Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/l06IL13ot8jUboT09W662D2IuRE.roa
File: l06IL13ot8jUboT09W662D2IuRE.roa (raw, json)
Hash identifier: ezhNjuRyepFZUBdBm8QcYmOX7/FdfIrXQoU1RglHTcE=
Subject key identifier: 97:4E:88:2F:5D:E8:B7:C8:D4:6E:84:F4:F5:6E:BA:D8:3D:88:B9:11
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28111768
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/l06IL13ot8jUboT09W662D2IuRE.roa
Signing time: Sat 01 Jan 2022 16:09:32 +0000
ROA not before: Sat 01 Jan 2022 16:09:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62314
IP address blocks: 93.170.190.0/24 maxlen: 24
92.38.32.0/24 maxlen: 24
146.120.91.0/24 maxlen: 24
92.38.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672208744 (0x28111768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=974e882f5de8b7c8d46e84f4f56ebad83d88b911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9e:bc:8a:e6:0f:1e:c0:54:b5:5a:51:18:fc:
68:16:16:a0:ee:70:9d:40:c4:f9:d4:85:23:9a:7d:
68:ef:ef:63:17:f5:71:d5:13:a1:93:90:d6:f6:5b:
05:61:d5:e6:37:8c:1e:b5:7b:41:d0:af:2b:23:d3:
1a:fe:79:cc:6e:b7:d7:31:7d:89:c6:b9:b4:c7:d4:
a8:fd:ad:7c:87:73:5e:6c:ca:18:22:d5:03:58:3d:
c8:39:e8:f8:54:ee:4d:a4:81:94:75:09:0a:c1:56:
85:46:78:3f:36:ec:3f:9b:6e:d5:46:14:98:e9:dd:
c2:21:32:a4:e2:17:85:b3:ba:b4:50:a0:43:8e:a8:
e6:23:04:44:92:a1:45:4b:0b:09:1a:00:18:45:dd:
29:25:77:4e:48:9f:ea:b2:3d:a6:d7:06:1b:52:60:
67:04:56:53:05:2a:5e:29:2e:54:53:ca:ce:d5:25:
27:f5:e2:72:fa:8c:b4:b2:e1:8b:3c:9c:df:c9:85:
3b:51:16:f2:cf:1f:d2:b8:db:87:48:8b:5a:f9:74:
30:a7:48:26:4b:bd:62:75:52:2d:77:9b:50:21:8c:
03:c6:ec:8c:80:4c:22:4a:5d:1f:33:d8:4c:ee:36:
2b:b2:67:26:79:94:f5:64:89:08:c3:26:c7:f8:74:
08:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:4E:88:2F:5D:E8:B7:C8:D4:6E:84:F4:F5:6E:BA:D8:3D:88:B9:11
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/l06IL13ot8jUboT09W662D2IuRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.32.0/24
92.38.95.0/24
93.170.190.0/24
146.120.91.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f6:de:77:c8:d6:d0:ef:ac:cb:4a:12:54:09:ac:4e:76:05:
47:c6:71:58:8c:ab:70:dd:f2:86:bb:98:21:48:0f:3e:6d:f7:
91:6f:ae:d4:3f:ff:11:dc:7d:b0:3e:fa:36:13:23:8a:60:70:
31:41:41:fe:20:03:5c:ff:85:5f:d7:26:11:58:48:f2:19:4f:
4d:a1:b4:a8:a9:e7:41:97:f0:b4:ba:07:c6:95:5e:9c:b0:4e:
f7:23:22:ab:0b:98:7d:23:72:82:7d:e7:0d:7d:44:d8:c6:41:
3c:6f:f8:a5:a5:eb:e5:b7:33:55:30:a9:92:df:52:15:9f:fb:
f7:7a:90:94:f0:d9:96:5d:d2:bf:5d:74:6e:d1:45:fe:12:8f:
ed:0e:f4:0f:9b:65:89:f4:c3:9b:38:99:7b:bc:78:ee:03:dc:
52:24:a2:5d:24:ab:94:b6:8f:29:8c:62:99:be:07:8e:0c:28:
2e:0a:05:ff:bf:4f:98:f3:91:80:71:5a:ef:d6:de:87:00:79:
ef:84:d1:4c:60:81:17:04:09:8e:f6:5f:df:04:de:9b:0b:87:
49:7f:76:f2:99:35:fc:ff:b2:21:8e:e6:5a:3f:bf:b2:61:49:
2b:f8:db:79:26:a9:59:29:11:59:e0:cc:0c:de:84:9d:96:4d:
a5:6f:9c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:42 2025 by rpki-client