Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Gg5FnGhZFXofzuGY5BblDt2lVDg.roa
File: Gg5FnGhZFXofzuGY5BblDt2lVDg.roa (raw, json)
Hash identifier: 7kGHhh4tIdzNoyN7D00P1gCCJ0os98re0F8Cy8BcDRQ=
Subject key identifier: 1A:0E:45:9C:68:59:15:7A:1F:CE:E1:98:E4:16:E5:0E:DD:A5:54:38
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095803D11EEA1E0188360CA625E34BE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Gg5FnGhZFXofzuGY5BblDt2lVDg.roa
Signing time: Mon 02 Jan 2023 03:45:23 +0000
ROA not before: Mon 02 Jan 2023 03:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62150
IP address blocks: 93.170.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:80:3d:11:ee:a1:e0:18:83:60:ca:62:5e:34:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a0e459c6859157a1fcee198e416e50edda55438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:97:50:29:be:c6:d8:76:ca:98:27:54:15:6a:
75:e1:b9:67:b1:dc:2b:e0:24:ae:66:d4:e2:70:78:
be:aa:e6:63:f6:79:eb:01:68:22:44:bc:32:6b:43:
12:c3:71:f8:a0:6e:33:65:23:77:4f:4e:0b:d0:59:
ad:b8:39:55:b7:f6:c8:3b:28:a6:46:20:f3:d6:17:
49:36:b4:e9:8d:c4:ad:bb:fd:02:c9:80:47:47:14:
e4:da:b7:96:49:a9:f0:61:e4:98:eb:3c:3b:f6:b3:
8d:c7:1e:d1:68:f0:f4:04:ba:60:5c:32:e6:02:f3:
19:c5:5f:f7:57:94:c6:06:d2:52:4c:83:d9:b8:e4:
04:25:ad:4a:36:1c:ac:79:b2:f7:ec:cf:76:ac:67:
32:19:f6:85:cb:7c:27:ec:f8:42:8a:e8:93:40:27:
23:01:00:61:6a:28:7f:ee:30:c7:6f:a5:dd:40:34:
d8:32:22:84:34:23:f9:6c:99:8b:f3:d3:88:f2:a3:
b6:29:37:10:d5:e9:20:dd:53:a9:e9:06:90:8e:f1:
b1:15:1c:d2:c1:f1:82:14:d3:d8:2a:72:39:ea:85:
be:28:5a:e2:47:ff:f1:88:2e:b1:22:42:11:13:e1:
a6:67:f6:ac:27:80:31:30:9e:3f:ac:39:56:15:bb:
bd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0E:45:9C:68:59:15:7A:1F:CE:E1:98:E4:16:E5:0E:DD:A5:54:38
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Gg5FnGhZFXofzuGY5BblDt2lVDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.52.0/24
Signature Algorithm: sha256WithRSAEncryption
12:41:5a:6a:73:d9:ef:ed:c8:cd:a8:1e:f4:4d:06:f0:bb:09:
3f:85:c1:41:29:4e:f3:ef:35:19:e4:cd:26:2d:87:e7:39:4a:
81:4b:b5:2e:65:07:c4:a6:9b:95:88:bb:a9:84:82:0b:f9:37:
2b:60:f9:10:31:ff:cd:ab:30:10:fa:8b:e0:01:f4:a4:29:0e:
77:a3:a7:2d:79:f8:6e:6e:80:7c:72:7a:1c:14:b5:dc:23:6e:
2b:d0:ab:bd:40:28:36:01:69:1b:f4:c5:6d:2e:b8:a6:ec:da:
a4:76:81:84:fd:bf:1f:7b:21:36:28:bc:74:af:2e:13:42:03:
0e:61:70:90:66:f2:1c:ca:fb:e5:98:e0:b7:d7:cf:67:ef:d7:
9d:db:96:1c:61:48:05:e2:e1:6b:3f:09:7b:f2:a5:64:21:81:
2d:d1:9c:0a:50:23:5c:ac:f1:9f:de:ce:62:e3:c4:a5:af:d6:
3a:40:c2:ee:6d:e5:32:4e:57:10:b2:00:0f:30:98:b7:76:8d:
a4:28:77:8c:94:66:70:fe:12:68:bc:bb:6d:f0:d2:e6:36:29:
dc:6c:02:da:d7:2e:95:f2:82:b7:3e:59:b7:ab:0a:c9:36:ef:
c8:08:a3:c4:ad:46:34:79:2b:70:66:78:21:8f:64:34:1a:a4:
01:fa:ba:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:08:21 2025 by rpki-client