Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OdzoPiUkJ6eE_k6RUCswukGZxhw.roa
File: OdzoPiUkJ6eE_k6RUCswukGZxhw.roa (raw, json)
Hash identifier: uJAcg4Mpwi+a445yn8mDYsJv0UkUXWLOhkF/IMbWCEI=
Subject key identifier: 39:DC:E8:3E:25:24:27:A7:84:FE:4E:91:50:2B:30:BA:41:99:C6:1C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 276BFBEE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OdzoPiUkJ6eE_k6RUCswukGZxhw.roa
Signing time: Sat 01 Jan 2022 16:07:59 +0000
ROA not before: Sat 01 Jan 2022 16:07:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35325
IP address blocks: 93.170.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661388270 (0x276bfbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39dce83e252427a784fe4e91502b30ba4199c61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:e3:39:52:10:dc:c2:56:c5:70:7d:b1:96:
0c:92:8f:2f:41:ff:3d:0c:b9:be:f9:d0:9b:1a:af:
ee:60:d7:98:af:1b:a8:04:a9:af:8a:b8:c4:02:21:
6b:aa:b6:02:9c:47:c7:23:66:05:13:b9:07:1d:e8:
e2:9d:30:61:1a:45:e7:43:ad:0a:2b:3d:67:3b:4c:
6a:9f:b1:92:a6:f5:3f:7c:51:6d:f9:ad:8c:71:78:
13:f1:b9:2f:20:d4:5f:bb:8c:68:61:e3:95:bc:95:
1d:dc:f0:46:d4:f9:05:77:87:74:ca:f4:bf:50:3a:
a6:a8:e4:71:4d:70:39:bf:ec:d7:d5:97:5b:a7:72:
31:2a:23:11:6d:3f:a7:dc:0d:73:6b:8c:6d:ed:15:
85:f5:8b:cc:ab:f1:e3:1f:15:b8:8a:c7:6c:b6:46:
fc:91:45:a2:46:3c:b3:07:95:e3:29:06:cc:c7:ad:
2c:fb:1b:4f:84:f8:e4:b7:69:ca:a6:dc:b2:12:27:
0e:1f:ab:73:49:db:86:09:67:8e:7a:64:f4:c8:d3:
6c:bb:7c:b7:53:9a:66:d5:8f:9b:21:53:25:c6:30:
71:f7:0d:06:da:e3:5d:ee:0b:8a:ba:ed:b0:c6:56:
07:6d:ee:20:33:22:21:51:3a:bb:d1:af:7f:45:7b:
5b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DC:E8:3E:25:24:27:A7:84:FE:4E:91:50:2B:30:BA:41:99:C6:1C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/OdzoPiUkJ6eE_k6RUCswukGZxhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.40.0/22
Signature Algorithm: sha256WithRSAEncryption
31:ac:41:75:41:5f:8f:a9:8b:09:86:04:92:1a:ca:a5:08:07:
40:0a:87:6e:18:ae:7e:03:1e:bf:1a:6e:1a:30:c9:6b:06:13:
39:a8:b2:3f:91:8d:4b:75:82:3c:e6:48:0d:37:c5:61:de:b8:
09:8f:6d:49:8c:3c:f9:02:50:04:e5:ff:06:58:45:41:f0:73:
8d:c9:7b:5e:4c:98:0e:f3:69:29:7c:fd:2f:c0:c9:39:13:ad:
ae:71:52:e0:c8:17:e8:a4:e3:76:44:ea:17:6f:04:8e:5c:d9:
e5:5c:31:94:de:20:11:b3:9a:fa:11:3f:a9:bc:92:34:4c:e9:
a0:de:4a:8d:3c:eb:cb:87:0e:65:ae:25:93:3f:a9:b7:3a:ef:
57:5b:a6:68:4c:40:33:3d:ec:40:1e:6f:b4:7b:ac:23:f2:dc:
c3:92:2c:55:9c:ee:a5:2f:d2:21:f6:00:45:e0:f4:ae:51:5e:
65:df:d0:8c:28:d6:dc:ef:b7:73:9b:1e:e5:2e:d2:a5:d8:31:
3e:c0:21:ac:f1:ec:93:9d:23:16:eb:a7:3e:eb:35:2d:00:b3:
4d:7d:38:6e:ac:f5:b5:93:3c:3e:28:5b:14:34:8e:ac:f2:7b:
6a:1f:0e:85:35:41:cd:c5:be:35:79:f3:31:2c:cc:18:37:a0:
80:ed:b9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:44 2025 by rpki-client