Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dMys2lOrya7E4tle6vgD1wBPft4.roa
File: dMys2lOrya7E4tle6vgD1wBPft4.roa (raw, json)
Hash identifier: ATJ9V0bQAAQlF1/NAGhsbFo/f7kHTILvhKjKzuD3fFY=
Subject key identifier: 74:CC:AC:DA:53:AB:C9:AE:C4:E2:D9:5E:EA:F8:03:D7:00:4F:7E:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709528C806842B95BAF648D0BA82A83D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dMys2lOrya7E4tle6vgD1wBPft4.roa
Signing time: Mon 02 Jan 2023 03:45:01 +0000
ROA not before: Mon 02 Jan 2023 03:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44019
IP address blocks: 95.46.157.0/24 maxlen: 24
93.170.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:28:c8:06:84:2b:95:ba:f6:48:d0:ba:82:a8:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74ccacda53abc9aec4e2d95eeaf803d7004f7ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:10:ae:60:37:b7:2b:ed:11:c1:a7:d2:4a:cd:
24:f7:0f:6a:0d:b1:48:fe:ac:ac:68:31:87:8c:08:
70:68:eb:b6:64:f3:fc:2b:1a:62:3a:af:09:4a:af:
18:c8:42:d5:f3:05:b7:8b:02:02:98:3c:b5:92:f3:
4d:eb:8c:97:34:5f:9c:e6:d6:c5:b5:23:8e:d6:04:
7c:fc:00:6f:e3:15:59:3f:19:7f:0b:1b:a6:8e:12:
51:ef:07:74:b3:82:40:6a:f1:a0:55:bc:5b:19:30:
af:cc:25:55:c5:2e:4b:c1:c5:15:bc:a9:34:74:11:
87:ad:f1:81:94:10:e4:e1:3a:d6:df:b8:44:30:fe:
97:3d:e1:ab:13:7d:55:f3:10:9f:e8:b7:2a:9f:19:
da:db:5e:21:03:31:98:78:6c:c6:2b:a4:38:bb:5d:
14:38:63:7e:eb:3d:e5:95:85:e5:29:2c:b4:9c:21:
4c:93:be:66:d1:05:15:42:9b:32:26:6b:34:5c:bb:
77:00:aa:10:54:88:2c:4a:9f:4e:7b:2c:f3:68:39:
21:2a:e8:3e:a4:78:4a:a0:c0:e1:d2:c9:92:55:75:
55:17:17:f2:21:b5:31:82:79:f5:0c:f0:a2:be:7b:
77:98:9c:de:d1:f1:55:1c:46:a9:f2:58:87:10:01:
0a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CC:AC:DA:53:AB:C9:AE:C4:E2:D9:5E:EA:F8:03:D7:00:4F:7E:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dMys2lOrya7E4tle6vgD1wBPft4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.134.0/24
95.46.157.0/24
Signature Algorithm: sha256WithRSAEncryption
03:44:5e:df:93:96:45:5c:1a:e2:c5:a6:3d:39:4a:01:01:90:
dc:0c:e7:e3:9a:55:1f:6c:82:9f:9c:59:92:c2:3c:4f:f4:8c:
f6:e3:29:bc:ab:34:45:33:48:b0:66:09:9d:75:0f:e1:26:c3:
2e:10:32:34:be:a5:8f:5a:42:53:81:5f:39:b2:b4:9a:a5:00:
72:24:f7:99:5d:36:b3:53:c8:79:9c:c8:9d:30:94:9d:4b:44:
a5:93:70:5b:cd:1f:6d:5a:91:74:f0:80:9c:bf:2d:a9:12:44:
c1:24:b5:01:25:15:32:29:28:23:36:7b:c0:88:97:e2:90:c1:
8a:d3:9c:76:72:5e:fa:6f:b4:5d:22:40:c2:72:79:92:1a:2d:
58:ab:94:ad:4b:6a:6b:d4:7c:0f:2e:15:48:83:8f:10:91:2f:
f2:df:5f:aa:f8:61:d2:36:9d:d7:1f:25:75:00:59:ca:c2:e4:
74:e5:f4:64:e7:7b:fd:23:50:34:c1:14:77:30:9b:0d:43:05:
29:eb:b8:bb:e2:c1:a2:ab:21:a0:75:70:fa:16:37:4e:8e:db:
4f:bf:66:02:3c:cd:c7:11:f9:8a:94:91:ae:cd:9d:ee:a1:b2:
8f:1e:1a:f9:70:44:73:df:88:5a:23:01:c5:6c:ec:99:d1:c9:
44:de:84:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:30 2025 by rpki-client