Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eXtw1BcwTvZf66xs6e56aFRhn48.roa
File: eXtw1BcwTvZf66xs6e56aFRhn48.roa (raw, json)
Hash identifier: 88r0xzQeZjT+0dPU+ud1OG6qwZwuLWMBka08uflzPx4=
Subject key identifier: 79:7B:70:D4:17:30:4E:F6:5F:EB:AC:6C:E9:EE:7A:68:54:61:9F:8F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28173F4E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eXtw1BcwTvZf66xs6e56aFRhn48.roa
Signing time: Sat 01 Jan 2022 16:09:35 +0000
ROA not before: Sat 01 Jan 2022 16:09:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62447
IP address blocks: 93.170.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672612174 (0x28173f4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=797b70d417304ef65febac6ce9ee7a6854619f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:af:bf:0b:1d:e4:b9:62:3e:0b:d8:7d:86:64:
c9:1e:08:4d:67:83:b6:a0:db:fc:cd:3c:6e:e5:60:
4c:89:60:f3:e5:a4:e4:0c:96:3b:a9:ec:c0:59:38:
cc:4a:11:cf:f9:5d:52:7b:a4:d5:3d:31:6d:5f:4d:
d1:10:93:b9:f6:ef:c2:83:e0:e5:07:0c:5c:c5:79:
59:fc:1c:8f:14:a9:35:cb:65:7c:9a:84:6e:7a:b6:
18:c0:e2:af:55:25:48:41:3f:42:66:d8:69:c6:1c:
cc:e4:87:56:bb:a2:e7:d5:e3:36:e5:d9:8c:c4:bd:
cd:76:50:81:26:52:d3:10:09:41:d2:02:45:31:16:
91:2a:e9:82:0c:b9:99:8f:9e:8c:57:c5:96:bd:6d:
86:43:9e:db:8f:5b:ea:c5:d0:fa:56:ad:2d:76:89:
65:73:b8:06:c0:9a:6c:48:44:50:55:2a:d4:47:c6:
b0:02:0e:23:bd:3a:db:e7:37:6e:1e:e8:16:db:c3:
63:06:ca:09:56:19:db:0f:96:57:d5:28:f6:d8:da:
ff:bd:a9:36:0c:a1:7b:24:26:10:da:03:ea:41:31:
39:c0:4f:5a:27:a8:47:f4:f5:0f:94:bb:c1:fb:b7:
0f:d1:67:3a:d5:c7:a4:0d:19:96:61:91:44:63:e5:
b6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7B:70:D4:17:30:4E:F6:5F:EB:AC:6C:E9:EE:7A:68:54:61:9F:8F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eXtw1BcwTvZf66xs6e56aFRhn48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.11.0/24
Signature Algorithm: sha256WithRSAEncryption
60:9a:e6:a6:61:dc:ba:1c:c7:a6:0c:37:4c:70:3b:b1:0d:98:
85:35:e0:c4:c1:9b:18:ac:0e:c3:03:c7:fd:98:87:ac:f1:df:
2f:e4:d1:37:3e:93:f1:ab:db:8c:f9:01:21:8c:8c:6c:e3:14:
ab:3e:cd:99:8e:6b:b8:99:d2:f9:9b:73:e6:7b:71:6d:21:d0:
43:db:e8:57:69:9d:a0:8c:6a:6e:27:59:f8:81:16:26:d0:32:
e6:6c:18:df:fb:09:0e:17:4e:2b:a6:bf:39:be:16:0a:5d:09:
6d:f8:06:7a:a3:22:9f:db:7b:62:45:95:76:1e:aa:9d:63:f2:
41:2a:93:3f:ee:06:46:09:7d:d8:33:da:ec:f6:e7:46:ee:24:
2f:ae:a4:1a:ea:6d:53:32:44:a2:cf:e4:53:04:7d:22:71:a5:
2e:81:25:9c:cc:19:13:44:43:76:03:27:ac:b8:17:92:e0:e6:
02:a5:2c:7d:9f:7e:4d:e9:9d:84:19:f2:86:53:89:9a:66:c3:
26:01:f9:e8:6d:79:fd:2b:1e:46:cc:19:93:c8:e3:fc:91:db:
b2:c3:fe:50:82:15:67:0c:b9:13:63:f1:50:ad:87:79:7c:91:
80:50:00:67:ce:82:7f:2b:d1:9c:d9:98:f3:ec:05:9b:ec:7c:
3e:ac:92:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-fra.rpki-client.org