Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mn92n1jRdTgwkQMKIYV2O1E3RVQ.roa
File: Mn92n1jRdTgwkQMKIYV2O1E3RVQ.roa (raw, json)
Hash identifier: zaztZeC2thRnoM0WzlEkoq4WLJAeAA3Wwjxy0k3cvsY=
Subject key identifier: 32:7F:76:9F:58:D1:75:38:30:91:03:0A:21:85:76:3B:51:37:45:54
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2857A589
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mn92n1jRdTgwkQMKIYV2O1E3RVQ.roa
Signing time: Sat 01 Jan 2022 16:10:17 +0000
ROA not before: Sat 01 Jan 2022 16:10:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210870
IP address blocks: 93.171.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676832649 (0x2857a589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327f769f58d175383091030a2185763b51374554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3e:fb:cb:fd:6f:59:18:a4:10:21:d5:e2:4a:
6f:91:05:41:81:08:cf:a4:aa:42:a1:59:65:bd:5c:
3b:69:11:99:3a:17:cf:8c:bd:5a:80:55:7e:0b:e4:
c2:dc:13:74:e9:a5:c2:88:02:42:15:0e:d1:5b:36:
40:28:d5:13:8f:ed:9e:de:1e:b8:15:bb:08:03:83:
d6:87:e6:c2:d3:f3:04:95:fa:ef:be:27:ab:e5:45:
12:75:b1:85:e6:d9:22:ea:8f:36:fa:5c:02:30:96:
75:a5:2d:0f:c6:1c:56:e1:de:e7:1c:9c:44:c7:16:
5d:23:82:8b:01:88:b6:f8:0e:79:9e:7c:42:fe:c2:
86:e9:0e:b4:7d:bb:6b:5d:d1:33:48:98:af:3c:ef:
72:11:9d:5c:37:40:f7:f6:8b:4c:a3:a2:f6:9d:9e:
28:4c:f2:ca:e3:cd:cd:f2:5e:a6:af:f9:e0:96:e6:
9b:99:3c:cd:36:df:c7:01:65:ce:f0:1c:5f:42:b6:
0f:d0:a8:84:80:69:92:3c:e1:fe:38:1a:8a:ee:23:
58:01:53:85:93:8c:98:d9:7d:46:05:ce:9f:29:60:
a7:94:82:f9:eb:0f:81:ee:f6:11:e2:d9:09:33:05:
02:09:b5:99:29:2c:09:b4:8c:6e:0e:25:5a:18:f4:
4c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7F:76:9F:58:D1:75:38:30:91:03:0A:21:85:76:3B:51:37:45:54
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mn92n1jRdTgwkQMKIYV2O1E3RVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.187.0/24
Signature Algorithm: sha256WithRSAEncryption
42:74:c1:ff:ed:50:ee:5a:45:b7:43:a1:bb:ff:b7:84:cd:e8:
b1:91:75:f2:c8:1d:eb:b5:b6:1e:68:ae:3a:e2:a8:2f:36:55:
fb:49:c5:08:de:62:fd:ab:06:dc:46:8e:a8:6c:66:6c:dd:5f:
dc:72:f3:fc:4a:e1:c8:c8:ef:ed:5f:43:24:26:e0:aa:53:f4:
ab:7a:2f:8a:e2:66:bb:b7:a3:52:2b:15:e1:b3:dc:ea:32:b3:
13:41:65:75:e3:63:cb:53:8f:2a:30:9a:f2:7b:f8:4a:7b:0e:
e8:a8:40:32:37:5f:73:fb:3c:d3:bb:38:5c:2c:c5:4b:95:a3:
e4:b8:ae:e4:a9:6f:37:7e:91:ad:a3:a1:93:e2:02:46:c6:85:
9b:a3:51:5d:b6:48:4c:31:36:ac:8d:ee:0d:8c:0b:db:f5:79:
a2:52:75:4c:4d:05:cc:c0:78:c7:f5:91:89:63:be:c6:47:b1:
02:7c:28:e4:e6:70:0f:90:29:16:9e:f7:d0:b1:ed:ac:22:ac:
d8:5f:0d:33:cc:3f:44:0e:78:0d:36:c0:81:8c:d6:34:af:f4:
88:fd:2f:bd:3a:80:7b:86:43:14:d4:36:52:77:01:f8:85:1c:
36:16:20:d8:8e:47:6e:9d:e7:66:47:ba:ab:91:fb:c2:73:31:
b7:49:aa:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:47 2025 by rpki-client