Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j3GpkD45t8rwAz-YIbgg0Xr5wbU.roa
File: j3GpkD45t8rwAz-YIbgg0Xr5wbU.roa (raw, json)
Hash identifier: qQyRpasWGDUr5mjgvEZkwyCzsBoDTEWTXBq2ZwNsUcs=
Subject key identifier: 8F:71:A9:90:3E:39:B7:CA:F0:03:3F:98:21:B8:20:D1:7A:F9:C1:B5
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01880A81F8699CBCBE1237DC4462DD4C2C73
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j3GpkD45t8rwAz-YIbgg0Xr5wbU.roa
Signing time: Thu 11 May 2023 11:11:09 +0000
ROA not before: Thu 11 May 2023 11:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12593
IP address blocks: 93.170.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:81:f8:69:9c:bc:be:12:37:dc:44:62:dd:4c:2c:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 11 11:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f71a9903e39b7caf0033f9821b820d17af9c1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:39:ef:3b:b6:a6:48:dc:83:2b:ad:4d:e4:e4:
ab:aa:76:6e:fa:2e:e7:12:85:6e:aa:c4:2a:b7:87:
9a:70:6e:92:6b:d2:8e:e3:a9:3d:bc:f4:3c:17:83:
c5:1d:cf:b8:a4:db:d7:6a:6d:5c:29:8b:72:88:c3:
95:2b:b3:06:36:61:6d:86:5a:00:f2:7f:c7:6c:d3:
03:05:3b:d4:71:c1:13:41:7f:1b:8d:0b:91:dc:57:
7e:8c:98:69:af:6d:d1:98:42:fb:b1:20:de:a2:b2:
12:7a:40:3d:3b:06:97:95:e3:61:84:e9:93:90:90:
a7:75:ea:87:59:c8:e9:e3:d3:1c:bb:2d:7b:3e:f2:
fb:10:df:d7:30:de:d5:c0:75:63:9d:22:72:ba:b8:
89:19:dd:65:c0:e0:0a:79:89:6d:d4:af:07:88:af:
4e:e3:d0:c3:a0:7c:09:bf:6b:c7:40:33:9e:e6:ad:
bf:2e:1c:ee:2b:c0:45:30:61:d2:15:99:69:99:45:
46:7e:2a:44:b4:49:c5:ff:b6:4e:eb:4a:07:d4:55:
76:5b:60:d0:4c:02:74:12:b4:c2:c1:82:40:2c:e3:
2d:83:f0:c7:3e:92:9c:9c:6f:cb:1a:80:ae:64:b0:
4f:37:45:ba:01:58:a8:bd:a3:50:ad:ac:d4:45:5a:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:71:A9:90:3E:39:B7:CA:F0:03:3F:98:21:B8:20:D1:7A:F9:C1:B5
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j3GpkD45t8rwAz-YIbgg0Xr5wbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.54.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:4b:a4:66:ef:8d:01:11:29:96:49:71:27:45:11:90:c0:92:
d0:81:fd:5c:c3:70:d0:79:32:a0:82:e1:ca:2f:d7:c2:94:63:
a5:3e:d7:45:e3:e0:86:50:69:fc:d1:9f:d7:67:69:98:7a:a1:
5c:c3:8d:58:05:ab:f7:00:ec:aa:6b:86:cd:11:3e:c5:f5:22:
0d:4a:0c:07:f5:40:ee:e4:d8:32:17:66:f4:74:f2:af:fe:c5:
f7:e5:d5:e3:48:e2:d2:e7:91:c8:5c:55:40:22:93:74:45:3c:
ea:c2:31:cb:3c:cd:fa:f2:8f:29:bd:b8:b9:b5:7e:46:57:19:
ab:7b:a3:0e:f2:63:70:7a:a2:63:fe:8c:ac:94:a8:cb:3c:c2:
fc:6c:47:83:31:7c:0f:1c:0d:43:7a:d1:33:9d:48:4c:17:1e:
6c:a1:c9:88:7b:b1:75:d4:3a:09:d6:32:d4:d7:9d:2c:c9:88:
9b:e3:26:dd:08:25:6a:b9:08:d5:a3:56:7f:d0:9e:77:47:a9:
e1:f7:fc:93:24:ca:5a:bb:c0:6d:10:de:17:38:c8:b4:6c:c9:
98:87:f3:8d:51:9b:74:dd:01:8e:27:db:48:01:50:8f:0e:c9:
9d:5e:8b:ca:ce:e3:6e:ef:5d:2e:62:5f:8b:28:73:07:0a:bc:
bd:5a:6e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:48 2025 by rpki-client