Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aBfT19coumBJ6IDjXq7RqPE-X3A.roa
File: aBfT19coumBJ6IDjXq7RqPE-X3A.roa (raw, json)
Hash identifier: uqZv3aUfP/YRwywUPSib42ovuh9JtKhBW9geADIFc/c=
Subject key identifier: 68:17:D3:D7:D7:28:BA:60:49:E8:80:E3:5E:AE:D1:A8:F1:3E:5F:70
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E72738
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aBfT19coumBJ6IDjXq7RqPE-X3A.roa
Signing time: Sat 01 Jan 2022 16:09:05 +0000
ROA not before: Sat 01 Jan 2022 16:09:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59825
IP address blocks: 93.171.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669460280 (0x27e72738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6817d3d7d728ba6049e880e35eaed1a8f13e5f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c7:49:24:79:6c:ac:9a:fc:5c:f1:8f:ea:ae:
54:53:92:50:91:d6:ea:28:d3:a7:6c:61:71:95:81:
8e:85:55:d2:74:7a:22:62:c3:53:1d:f3:ca:48:4e:
00:42:bb:62:41:bf:25:33:e7:d0:30:93:cc:b6:64:
48:0a:69:5f:6e:59:06:7d:6c:b2:9b:a5:f3:1a:26:
3a:bc:43:75:d3:f5:b1:80:09:93:7f:c8:6e:cd:77:
a2:70:b2:64:05:3d:c7:8e:a6:3d:91:1a:bd:06:f7:
94:a5:dc:29:99:fc:35:8d:86:9f:2c:cc:09:7d:77:
77:80:ea:57:46:1c:01:09:b5:2c:3c:c8:d3:54:6f:
ff:a9:4d:ea:e2:92:ba:22:09:10:1c:d5:f2:02:3c:
f8:05:c7:4a:ae:a1:11:62:05:d3:0a:1d:b6:ea:4a:
52:e3:42:06:70:59:cb:7c:ec:8b:4d:72:11:80:8b:
7e:21:71:8a:e3:87:78:15:fa:c5:20:f7:5a:68:af:
6f:aa:4c:c2:58:05:49:35:d5:5b:63:1a:a9:78:99:
6f:ca:b7:33:6b:4d:f8:eb:a9:4c:8e:fd:17:d3:ed:
f8:f2:0b:30:43:5e:0c:e4:cc:02:01:16:9f:d1:5a:
f1:40:ee:74:c0:d9:a9:7a:b1:00:61:ce:e2:e7:f8:
1f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:17:D3:D7:D7:28:BA:60:49:E8:80:E3:5E:AE:D1:A8:F1:3E:5F:70
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aBfT19coumBJ6IDjXq7RqPE-X3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.173.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d3:97:d6:15:af:43:bc:a1:3b:e7:0d:7a:5c:bf:05:bf:59:
de:68:ec:e5:ec:76:09:32:10:d0:87:56:e8:72:ed:2b:b2:0b:
32:da:6b:69:67:70:43:f1:cf:85:15:8e:49:41:ee:10:34:7d:
26:43:3c:06:16:b1:49:8d:ec:61:d3:52:43:c2:f9:cd:63:bd:
05:cd:23:06:3e:74:cb:10:78:11:02:60:65:da:e5:c0:a5:01:
b0:fd:86:f6:f6:f1:be:51:fa:fa:7d:a8:43:69:04:28:52:84:
ad:de:3e:17:a7:89:39:09:de:1c:93:2b:53:7c:15:77:66:d7:
89:ee:2b:2b:d2:f4:0f:06:d1:bb:09:71:6b:c6:16:2e:ef:49:
04:e2:17:14:9f:a7:c5:7b:fa:e7:e3:5d:7c:fd:55:29:32:5c:
1d:2d:c0:bb:85:5b:00:17:89:2a:fb:b4:c1:82:16:f5:c7:b9:
7b:da:23:47:5e:82:71:73:c3:64:6e:f0:83:d0:32:1c:46:06:
c5:ea:07:1f:fe:f9:3f:cb:1d:6a:36:19:e6:62:e8:d7:c7:a8:
dd:c1:fe:1c:34:ab:b9:16:03:23:ca:4b:18:55:eb:df:68:b3:
90:94:01:aa:36:ce:a2:fa:19:88:cc:17:b9:80:0e:21:df:60:
da:56:83:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org