c8:2d:f8:b9:c4:f8:cc:28:
71:37:69:88:c2:6d:6e:d0:63:6f:b2:3c:17:64:76:59:a3:28:
be:54:33:cb:d6:5d:f1:a8:0c:c3:07:f0:c7:69:3e:c9:5a:b8:
9a:3a:47:bf:c3:ff:2e:65:49:36:86:fd:a8:f2:11:f0:bb:a1:
99:99:49:8c:44:1f:cd:55:2b:a5:9d:1b:64:6c:ae:09:07:f5:
1e:18:fc:30:58:2c:cc:c4:46:e6:63:ad:7f:52:c8:15:aa:ba:
71:9b:94:c5:42:d5:b0:eb:50:ae:51:40:a1:95:2e:d3:db:59:
17:a1:9e:59:b0:19:da:26:1f:c6:7f:dc:d9:4e:22:7a:0c:01:
7a:42:99:d6:e1:79:5e:48:da:c0:79:fe:ac:a3:8f:8d:1e:99:
d8:dd:51:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYY1V7/9v+eLVta/ZfZK2TF4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMjA5MDg0MzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTI1NGVjOTRmOGYzY2IwZTRlMTA1MDA3MmZiNjVjODNhNDRmZmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuh2CV1V6By6rYgahHd1Vd5hZa4do
UcE+nxMDxcWwb8k5Ahv9odOjJkzcBzYvS/eEzYWXeJdWhF14ANtI59zvmj0BvSXT
tO/0oEi9OIL/F1Cf7pJrjxrmovzJgr6QQO0U3tn7hKIoBQGOIn0ExhYPsGRsduQ0
l8r/frqu/qzqu/aRf2pguLRBUZWh6viu1FOdlMHyORMZHrTbP+zJCFG1PjHp1FiB
LU6cvkysBq3K81AI3ZTHgCbfLTlIr2uZgZNNzlPsthqiE/e8IVQwpiTU+37TxiRW
vxj+Oiho17G9fCajDp+JjINRWlOo4GLmvaY8Kv8ix9AtMqW57gN3cj1TQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBElTslPjzyw5OEFAHL7Zcg6RP+qMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvRVNWT3lVLVBQTERrNFFVQWN2dGx5RHBFXzZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXauIMA0G
CSqGSIb3DQEBCwUAA4IBAQBDvSdStFQOOq/4+LT3V+nPCB527048aIuvxdODi9mm
AAy8OfTqxmQ7wjwdT/wE0jrOl/9S74pkyctQitO31WCTE3znZ+uATu9uxDqAL/YH
OT2ObWPfwRzSyaN9voORp7xltMzQyC34ucT4zChxN2mIwm1u0GNvsjwXZHZZoyi+
VDPL1l3xqAzDB/DHaT7JWriaOke/w/8uZUk2hv2o8hHwu6GZmUmMRB/NVSulnRtk
bK4JB/UeGPwwWCzMxEbmY61/UsgVqrpxm5TFQtWw61CuUUChlS7T21kXoZ5ZsBna
Jh/Gf9zZTiJ6DAF6QpnW4XleSNrAef6so4+NHpnY3VGC
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:37 2025 by rpki-client