Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xr4XdYIiKZ9X5oOJLZUKmb8Aa3E.roa
File: Xr4XdYIiKZ9X5oOJLZUKmb8Aa3E.roa (raw, json)
Hash identifier: O2dvaTR8NlUTTIQkkoSiFBMuSOwpNFbrNHbn+fQOeno=
Subject key identifier: 5E:BE:17:75:82:22:29:9F:57:E6:83:89:2D:95:0A:99:BF:00:6B:71
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27B36298
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xr4XdYIiKZ9X5oOJLZUKmb8Aa3E.roa
Signing time: Sat 01 Jan 2022 16:08:38 +0000
ROA not before: Sat 01 Jan 2022 16:08:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50043
IP address blocks: 93.170.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666067608 (0x27b36298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ebe17758222299f57e683892d950a99bf006b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:80:a5:5b:5e:c9:5e:31:78:8e:fc:8f:ce:
1b:97:13:68:6d:79:4b:48:53:ef:40:f6:96:4d:6a:
2c:b6:04:84:79:c2:db:db:40:bb:31:0d:3e:00:99:
99:ac:48:2f:d9:a6:4f:9a:e4:e7:93:f6:f8:2a:81:
ad:4a:31:ce:ae:a1:39:2b:f2:46:8a:32:af:b6:fe:
38:fe:21:4a:f5:ab:f5:cd:02:d7:fa:63:04:07:ae:
ce:d7:a7:09:cc:5c:83:4f:71:5f:9f:34:93:4e:ba:
14:f8:8f:ed:8e:da:7b:0d:21:39:4d:4b:d3:13:26:
6c:ab:90:5f:74:d8:51:22:b3:27:a3:07:86:e2:ca:
8d:8f:25:f6:fb:2e:f6:57:c8:d4:b7:91:92:fe:01:
ef:6e:b3:68:12:2c:36:9b:4b:9d:e3:fa:b3:d3:9b:
2a:2f:fe:e0:aa:11:0d:d9:71:55:0f:d2:e5:84:6e:
37:c5:5d:c8:32:56:fe:15:1d:5c:7d:c4:cd:06:bd:
a4:b1:35:8c:8c:fb:7c:f7:00:94:d0:64:46:42:a8:
11:cf:8e:ac:26:8d:df:b2:c2:a6:59:a3:9b:ec:cc:
97:aa:f9:c0:20:bc:ad:0b:1b:ae:56:70:12:03:54:
1b:2b:51:b5:50:64:a3:4e:42:95:f9:ae:12:19:ed:
32:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:BE:17:75:82:22:29:9F:57:E6:83:89:2D:95:0A:99:BF:00:6B:71
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xr4XdYIiKZ9X5oOJLZUKmb8Aa3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.136.0/23
Signature Algorithm: sha256WithRSAEncryption
72:33:56:42:bc:a2:4b:77:e4:4e:26:bb:01:08:02:90:5d:d9:
ef:3e:e6:ac:78:a1:78:b9:e4:56:8b:2e:0b:93:ed:6d:5f:4c:
fa:a2:62:a1:de:ed:58:07:87:c4:1c:cb:eb:a7:70:cc:4e:84:
b0:3e:60:90:aa:ed:dc:00:78:5b:79:7e:9b:b6:11:1d:ec:e5:
a4:34:1c:ff:14:cc:26:2e:62:9b:10:2c:bd:02:d1:e2:a6:77:
1e:bd:a3:25:29:ae:46:a1:ea:ad:59:eb:a7:94:b2:fd:be:13:
f9:12:98:4d:e8:75:ee:c8:79:15:93:e2:95:70:48:82:98:1c:
1e:b9:50:dc:96:26:d6:ab:5d:f0:c2:a9:aa:4a:0f:c9:70:3d:
60:28:e9:85:0a:e6:90:49:53:ee:f5:76:2b:25:4e:42:48:de:
97:75:8b:0e:40:aa:89:4b:ba:da:55:21:67:0f:73:7d:ec:19:
5a:ce:20:aa:ed:c3:23:07:40:c8:b0:32:f5:16:90:bf:20:00:
21:3b:0c:0a:97:0f:bc:02:87:81:59:f3:65:51:ed:70:c7:d7:
c6:8b:ed:39:9e:1c:b1:ba:f2:86:7a:b3:7e:fe:45:1e:97:c6:
76:b4:2a:90:de:a3:09:45:73:e7:5d:e5:c1:ed:c1:08:56:01:
58:40:7b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:09 2025 by rpki-client