Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/N17Egb8VOdEPaKoVa4h2_kYZHgY.roa
File: N17Egb8VOdEPaKoVa4h2_kYZHgY.roa (raw, json)
Hash identifier: IvNphIKXjaHPCFwvlVSfpmooHHEnbtiomLYEObyK0u0=
Subject key identifier: 37:5E:C4:81:BF:15:39:D1:0F:68:AA:15:6B:88:76:FE:46:19:1E:06
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27FDCB3D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/N17Egb8VOdEPaKoVa4h2_kYZHgY.roa
Signing time: Sat 01 Jan 2022 16:09:19 +0000
ROA not before: Sat 01 Jan 2022 16:09:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61277
IP address blocks: 93.171.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670944061 (0x27fdcb3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375ec481bf1539d10f68aa156b8876fe46191e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:36:d5:ef:d6:2a:a9:bb:34:e1:a2:3c:3b:
d9:94:b8:94:69:7b:1e:cf:2b:a9:a2:45:ec:12:a7:
76:54:3c:ae:07:32:f5:90:c4:07:49:05:f1:52:0e:
01:31:5c:a8:01:f6:35:d3:6e:3b:b0:c5:2d:a4:d4:
21:8d:49:66:c9:01:4b:31:10:16:23:5e:a9:2b:74:
ba:f6:cf:d9:6d:29:0b:d9:0d:79:e1:6c:f8:fc:ab:
85:63:01:8f:21:01:c1:9e:61:c1:78:dd:e7:d8:0f:
99:d2:1d:78:9f:70:6c:99:f4:c3:29:14:ae:ca:d8:
41:90:f9:96:14:19:dd:31:02:bb:8a:f6:6f:6e:2c:
2b:88:61:dc:f4:bc:26:55:71:50:17:32:9b:3a:88:
f1:45:59:a5:4c:50:eb:bf:5f:aa:3e:a5:87:af:e6:
b5:05:1f:7a:8f:7c:bb:24:2c:10:a2:38:36:37:67:
33:c3:c8:da:34:89:b3:34:5c:3f:42:22:00:ee:cf:
ee:13:22:9c:d1:b5:f6:ff:0e:48:0f:07:b2:4b:2c:
6c:44:3a:fc:31:b5:bb:5d:4a:c2:c9:f8:42:44:f8:
0f:62:70:62:ba:ce:18:af:72:79:83:c1:25:eb:6b:
ba:f1:ac:1d:a2:5a:b5:21:d5:23:c5:fb:15:21:eb:
2b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5E:C4:81:BF:15:39:D1:0F:68:AA:15:6B:88:76:FE:46:19:1E:06
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/N17Egb8VOdEPaKoVa4h2_kYZHgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.207.0/24
Signature Algorithm: sha256WithRSAEncryption
54:17:a7:5f:89:b8:8e:ae:70:c0:de:51:43:27:38:8e:9e:be:
4a:d7:81:c9:73:57:79:ce:bf:84:20:62:ab:3e:6b:74:a2:6b:
cd:e6:0d:ac:29:d5:9b:08:12:f7:6a:dc:f5:bc:9d:b6:8a:25:
c6:35:cf:81:29:86:87:d0:e6:04:54:ed:20:25:99:09:a7:52:
c4:26:8a:96:95:b4:2c:1e:34:0d:27:ee:77:6f:ac:82:7d:78:
d6:bd:72:d0:16:f0:7b:8c:dd:45:15:2d:29:cf:da:eb:6a:a5:
54:20:09:f6:6c:ec:48:5e:df:50:b7:5a:e7:71:c4:ff:68:a5:
35:75:77:70:59:b0:be:22:4e:dd:c9:33:dd:b4:f3:35:a3:2d:
e2:08:b4:de:d8:49:6c:35:71:ca:b5:a4:ba:08:8f:fb:8f:97:
74:27:1b:37:58:4a:cb:c8:55:60:01:a5:d4:a8:1c:4c:5d:f5:
52:e2:c2:bc:ee:47:12:c1:02:9a:a7:bf:97:89:d3:3f:01:eb:
7c:69:51:54:5f:dc:70:71:c6:81:5d:dd:f9:f0:60:5b:7f:e5:
da:76:d1:71:1e:0a:fd:1c:2a:b2:83:fe:cb:aa:c9:a8:67:eb:
b7:d6:e1:4c:ba:f8:32:4c:2d:08:53:0a:06:55:12:8f:0e:8e:
2a:e3:f4:c4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ/3LPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc1ZWM0ODFiZjE1
MzlkMTBmNjhhYTE1NmI4ODc2ZmU0NjE5MWUwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANEtNtXv1iqpuzThojw72ZS4lGl7Hs8rqaJF7BKndlQ8rgcy
9ZDEB0kF8VIOATFcqAH2NdNuO7DFLaTUIY1JZskBSzEQFiNeqSt0uvbP2W0pC9kN
eeFs+PyrhWMBjyEBwZ5hwXjd59gPmdIdeJ9wbJn0wykUrsrYQZD5lhQZ3TECu4r2
b24sK4hh3PS8JlVxUBcymzqI8UVZpUxQ679fqj6lh6/mtQUfeo98uyQsEKI4Njdn
M8PI2jSJszRcP0IiAO7P7hMinNG19v8OSA8HskssbEQ6/DG1u11Kwsn4QkT4D2Jw
YrrOGK9yeYPBJetruvGsHaJatSHVI8X7FSHrK1cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ3XsSBvxU50Q9oqhVriHb+RhkeBjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L04xN0VnYjhWT2RFUGFLb1ZhNGgyX2tZWkhnWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2rzzANBgkqhkiG9w0BAQsFAAOC
AQEAVBenX4m4jq5wwN5RQyc4jp6+SteByXNXec6/hCBiqz5rdKJrzeYNrCnVmwgS
92rc9bydtoolxjXPgSmGh9DmBFTtICWZCadSxCaKlpW0LB40DSfud2+sgn141r1y
0Bbwe4zdRRUtKc/a62qlVCAJ9mzsSF7fULda53HE/2ilNXV3cFmwviJO3ckz3bTz
NaMt4gi03thJbDVxyrWkugiP+4+XdCcbN1hKy8hVYAGl1KgcTF31UuLCvO5HEsEC
mqe/l4nTPwHrfGlRVF/ccHHGgV3d+fBgW3/l2nbRcR4K/RwqsoP+y6rJqGfrt9bh
TLr4MkwtCFMKBlUSjw6OKuP0xA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:37 2025 by rpki-client