Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SRwGQij3AgBhF8Bvxmd4d0EF2dE.roa
File: SRwGQij3AgBhF8Bvxmd4d0EF2dE.roa (raw, json)
Hash identifier: CsBjzcyCUhdqqAXXTu4D4u52CVVWfH1SAE6tTxzK118=
Subject key identifier: 49:1C:06:42:28:F7:02:00:61:17:C0:6F:C6:67:78:77:41:05:D9:D1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 285E409B
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SRwGQij3AgBhF8Bvxmd4d0EF2dE.roa
Signing time: Sat 01 Jan 2022 16:10:19 +0000
ROA not before: Sat 01 Jan 2022 16:10:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212118
IP address blocks: 93.171.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677265563 (0x285e409b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=491c064228f702006117c06fc66778774105d9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:2f:e5:ea:49:44:e3:86:7d:50:b1:ce:03:
cb:a3:49:3b:a7:cb:5f:e1:dd:e6:70:9c:8d:5e:71:
77:b5:5b:bb:7f:9a:00:e2:17:58:aa:dd:87:8e:fe:
c6:86:73:1d:b3:62:41:1b:d4:d7:e8:aa:3c:9a:56:
45:a0:22:7c:57:a0:38:11:fd:7e:f7:35:0a:39:bc:
17:b2:7c:f1:46:60:59:7a:c2:f0:d7:54:e3:0c:8d:
18:43:6f:55:75:de:13:54:e2:96:d9:2a:74:51:aa:
3c:a7:02:13:df:eb:a4:c5:20:37:1f:13:bd:2e:e6:
73:c0:8b:00:b3:70:15:ce:77:9e:14:33:0f:79:e3:
a3:7a:a3:08:d3:50:e2:67:aa:53:3c:9e:75:04:20:
83:13:b4:27:88:8e:3b:a7:63:8b:52:c1:0f:23:aa:
93:09:15:d0:6e:ef:35:22:df:b3:0e:f9:39:f5:05:
c8:60:5e:c2:3e:70:1c:b4:dc:e7:6a:f4:68:d0:41:
b4:29:d1:c2:1c:a7:04:00:42:07:5d:9b:d5:14:ea:
ce:0f:8e:61:f6:d4:c7:13:82:be:33:9c:68:87:ee:
0d:1d:f6:5a:8b:14:82:e4:d2:1d:12:0c:2d:32:1e:
06:54:cb:48:10:65:6e:79:fc:41:a8:ab:bb:0f:b1:
e3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1C:06:42:28:F7:02:00:61:17:C0:6F:C6:67:78:77:41:05:D9:D1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SRwGQij3AgBhF8Bvxmd4d0EF2dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.212.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2d:fb:d7:e3:43:6f:12:4f:71:93:b6:f2:e7:43:01:8f:d1:
fe:3f:7d:5f:e4:ef:67:ed:f4:6e:c8:74:27:9d:47:eb:b1:4f:
7e:37:db:2c:99:b4:cf:0b:e3:ce:c0:d3:52:fe:40:05:52:14:
0a:72:d7:7f:54:de:65:1d:f1:b5:44:2a:c2:c3:12:4d:b8:2c:
5b:74:5f:8d:c5:ab:62:99:e0:65:b0:b6:b2:b6:8f:9c:9f:ba:
a5:01:b9:47:d4:8c:77:c7:ca:bd:e5:5c:a0:7c:57:ff:29:fc:
d8:59:0c:6b:59:f5:ca:e1:4e:e6:ec:86:49:ac:c5:03:e5:d8:
9d:73:f9:cc:43:c3:15:73:ea:4e:d9:d6:fc:76:5b:be:ed:1f:
81:77:17:97:e7:2e:97:5d:ef:6c:2c:c9:e5:ae:b4:42:72:6c:
d4:ed:4a:64:d7:8d:cb:a0:ee:31:f4:5f:7d:4d:38:a8:f7:ff:
c4:3c:a4:75:81:c2:03:9a:41:e1:00:11:95:6d:7a:2e:bf:46:
ae:6d:69:10:c0:be:e2:56:84:52:a0:4a:49:ba:05:01:dd:49:
05:3f:c5:4f:fc:8d:a8:ac:bf:f3:1e:a4:1a:1a:0a:5e:c3:9a:
48:ab:af:fc:03:64:23:5e:e8:79:9b:4a:6f:bd:dc:0c:eb:12:
2c:a7:b5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:38:54 2025 by rpki-client