Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/n7p7ZLqc5alMpFUBvLEZw-NE8Qw.roa
File: n7p7ZLqc5alMpFUBvLEZw-NE8Qw.roa (raw, json)
Hash identifier: gmzie/iaxWQgBsjrNsGunTPIPQU1Rx23dfDD78FmkQo=
Subject key identifier: 9F:BA:7B:64:BA:9C:E5:A9:4C:A4:55:01:BC:B1:19:C3:E3:44:F1:0C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28653772
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/n7p7ZLqc5alMpFUBvLEZw-NE8Qw.roa
Signing time: Sat 01 Jan 2022 16:10:24 +0000
ROA not before: Sat 01 Jan 2022 16:10:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213182
IP address blocks: 93.170.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677721970 (0x28653772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fba7b64ba9ce5a94ca45501bcb119c3e344f10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:35:56:5e:04:ce:05:0f:3f:b2:73:47:4d:
4e:45:ac:e3:98:75:a9:98:dd:8d:4d:af:b5:76:db:
55:f5:b1:ff:2f:f8:03:e5:0a:26:e6:fa:09:9e:44:
2a:df:89:6f:03:08:72:08:f8:9d:22:78:1a:69:7a:
d7:3d:c6:ac:b7:32:65:af:bc:98:b9:36:25:7b:31:
2b:a2:5b:58:56:70:e2:45:65:99:c4:10:a1:8e:8d:
f5:18:7b:14:42:2c:03:3e:01:44:20:cd:8d:d1:8e:
c1:e6:8b:ed:d9:f5:f3:ee:e0:2d:e3:68:d5:dd:52:
59:20:e1:ca:8d:4e:bf:8d:fd:fb:ca:88:7d:c0:4d:
d2:5a:c9:16:90:9f:9d:57:e6:0d:2a:06:42:0c:05:
77:bb:79:98:f7:06:fb:8d:07:58:c0:bb:a1:7e:be:
9b:dd:9e:3b:55:a2:02:ee:d8:c3:75:f7:6d:fc:c9:
bc:74:15:52:d9:0d:7f:93:3b:24:d4:86:dc:b5:b8:
83:81:fd:19:3e:d2:b0:7f:49:5f:2b:69:8a:3b:49:
50:20:71:58:36:9a:12:8d:32:70:af:0c:a2:49:1a:
64:b4:e0:ee:13:9e:69:ed:2f:59:cb:ea:09:8b:7e:
80:f8:0b:8c:07:57:1e:fd:e7:55:5d:1d:be:c0:0c:
cc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BA:7B:64:BA:9C:E5:A9:4C:A4:55:01:BC:B1:19:C3:E3:44:F1:0C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/n7p7ZLqc5alMpFUBvLEZw-NE8Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:df:bb:32:1f:67:c6:77:e3:77:fa:54:90:45:84:89:18:79:
9e:11:1f:c1:19:e3:3d:3d:5b:18:69:11:85:b2:3d:9e:d4:62:
d0:c8:a3:41:46:f0:a3:f0:c1:aa:96:23:05:8a:b7:a5:be:6d:
8b:1a:ef:97:d7:9d:0f:2e:d9:bb:45:64:de:3b:16:ba:9f:e1:
5b:9f:92:16:8c:21:71:8f:93:33:b4:84:e7:0c:b0:34:20:46:
e9:15:13:58:45:c1:43:d4:8a:b3:48:7e:7b:c9:13:3a:74:19:
1e:d1:22:82:4f:d4:da:d6:6b:d5:66:2f:e3:79:11:cd:68:e8:
73:03:d3:96:cd:89:02:75:4b:b1:73:4b:08:76:39:80:ce:e1:
3a:16:91:7d:df:cb:1c:a9:41:73:a0:17:44:1b:a6:9b:78:66:
ce:2d:5d:22:60:03:91:cf:69:5f:b8:96:f3:5f:ac:b9:41:ac:
36:c4:e9:9c:19:ae:19:d4:c8:a4:13:a9:09:43:a7:2a:b1:68:
e4:1f:68:58:a9:e0:8c:7e:56:ea:bd:c5:5c:79:47:ea:df:19:
b6:f7:a9:bc:3a:b1:17:27:38:9c:1e:49:bf:aa:8b:6e:45:06:
75:1b:fe:7e:4b:1c:f6:e9:09:27:6c:f0:3d:68:24:7f:40:f8:
78:a3:a7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-fra.rpki-client.org