Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/M-vM3s67VelaSPcUE7ZKd6fRy7U.roa
File: M-vM3s67VelaSPcUE7ZKd6fRy7U.roa (raw, json)
Hash identifier: 49EWpKeNGazPrQwQdf5AxHmCBlP07ZqEQmUT3p49Z+A=
Subject key identifier: 33:EB:CC:DE:CE:BB:55:E9:5A:48:F7:14:13:B6:4A:77:A7:D1:CB:B5
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28417F82
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/M-vM3s67VelaSPcUE7ZKd6fRy7U.roa
Signing time: Sat 01 Jan 2022 16:09:57 +0000
ROA not before: Sat 01 Jan 2022 16:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208038
IP address blocks: 93.170.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675381122 (0x28417f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33ebccdecebb55e95a48f71413b64a77a7d1cbb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:2b:6d:cd:e2:00:72:2d:14:e3:41:1f:cb:
14:8b:83:e9:d8:68:49:22:1f:47:30:17:17:de:04:
1a:62:3e:92:ec:eb:8b:8a:c5:fd:8c:be:99:25:cb:
9c:f9:cb:f7:71:71:7e:9b:79:6b:ab:bb:92:d9:77:
90:8c:5b:53:2b:8a:2c:f2:3e:63:9f:56:39:fc:dc:
6b:33:ad:88:ed:2b:07:3b:d3:fb:c7:95:d6:f3:6f:
ce:90:03:7b:6e:81:17:5f:a5:9a:72:51:3e:9d:74:
2c:e5:3b:ee:ce:cf:57:e8:a0:cf:66:0c:e7:cd:25:
92:83:ee:95:5a:07:85:fc:bb:1c:21:a8:1f:36:43:
fb:eb:66:bb:5d:b1:b2:c2:c2:b5:57:19:c8:80:3b:
47:b8:9d:c5:57:b4:a1:21:04:25:d5:10:b0:11:a1:
7e:65:33:8b:44:af:7b:af:27:2d:c2:75:61:5e:3b:
49:0d:81:94:fb:34:70:4b:4f:8e:47:9c:9f:2b:95:
d7:99:9f:57:bd:24:52:e6:2b:96:99:7a:21:87:d7:
39:e4:26:9f:18:b4:0f:1b:9e:77:48:af:8e:5a:05:
12:53:aa:ce:19:bc:48:b0:c7:14:92:ba:db:2f:70:
fa:6c:db:ef:5e:ee:8c:8b:e4:03:0f:43:b2:89:e0:
57:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EB:CC:DE:CE:BB:55:E9:5A:48:F7:14:13:B6:4A:77:A7:D1:CB:B5
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/M-vM3s67VelaSPcUE7ZKd6fRy7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.122.0/24
Signature Algorithm: sha256WithRSAEncryption
af:96:01:73:31:18:dc:26:85:da:5a:3d:ea:22:78:8b:d5:04:
bb:cc:14:4d:d1:8e:7f:d8:d5:34:02:48:0c:60:87:2e:ce:71:
18:7a:45:66:a7:97:ce:8d:56:4d:f0:7c:58:90:43:f4:44:97:
7b:a3:99:87:cc:be:55:96:bf:b6:25:48:08:04:f1:20:0a:60:
08:03:e2:eb:73:c5:a4:01:8f:ec:2a:13:f2:21:0f:a7:43:6e:
9e:e7:77:b7:fe:dc:91:52:ef:1b:1e:a4:e6:a3:4b:aa:b2:99:
91:98:eb:45:a0:8b:e4:57:b2:e6:4e:a2:cf:e0:89:81:e6:c8:
0d:1f:79:57:51:70:77:4d:1d:ba:60:8d:98:f1:cc:29:f2:d1:
e9:b1:63:47:3c:de:3e:5a:15:e2:80:59:19:91:6f:aa:ba:22:
96:56:97:b6:4e:88:1d:bb:1e:b5:53:19:fe:b2:1a:b7:20:38:
06:08:6f:26:77:9f:e6:2f:f4:b6:25:63:4c:10:5a:44:b5:c3:
c5:46:26:d6:7e:ff:74:8d:2d:ff:27:1b:de:64:de:1a:fa:f8:
24:00:62:58:74:f7:fc:b6:b2:22:5b:54:1c:3c:08:f0:26:63:
10:25:9b:e4:91:c4:d0:18:4c:7d:36:6a:d5:09:22:f8:64:e3:
39:d2:bf:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org