Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/f4YnGkij0OsXOBfsrGzKIHsx8_w.roa
File: f4YnGkij0OsXOBfsrGzKIHsx8_w.roa (raw, json)
Hash identifier: +mqIRN1OnfxMoxN0Bs73Tv9d7gazAcplLd5aPeeuyAI=
Subject key identifier: 7F:86:27:1A:48:A3:D0:EB:17:38:17:EC:AC:6C:CA:20:7B:31:F3:FC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28F9C303
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/f4YnGkij0OsXOBfsrGzKIHsx8_w.roa
Signing time: Thu 24 Feb 2022 09:14:18 +0000
ROA not before: Thu 24 Feb 2022 09:14:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212205
IP address blocks: 93.171.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 687457027 (0x28f9c303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 24 09:14:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f86271a48a3d0eb173817ecac6cca207b31f3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:c9:61:ca:7f:0e:20:0d:3d:bd:fa:c6:cd:
58:88:30:09:3b:85:21:15:41:f5:80:21:a9:db:e8:
7a:af:e5:40:60:ae:6c:35:e6:ce:06:64:88:b2:31:
69:3f:a3:5b:8d:3c:86:67:1d:1d:71:f1:7c:88:42:
c4:20:34:6e:36:a7:1d:3e:82:d7:70:2b:55:9a:ed:
70:e6:35:98:58:8e:b8:5d:bb:79:27:85:ac:5a:13:
32:6c:8d:29:b9:ff:03:b7:c8:a8:c3:e8:f0:81:d8:
44:be:88:0a:33:8c:8c:ee:41:9c:4f:36:2f:17:5e:
e0:61:aa:33:3c:99:b0:a4:16:11:3f:0d:99:8a:93:
12:bd:1b:c5:fe:eb:5d:40:57:49:9b:10:da:06:1a:
4f:6f:fc:55:81:79:f2:a1:72:2e:36:c7:be:28:91:
43:f4:ac:2b:0b:29:45:df:93:32:e2:d6:21:d3:da:
3b:99:92:b4:4f:9e:88:aa:46:d9:3d:a0:06:48:9e:
08:28:a1:d7:95:f0:ad:5f:a5:9d:02:2c:b1:9c:df:
1a:88:42:59:1e:d4:e5:cb:c5:e7:7f:3a:1f:f4:af:
20:3e:36:f1:99:9c:5f:30:78:a5:ed:4c:f5:f8:1e:
80:69:41:23:24:77:ad:89:76:ab:29:c3:fe:b6:ab:
5c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:86:27:1A:48:A3:D0:EB:17:38:17:EC:AC:6C:CA:20:7B:31:F3:FC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/f4YnGkij0OsXOBfsrGzKIHsx8_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.155.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:f1:19:62:b9:e9:34:fc:e6:c7:87:ca:8a:e8:78:71:ca:fc:
11:61:ae:b2:df:ed:02:f6:38:9d:f5:5d:f0:32:5c:f2:6f:1f:
22:40:0f:ec:c7:a6:19:e5:ab:a8:5c:11:e3:9d:2f:87:5c:75:
83:d0:39:6c:d3:b8:bb:9e:f8:5d:f9:7b:98:86:88:9b:1c:bc:
3c:04:fb:ce:a9:22:01:07:04:7f:02:23:24:61:ab:7c:4c:64:
6a:d8:c2:f2:69:49:f7:86:f1:07:f0:3c:d0:ea:0f:91:c4:ac:
8e:58:33:1b:de:d6:0e:6d:fa:5e:06:f1:44:a6:d9:b7:bc:f0:
f4:8a:6c:a9:05:a9:ee:e7:c8:e5:64:27:fa:29:57:6c:39:46:
c2:c8:f7:8d:68:b3:d0:cd:05:0b:1b:e9:16:0b:07:71:97:09:
9a:61:36:70:68:4b:ac:9e:45:2e:bf:a9:c2:9e:46:13:0a:01:
fb:f3:e7:88:bc:ba:f0:ef:cf:57:26:a9:bc:a7:51:0e:46:6c:
96:06:5a:78:98:12:b7:22:e9:40:21:30:b8:20:2b:fa:54:d9:
68:a2:c8:3c:6c:70:3a:dc:65:26:a2:3c:52:b2:f2:24:2f:55:
7d:35:3a:3f:4b:35:fd:bf:49:19:a3:93:c0:79:17:d1:54:42:
45:f2:40:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org