Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/hDIqDMkf_SRZva6Moj4qGHKYkFM.roa
File: hDIqDMkf_SRZva6Moj4qGHKYkFM.roa (raw, json)
Hash identifier: /xF75wiZgyQnj+hHS3vOTvg60u2GGCz8WnDcWZ9Fyh8=
Subject key identifier: 84:32:2A:0C:C9:1F:FD:24:59:BD:AE:8C:A2:3E:2A:18:72:98:90:53
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2759D13E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/hDIqDMkf_SRZva6Moj4qGHKYkFM.roa
Signing time: Sat 01 Jan 2022 16:07:49 +0000
ROA not before: Sat 01 Jan 2022 16:07:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9058
IP address blocks: 93.170.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660197694 (0x2759d13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84322a0cc91ffd2459bdae8ca23e2a1872989053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e9:51:ce:52:e6:0c:a5:e1:12:e7:0c:dc:b5:
e6:b4:c2:ef:64:8b:0f:63:02:37:23:ec:13:69:21:
6a:25:26:af:5e:de:c2:3c:25:14:a1:44:49:70:02:
41:44:12:f9:c1:d5:55:88:52:4e:21:4f:30:3b:cc:
56:10:16:04:44:1e:1a:cd:e4:6a:4d:79:8f:38:d4:
b0:38:94:3a:eb:e2:b3:cd:52:89:92:19:8d:89:f9:
30:a4:61:f1:fb:d2:f3:d0:b9:a7:a2:61:4c:37:11:
0d:a5:56:9e:d4:db:6a:3a:94:5d:27:c4:c8:f9:26:
f2:a9:19:5a:3c:72:08:09:ef:54:31:18:1b:dc:21:
02:8e:ae:b5:70:dd:32:21:f2:77:54:8f:ee:1a:d0:
ed:a7:45:a2:d4:85:4e:69:4f:f6:7f:81:1c:53:0f:
2c:c2:97:c6:da:18:8b:ff:73:4d:d4:0d:56:ae:f6:
ce:08:4a:3b:41:9f:6c:70:73:18:89:81:3e:cc:93:
3a:93:94:d6:00:a5:6f:18:e7:8c:42:24:e8:79:ac:
68:f8:02:d9:af:97:a5:a1:e6:f4:3d:7b:96:c0:c5:
14:13:9f:de:a2:de:f0:26:a9:a1:e9:54:05:2d:8f:
cb:bd:c9:5d:c5:ab:31:e0:96:84:0b:0d:b3:df:1d:
99:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:32:2A:0C:C9:1F:FD:24:59:BD:AE:8C:A2:3E:2A:18:72:98:90:53
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/hDIqDMkf_SRZva6Moj4qGHKYkFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.245.0/24
Signature Algorithm: sha256WithRSAEncryption
25:4b:e1:bb:a6:96:c7:ce:c5:ee:c1:cc:9f:ed:48:a2:24:30:
79:b0:34:52:4a:5f:12:62:1f:a8:ad:fb:b4:48:99:45:d3:6c:
58:ae:10:a1:4d:74:98:4a:1d:5c:a0:2f:f2:30:e7:b8:66:c1:
e9:af:3c:50:99:27:f1:48:e9:c3:94:a3:81:36:d5:41:a2:08:
94:58:55:2b:f9:af:72:00:60:aa:38:c6:95:a2:46:e0:35:9c:
8f:c8:f7:64:b0:99:b4:52:6b:39:19:82:c0:a5:e7:f4:b1:a3:
64:0b:87:10:b9:f5:48:09:89:94:92:aa:c5:7b:b0:07:87:3b:
c3:94:b9:c9:ba:0c:e4:d3:38:37:08:21:02:47:8f:39:dc:d8:
76:1e:13:b2:8a:a9:4c:8c:d5:35:d7:38:29:98:bc:92:7e:02:
42:b9:2b:ba:cf:e2:40:c1:0a:4d:03:c8:bc:75:38:c5:53:b7:
8f:af:0c:8e:6e:c4:e4:6c:2e:0f:d5:dd:a9:55:4f:35:9f:a1:
c1:b7:3d:a2:62:4c:22:a8:2c:00:12:44:8e:72:2a:25:6b:b3:
2e:31:b7:dd:41:ff:0e:11:87:9d:c3:85:8a:ee:81:8f:9e:aa:
35:a6:1f:58:87:5e:e9:1e:00:ea:8e:90:53:b6:a8:84:10:76:
72:fe:68:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:27 2025 by rpki-client