Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/U-XuQtep2GjgU9OW5pEnA5Dee5Q.roa
File: U-XuQtep2GjgU9OW5pEnA5Dee5Q.roa (raw, json)
Hash identifier: /INW9rb5ABpuM1klcPd7Uw+G8gqADvDG0sxxAqUyg2M=
Subject key identifier: 53:E5:EE:42:D7:A9:D8:68:E0:53:D3:96:E6:91:27:03:90:DE:7B:94
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570957BE7A37BC6E10409A54F814FE3F7
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/U-XuQtep2GjgU9OW5pEnA5Dee5Q.roa
Signing time: Mon 02 Jan 2023 03:45:22 +0000
ROA not before: Mon 02 Jan 2023 03:45:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61989
IP address blocks: 93.170.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:7b:e7:a3:7b:c6:e1:04:09:a5:4f:81:4f:e3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53e5ee42d7a9d868e053d396e691270390de7b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5e:a1:17:da:45:83:ff:cb:25:81:43:89:7e:
4d:1e:d5:b9:54:d8:82:16:d4:06:0e:f6:93:6a:4f:
51:cf:2f:6e:67:da:f1:c2:a8:02:c1:52:7f:0a:1a:
b7:1f:24:3c:3e:78:f9:06:6b:45:49:78:35:a5:10:
83:18:aa:32:64:9a:99:00:72:f7:63:c0:82:eb:77:
bd:45:6d:4e:fe:1c:54:b9:6f:95:5c:b2:bd:af:29:
f9:aa:24:b0:ef:f2:fc:f0:2d:5a:14:b3:b1:86:49:
c3:2c:65:c1:c3:70:0a:45:3e:a6:77:77:b9:6f:b2:
f2:17:64:d9:16:a5:71:dc:ae:b5:51:ee:63:04:dc:
06:fe:49:4a:3a:d5:88:22:08:ab:6a:b6:df:ca:ce:
26:66:16:d2:4f:81:dc:15:c2:da:ac:8a:96:e2:cc:
cd:51:22:5b:07:fc:5f:62:47:de:4e:25:e9:e0:e4:
9e:00:84:3c:13:db:6b:dc:06:cf:4c:9f:51:94:34:
08:40:52:28:b1:fb:97:d2:05:70:4f:c1:4a:c1:2b:
eb:3a:91:c6:c5:29:22:79:4c:78:9c:5b:10:f4:4c:
bd:b9:e6:84:f9:24:91:e5:4b:df:e0:21:db:1f:53:
7f:56:20:1b:bb:c0:7f:a3:50:68:59:df:54:74:97:
e8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E5:EE:42:D7:A9:D8:68:E0:53:D3:96:E6:91:27:03:90:DE:7B:94
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/U-XuQtep2GjgU9OW5pEnA5Dee5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.83.0/24
Signature Algorithm: sha256WithRSAEncryption
23:18:71:35:40:4c:a8:5e:b4:da:41:05:c8:db:c0:53:9c:56:
d6:e6:dd:a4:c6:ba:db:9f:be:23:61:c6:62:37:77:91:76:72:
eb:01:86:a0:bd:50:1f:b0:d5:a7:ba:ff:a1:32:9b:cb:93:16:
7c:37:ff:6d:e1:6a:78:92:ad:f3:2a:ae:0e:20:68:34:d9:70:
e7:b5:4f:70:bb:04:81:f8:2b:4f:7a:e9:ac:ca:eb:9e:5f:f1:
36:01:b4:81:dd:f5:31:db:f3:8e:79:9e:29:05:f7:ad:fd:55:
15:95:0d:43:ed:4f:bd:e7:6b:27:95:a2:9c:2f:f9:47:10:c5:
b3:4d:fb:af:db:e8:d6:05:f0:57:82:8a:bf:d1:d3:1b:24:f0:
a9:9f:8c:ec:f1:37:d5:94:3f:d3:b0:84:7d:96:14:21:5e:b0:
66:0c:7a:6c:fc:8b:0e:49:42:79:e5:2d:26:1d:39:ab:75:a0:
e5:49:cf:06:ab:63:0d:b0:de:87:38:b9:87:5d:f1:cb:15:b0:
5b:da:00:84:1b:af:ed:5b:40:5e:96:c2:3b:13:0c:23:19:2e:
89:f6:f8:8e:76:06:89:eb:67:db:97:87:3f:94:4b:39:8d:cb:
34:c3:b9:47:96:09:f6:ee:a0:7d:2e:25:d4:77:d2:ca:c1:78:
9c:e8:6f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:53 2025 by rpki-client