Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k_ooy4Ay1Oj6c5e1UkA7htBLE7s.roa
File: k_ooy4Ay1Oj6c5e1UkA7htBLE7s.roa (raw, json)
Hash identifier: nn8p2DSTGdjxm2JyX8L+ZB/it5a+fEOIdh5xT4bYZjY=
Subject key identifier: 93:FA:28:CB:80:32:D4:E8:FA:73:97:B5:52:40:3B:86:D0:4B:13:BB
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 280167CF
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k_ooy4Ay1Oj6c5e1UkA7htBLE7s.roa
Signing time: Sat 01 Jan 2022 16:09:23 +0000
ROA not before: Sat 01 Jan 2022 16:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61406
IP address blocks: 93.171.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671180751 (0x280167cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93fa28cb8032d4e8fa7397b552403b86d04b13bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:92:b6:ee:1c:c6:eb:da:49:b4:d4:b5:1e:88:
e0:08:55:dd:fe:0a:05:23:d4:07:e9:dd:33:32:43:
02:a8:48:e9:a6:f3:6b:45:3a:c2:9b:4e:dd:72:68:
d2:6c:3c:47:e8:46:d1:00:dd:6e:43:35:78:3c:d1:
01:24:28:d1:ed:79:38:0b:e2:d5:e9:b8:e7:62:74:
86:e2:d4:8a:e9:28:44:3b:f4:a8:19:f0:0c:be:88:
cb:3e:1c:c0:70:98:fe:45:9e:be:39:06:79:a4:39:
37:30:70:25:f3:21:68:cc:9e:f0:62:59:3c:ee:97:
51:fa:a1:66:78:0d:66:69:f5:0d:7b:63:fc:7a:fd:
b3:81:c2:67:68:19:d6:33:cd:7e:97:01:bf:2c:88:
bf:25:b6:e8:66:ff:c1:69:49:9f:93:ab:67:74:0b:
12:5b:70:9f:63:55:b7:5f:54:1d:ee:d7:ea:7f:9b:
87:d9:e4:1b:86:bc:37:72:52:7a:14:96:85:c2:3f:
f2:a0:eb:9c:25:d4:86:a5:55:4a:bd:b6:f9:55:90:
76:5b:e2:f3:d6:4f:05:4e:42:f9:85:01:08:90:2f:
64:65:a0:e6:69:30:56:ac:8b:8d:0b:90:f9:f6:c9:
cd:fa:e5:37:21:8e:75:03:25:31:d2:e5:dd:45:29:
d5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FA:28:CB:80:32:D4:E8:FA:73:97:B5:52:40:3B:86:D0:4B:13:BB
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k_ooy4Ay1Oj6c5e1UkA7htBLE7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.100.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:65:68:c5:b8:41:5e:74:17:52:2e:79:0a:f0:31:86:87:da:
85:9e:c5:52:66:5f:e7:00:0a:ce:63:df:7d:49:7d:e7:ca:d5:
24:ac:65:2d:89:d2:18:ad:85:28:a9:bb:4d:ea:82:90:5b:ce:
9b:21:4a:63:44:aa:c0:2b:ba:71:e4:6b:f1:7d:73:d9:f8:89:
87:f4:3e:89:19:d6:76:c0:e0:53:c1:03:16:79:82:77:c4:05:
e9:dd:72:75:0e:a0:63:d1:1d:06:cd:1c:6b:8b:fb:a7:c4:80:
da:4d:a0:fa:72:07:e7:78:8f:a0:ec:23:02:3c:e4:74:97:00:
74:18:5a:6c:c0:60:7d:fb:09:34:af:0e:06:98:91:95:b1:14:
f4:c7:f5:b1:e0:e8:4b:44:9b:ad:72:ad:86:06:1c:fc:a3:1d:
c3:27:a1:64:ae:49:b8:b4:94:64:67:2b:92:14:f9:2c:79:66:
03:34:c8:42:65:2e:40:37:76:85:39:17:62:b0:6a:76:b5:0d:
88:7c:75:00:c4:0a:8b:73:f2:94:87:fd:4b:5a:1b:2b:68:a0:
0f:3a:40:bc:77:38:53:cc:63:3c:be:89:8e:de:b2:2b:50:d8:
fa:23:98:e1:6f:11:df:bb:36:9f:6c:21:4f:31:5f:02:57:94:
5f:7b:ed:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:31:53 2025 by rpki-client