Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IjqhLFO57WsLujz98txpfc6QVb4.roa
File: IjqhLFO57WsLujz98txpfc6QVb4.roa (raw, json)
Hash identifier: JSYvURozIFNp4cYRgKooqCT2Z+hh5Q2K93sWwp/hQDI=
Subject key identifier: 22:3A:A1:2C:53:B9:ED:6B:0B:BA:3C:FD:F2:DC:69:7D:CE:90:55:BE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A15B11C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IjqhLFO57WsLujz98txpfc6QVb4.roa
Signing time: Wed 01 Jun 2022 09:32:24 +0000
ROA not before: Wed 01 Jun 2022 09:32:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56418
IP address blocks: 93.171.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706064668 (0x2a15b11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:32:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=223aa12c53b9ed6b0bba3cfdf2dc697dce9055be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7b:82:81:38:b5:2d:6a:15:23:89:66:2e:25:
a2:a2:78:87:82:39:9e:1b:55:ba:c7:d9:64:f0:1a:
15:c6:96:9a:53:53:57:37:30:6e:d2:b8:3b:5e:91:
c5:e5:9e:48:55:b7:58:d5:57:9a:39:18:60:d2:bd:
23:04:44:37:32:61:89:b3:67:5f:e4:71:76:a1:1d:
b3:b5:06:0c:1a:94:74:21:84:3c:6e:0d:43:a7:bb:
d9:dd:c4:b0:ee:22:e4:af:d8:3f:29:28:8d:68:29:
28:4b:22:8f:09:66:72:c1:12:85:21:4b:1b:45:26:
9e:42:86:be:79:85:96:e7:c0:35:bb:bc:b3:f0:1d:
67:4b:0b:f6:3f:32:43:fb:ac:d2:ab:d0:c5:fe:d3:
e0:b0:c8:06:53:dd:64:d7:59:2f:78:e0:4e:5b:f9:
c2:61:24:9e:fe:86:89:0b:c0:ab:5e:db:29:1f:94:
d3:58:79:54:6c:93:f7:f5:69:94:c5:8b:63:c5:71:
00:6a:99:43:3d:2e:f3:c0:05:a4:06:48:78:85:48:
73:91:3d:1a:e9:d4:05:e6:39:73:4d:0f:55:23:63:
25:d1:5d:ad:a9:6a:e2:4f:8d:9d:7c:7e:ec:13:5e:
93:4a:72:29:69:5e:85:e2:cb:75:31:a2:1c:37:a4:
01:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3A:A1:2C:53:B9:ED:6B:0B:BA:3C:FD:F2:DC:69:7D:CE:90:55:BE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IjqhLFO57WsLujz98txpfc6QVb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.198.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:97:6c:d9:0b:d9:12:d9:9b:b4:29:a9:1a:bc:44:9b:43:a5:
8a:5d:76:7c:0a:71:49:63:41:7b:2a:3c:3d:40:3e:0c:14:60:
02:16:60:80:f7:62:50:45:ed:b1:9b:5b:e7:48:b3:a4:79:ba:
08:bd:29:6b:81:97:ff:66:0a:0a:90:88:06:7c:84:d8:3f:6f:
4f:39:9f:29:5e:a8:ea:ea:e1:a2:9b:b3:22:ff:51:ee:15:33:
1b:91:cd:1f:ae:b8:41:95:69:02:e0:cc:06:bd:5d:7e:01:a5:
fc:74:67:3f:f7:2f:e2:cf:98:68:16:9f:ff:e6:b3:fd:4f:20:
4c:12:d1:f9:d2:2d:8e:b2:3d:e2:db:33:3b:7a:0b:8a:49:bc:
ca:9a:93:24:9e:44:7e:76:2a:32:75:6e:52:6f:ca:88:df:5e:
f4:19:18:9e:20:e0:9e:02:82:cd:c1:44:b5:6c:db:50:a7:3c:
7b:3d:0b:ec:8c:49:7c:60:7e:54:eb:91:a3:f5:ed:7b:d3:af:
be:a1:ea:2d:ea:47:64:14:44:ee:5e:5f:89:b3:39:9a:81:14:
77:47:fe:65:97:3f:89:10:e9:1c:b1:54:70:56:98:82:88:cb:
36:9a:2c:e0:24:72:19:8f:a9:f5:61:39:26:0b:a2:2c:74:b2:
0f:b6:d6:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:41 2025 by rpki-client