Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/h-DXNXyRznn6vhTwQYmc8KxxXb8.roa
File: h-DXNXyRznn6vhTwQYmc8KxxXb8.roa (raw, json)
Hash identifier: Jx6+U7sYqqUoXpmWCjejJiYzYyj1E+RniXSRb6TyLug=
Subject key identifier: 87:E0:D7:35:7C:91:CE:79:FA:BE:14:F0:41:89:9C:F0:AC:71:5D:BF
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28142425
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/h-DXNXyRznn6vhTwQYmc8KxxXb8.roa
Signing time: Sat 01 Jan 2022 16:09:34 +0000
ROA not before: Sat 01 Jan 2022 16:09:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62360
IP address blocks: 93.171.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672408613 (0x28142425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87e0d7357c91ce79fabe14f041899cf0ac715dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:45:8a:a5:99:c0:f7:fa:17:d5:d8:41:db:
9f:7a:dc:be:89:00:98:91:84:b9:df:63:c6:43:44:
67:8b:6b:d1:ba:3f:4b:93:39:e9:f8:af:fc:62:eb:
51:7e:09:25:b5:7a:e2:05:dd:ee:26:c3:e8:03:ca:
89:b0:1a:83:19:b5:c4:40:c3:80:96:c5:53:09:c1:
3d:66:10:09:2f:3f:aa:e2:6b:95:65:55:38:4c:b0:
e1:b2:38:a9:48:04:d0:15:82:0d:5c:52:5b:48:7c:
62:89:c9:85:29:f9:8d:56:d9:19:3f:99:23:d8:93:
be:f2:5e:94:e3:5a:14:2b:4e:bb:33:c6:ea:30:65:
7f:93:93:b7:29:19:34:b5:66:54:03:e3:b2:8f:87:
09:49:9a:48:fe:ae:15:4d:58:b7:8b:ba:01:3e:86:
4a:1d:89:bc:fb:0a:59:ff:d5:87:4f:7c:06:e0:81:
ef:16:9b:f4:71:5b:fb:6c:d9:8e:1e:27:df:4a:01:
26:6e:3e:f8:0c:05:8e:9a:ff:e3:17:d6:d0:60:72:
04:b6:23:ac:30:bd:cd:ae:45:a8:a9:7e:8c:d8:90:
f9:a4:45:b3:63:19:6c:75:0b:db:6c:7a:53:a1:e2:
97:a1:6c:b6:65:15:a4:83:32:16:72:96:10:d2:90:
6e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E0:D7:35:7C:91:CE:79:FA:BE:14:F0:41:89:9C:F0:AC:71:5D:BF
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/h-DXNXyRznn6vhTwQYmc8KxxXb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.232.0/22
Signature Algorithm: sha256WithRSAEncryption
71:ec:da:92:8d:42:7c:09:60:f1:1c:c1:75:61:61:1b:9d:88:
30:c1:e4:82:26:1d:7d:65:5e:f3:89:99:48:9f:7f:be:1b:4e:
49:0c:8c:c3:73:34:5b:60:9c:68:44:61:c0:13:f0:b5:16:fd:
ba:02:c0:12:13:51:b1:79:37:97:28:9f:da:a0:24:ea:7a:31:
83:ef:a6:4f:36:a9:67:f9:3c:44:ff:b8:c5:ac:79:a0:6f:5b:
5b:e6:1e:84:26:c6:28:6f:1c:a8:19:53:06:1f:c1:87:a7:07:
90:42:54:57:fe:13:14:08:c6:6f:d7:40:43:2b:f0:0b:fc:d8:
63:74:de:34:02:57:42:c5:f6:c1:cd:a8:c6:51:99:e6:96:a9:
12:e9:fa:24:7f:be:65:40:c4:2b:3a:d3:99:4a:4d:64:49:9b:
1c:f8:75:c0:42:cf:1c:a0:a2:58:a4:dd:e9:b1:c6:9a:0d:ca:
e6:a4:29:8b:d8:1c:8f:6a:73:00:89:19:02:82:c5:34:b9:aa:
37:48:bf:b4:bc:dc:f1:53:12:c4:3f:44:8e:a0:b4:5d:48:40:
a7:cb:a4:92:7d:f2:81:fe:f5:e4:8d:0c:d5:88:70:f5:15:6a:
79:9e:48:b4:30:f6:45:4b:31:a5:ce:0f:2e:d0:90:a5:c2:94:
e7:ab:f7:d2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKBQkJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdlMGQ3MzU3Yzkx
Y2U3OWZhYmUxNGYwNDE4OTljZjBhYzcxNWRiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALeCRYqlmcD3+hfV2EHbn3rcvokAmJGEud9jxkNEZ4tr0bo/
S5M56fiv/GLrUX4JJbV64gXd7ibD6APKibAagxm1xEDDgJbFUwnBPWYQCS8/quJr
lWVVOEyw4bI4qUgE0BWCDVxSW0h8YonJhSn5jVbZGT+ZI9iTvvJelONaFCtOuzPG
6jBlf5OTtykZNLVmVAPjso+HCUmaSP6uFU1Yt4u6AT6GSh2JvPsKWf/Vh098BuCB
7xab9HFb+2zZjh4n30oBJm4++AwFjpr/4xfW0GByBLYjrDC9za5FqKl+jNiQ+aRF
s2MZbHUL22x6U6Hil6FstmUVpIMyFnKWENKQbnUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSH4Nc1fJHOefq+FPBBiZzwrHFdvzAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L2gtRFhOWHlSem5uNnZoVHdRWW1jOEt4eFhiOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl2r6DANBgkqhkiG9w0BAQsFAAOC
AQEAcezako1CfAlg8RzBdWFhG52IMMHkgiYdfWVe84mZSJ9/vhtOSQyMw3M0W2Cc
aERhwBPwtRb9ugLAEhNRsXk3lyif2qAk6noxg++mTzapZ/k8RP+4xax5oG9bW+Ye
hCbGKG8cqBlTBh/Bh6cHkEJUV/4TFAjGb9dAQyvwC/zYY3TeNAJXQsX2wc2oxlGZ
5papEun6JH++ZUDEKzrTmUpNZEmbHPh1wELPHKCiWKTd6bHGmg3K5qQpi9gcj2pz
AIkZAoLFNLmqN0i/tLzc8VMSxD9EjqC0XUhAp8ukkn3ygf715I0M1Yhw9RVqeZ5I
tDD2RUsxpc4PLtCQpcKU56v30g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org