Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lG2hryPY0ejPhp30toLzDNaJ4DI.roa
File: lG2hryPY0ejPhp30toLzDNaJ4DI.roa (raw, json)
Hash identifier: wFK4tv2CWIuqmEMsafzRAWQdNSdt98hYnM5WHfCOB9M=
Subject key identifier: 94:6D:A1:AF:23:D8:D1:E8:CF:86:9D:F4:B6:82:F3:0C:D6:89:E0:32
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28404671
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lG2hryPY0ejPhp30toLzDNaJ4DI.roa
Signing time: Sat 01 Jan 2022 16:09:57 +0000
ROA not before: Sat 01 Jan 2022 16:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207896
IP address blocks: 93.170.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675300977 (0x28404671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=946da1af23d8d1e8cf869df4b682f30cd689e032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a7:fd:d3:d5:7d:e1:51:43:8d:23:2a:c7:0d:
8a:c2:38:a8:e9:96:22:95:85:37:41:36:1e:a1:9c:
23:b3:ed:f2:12:b7:96:6b:66:cb:58:e8:f9:86:66:
17:2b:fc:c3:64:4f:49:2b:4f:1b:37:73:5e:66:93:
39:54:bd:69:e4:8e:02:e7:56:17:0d:34:cd:50:bf:
13:01:a1:a4:64:e2:ec:19:b9:d8:34:9f:aa:90:eb:
fa:5d:4d:cb:20:37:57:95:b5:7b:b0:b4:a6:34:9e:
85:ec:1f:e7:53:88:25:9d:49:c2:60:01:7a:79:64:
2a:0d:71:ea:ad:85:1b:52:24:06:03:37:6f:89:56:
24:3a:4e:74:4b:dc:c8:b0:f4:28:9b:20:1b:14:d1:
30:4b:2d:50:e4:fe:45:b2:88:91:d6:77:9c:66:4e:
ef:23:1d:d3:e8:21:f0:95:5b:6e:5c:2f:5b:2b:30:
67:28:57:e6:79:63:f9:5b:3b:da:e7:a5:0f:ba:77:
89:84:dd:0c:44:32:14:d5:4c:9e:7a:3f:a4:a0:fe:
65:4d:dd:90:60:c0:93:28:42:21:d8:42:74:84:a9:
f9:3c:87:b8:c7:08:84:50:cc:56:d3:27:ce:a0:bb:
1d:93:11:c0:52:98:01:2b:38:d4:82:24:c2:16:c3:
c1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6D:A1:AF:23:D8:D1:E8:CF:86:9D:F4:B6:82:F3:0C:D6:89:E0:32
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/lG2hryPY0ejPhp30toLzDNaJ4DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.13.0/24
Signature Algorithm: sha256WithRSAEncryption
25:b5:af:12:4c:83:cf:53:9b:b9:8f:7c:f4:12:42:ed:68:ed:
e8:89:97:6e:fb:8b:58:9c:4b:3d:23:e4:08:2d:72:71:8b:9f:
aa:fb:59:0d:84:e8:2c:c4:90:8c:02:d9:da:f9:24:b7:a5:b5:
fd:4a:0f:0c:37:ed:6d:f2:d1:f0:60:a9:e4:6a:4c:a5:ca:6e:
87:10:f4:e5:03:eb:85:e7:cb:ec:20:89:2c:79:45:b8:17:a9:
fd:c3:55:3e:98:85:ce:93:b9:ce:3e:a8:9c:86:d2:42:97:66:
e9:fc:16:77:7c:7e:28:0d:85:19:0d:90:13:ec:29:de:e3:70:
d8:41:ed:07:62:9e:27:85:76:1a:c7:3a:1d:c0:ba:c4:27:f3:
89:56:10:24:1d:75:8f:66:01:5b:93:ee:3c:30:97:be:8f:b7:
da:6a:9e:6f:3e:79:59:40:39:ec:c6:4a:31:99:da:c2:de:f2:
9b:35:29:1a:02:cf:c4:2e:9b:c5:3c:24:17:2c:18:88:01:23:
67:c6:8c:ab:79:df:06:7e:30:2c:68:75:8a:56:d2:63:52:6b:
0e:16:40:95:f4:25:57:d8:57:5e:ba:ce:00:2e:e6:68:00:74:
74:2f:9a:88:1f:9b:6c:d7:f9:60:81:4d:f2:05:21:8f:dc:f5:
dd:4d:a1:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKEBGcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQ2ZGExYWYyM2Q4
ZDFlOGNmODY5ZGY0YjY4MmYzMGNkNjg5ZTAzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWn/dPVfeFRQ40jKscNisI4qOmWIpWFN0E2HqGcI7Pt8hK3
lmtmy1jo+YZmFyv8w2RPSStPGzdzXmaTOVS9aeSOAudWFw00zVC/EwGhpGTi7Bm5
2DSfqpDr+l1NyyA3V5W1e7C0pjSehewf51OIJZ1JwmABenlkKg1x6q2FG1IkBgM3
b4lWJDpOdEvcyLD0KJsgGxTRMEstUOT+RbKIkdZ3nGZO7yMd0+gh8JVbblwvWysw
ZyhX5nlj+Vs72uelD7p3iYTdDEQyFNVMnno/pKD+ZU3dkGDAkyhCIdhCdISp+TyH
uMcIhFDMVtMnzqC7HZMRwFKYASs41IIkwhbDwQkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSUbaGvI9jR6M+GnfS2gvMM1ongMjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L2xHMmhyeVBZMGVqUGhwMzB0b0x6RE5hSjRESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2qDTANBgkqhkiG9w0BAQsFAAOC
AQEAJbWvEkyDz1ObuY989BJC7Wjt6ImXbvuLWJxLPSPkCC1ycYufqvtZDYToLMSQ
jALZ2vkkt6W1/UoPDDftbfLR8GCp5GpMpcpuhxD05QPrhefL7CCJLHlFuBep/cNV
PpiFzpO5zj6onIbSQpdm6fwWd3x+KA2FGQ2QE+wp3uNw2EHtB2KeJ4V2Gsc6HcC6
xCfziVYQJB11j2YBW5PuPDCXvo+32mqebz55WUA57MZKMZnawt7ymzUpGgLPxC6b
xTwkFywYiAEjZ8aMq3nfBn4wLGh1ilbSY1JrDhZAlfQlV9hXXrrOAC7maAB0dC+a
iB+bbNf5YIFN8gUhj9z13U2hsw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:33 2025 by rpki-client