Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SnqRTlhC50qxmpwCcuDNvMxiGJk.roa
File: SnqRTlhC50qxmpwCcuDNvMxiGJk.roa (raw, json)
Hash identifier: XQdrvk/TziJWkKT1pQLRnH2+b7EfPqp0u6aiCBADrSE=
Subject key identifier: 4A:7A:91:4E:58:42:E7:4A:B1:9A:9C:02:72:E0:CD:BC:CC:62:18:99
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570959ECC2AEF82F892C92050E3F69965
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SnqRTlhC50qxmpwCcuDNvMxiGJk.roa
Signing time: Mon 02 Jan 2023 03:45:31 +0000
ROA not before: Mon 02 Jan 2023 03:45:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205264
IP address blocks: 93.170.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:9e:cc:2a:ef:82:f8:92:c9:20:50:e3:f6:99:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a7a914e5842e74ab19a9c0272e0cdbccc621899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:47:3d:a5:55:7b:04:b7:66:c8:35:de:b6:bb:
a1:ca:f5:69:36:74:a0:34:fc:14:c8:a3:f0:df:df:
3b:6c:b0:ed:9f:13:47:9c:61:b2:a6:14:b8:f9:9e:
e4:1d:4c:79:59:31:f5:41:11:0b:6e:53:a4:ad:81:
16:ef:66:24:d1:fc:f6:a8:83:38:74:fe:55:a3:8c:
bb:cc:4e:8e:ba:dd:31:a8:d8:30:2b:18:f5:12:38:
a7:0f:01:d3:ae:7a:0f:c0:88:74:55:22:f0:88:55:
e5:7e:d5:ab:a1:a3:c9:c2:66:f6:11:97:7d:21:26:
c1:9c:d1:29:b5:22:d9:64:89:ee:65:35:c7:f4:21:
74:ca:4b:b3:43:ac:ec:9a:fb:88:ab:6f:e1:35:40:
b7:dc:af:76:a4:2b:2b:bf:d2:79:9f:6b:14:ef:1e:
4e:07:57:38:f8:70:8d:6f:21:8b:ae:83:e8:81:e6:
bc:fb:d3:4f:df:3d:27:74:18:8d:96:f5:9c:8d:55:
0d:d4:4c:4c:bc:d9:99:99:2b:e0:01:fb:db:d1:26:
79:54:83:ec:58:77:8c:9d:f7:3f:b5:35:b7:68:0b:
37:30:6a:2b:66:58:c0:2c:c0:3a:31:a1:b6:53:0d:
2a:20:13:e3:41:72:16:0c:a2:ae:2b:63:9c:59:bc:
88:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7A:91:4E:58:42:E7:4A:B1:9A:9C:02:72:E0:CD:BC:CC:62:18:99
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/SnqRTlhC50qxmpwCcuDNvMxiGJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e0:de:9f:80:45:36:e4:a2:50:cc:c9:e2:20:2b:3d:d2:a2:
38:e6:9f:10:7a:ed:dc:2c:6d:ef:d9:e3:34:85:17:92:fa:04:
94:4a:27:f0:3e:89:37:55:dd:a5:02:0d:c7:66:a8:ca:9c:6e:
87:0f:5b:91:03:1b:b1:2f:bc:28:49:81:58:ba:22:bd:13:8e:
4c:40:bf:95:fd:8a:5e:6d:b4:98:d4:b6:ce:21:8b:ab:89:32:
68:48:9e:44:5e:b2:57:1f:41:50:2d:68:81:49:10:cd:ff:e8:
1a:14:fe:be:a8:26:33:9a:df:fe:df:a3:83:f9:cf:87:fd:36:
2c:9d:92:54:e1:41:fd:bd:a2:9f:64:7a:eb:9a:cb:c6:11:f2:
d9:f1:bc:ce:13:4c:6f:fb:6a:1d:e7:e2:41:93:73:82:b4:ec:
6f:34:92:66:fd:25:73:cb:2b:d8:20:4c:33:4c:33:95:db:6d:
05:76:90:97:f4:37:ff:cc:2a:80:4d:76:30:2c:14:1a:87:12:
18:15:05:89:a5:c2:d6:e6:0a:c3:01:f8:b9:4d:c6:8f:de:ab:
e6:30:21:38:3d:1d:33:69:67:a4:5a:d6:aa:3f:30:10:f5:62:
e0:cf:3a:7a:23:40:39:97:82:33:9a:91:ee:a7:35:a9:07:3c:
dd:56:29:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:02 2025 by rpki-client