Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nutIGM4jVeapi7I6XWyDvb44mxQ.roa
File: nutIGM4jVeapi7I6XWyDvb44mxQ.roa (raw, json)
Hash identifier: ZpgdE/VmlqggfXYOFJ1BP2kqPQR8vfGtMpgxriA/LF8=
Subject key identifier: 9E:EB:48:18:CE:23:55:E6:A9:8B:B2:3A:5D:6C:83:BD:BE:38:9B:14
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E16803
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nutIGM4jVeapi7I6XWyDvb44mxQ.roa
Signing time: Sat 01 Jan 2022 16:09:02 +0000
ROA not before: Sat 01 Jan 2022 16:09:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59552
IP address blocks: 93.170.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669083651 (0x27e16803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eeb4818ce2355e6a98bb23a5d6c83bdbe389b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:19:7f:76:be:a4:e4:99:34:5c:a3:a9:d9:
0d:2e:a6:72:74:10:d8:b1:26:a9:63:75:3e:52:81:
56:f0:3c:d9:79:91:2f:4d:33:c4:5a:79:ab:4d:be:
3a:a9:a6:44:38:20:43:3f:cd:fa:4e:9c:12:72:4a:
97:c8:9f:5c:33:84:7b:08:a1:8c:0d:28:86:50:12:
15:32:0f:33:58:51:cc:69:69:84:0e:5c:ba:c8:e3:
09:4a:b8:19:59:e1:69:18:20:d0:40:ac:7c:db:7e:
92:8b:5b:dd:79:d3:7a:aa:28:9a:29:82:de:1d:4f:
41:31:34:bf:22:db:3b:89:40:43:33:ff:6c:2b:92:
d8:e4:18:57:3d:d6:d3:0f:ce:40:93:32:93:e3:f6:
00:14:bd:ef:c2:4f:bb:0b:8d:70:62:10:05:1b:5a:
4f:e2:6c:d1:a6:a4:47:50:67:d5:17:c4:12:63:a2:
b7:ed:8a:39:d8:76:59:52:19:0d:18:58:af:54:90:
4c:75:8a:19:bf:53:a8:07:27:4c:3f:37:aa:13:e1:
e6:78:e8:aa:19:4f:e2:8d:72:e1:d8:ea:6b:8a:81:
fe:f0:6c:12:fb:37:1f:17:18:66:0c:b9:4c:35:a5:
08:bd:e1:5e:76:8d:b7:4c:2a:5e:41:78:66:14:02:
bd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EB:48:18:CE:23:55:E6:A9:8B:B2:3A:5D:6C:83:BD:BE:38:9B:14
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nutIGM4jVeapi7I6XWyDvb44mxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.6.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b8:ca:85:9f:d6:d7:d6:a1:c6:28:ff:cf:7f:74:d0:17:16:
62:3e:fb:ff:b3:ab:6c:e1:03:3c:00:a8:4a:9b:28:39:71:b8:
7b:85:a7:50:30:ad:fe:59:3a:88:39:87:a9:b5:ef:46:0b:57:
b5:00:ca:2e:43:97:91:27:42:c8:d3:79:9d:54:69:85:93:54:
7d:41:aa:df:af:c3:52:95:7b:3d:df:01:05:fa:52:28:d9:39:
24:5f:27:0c:a7:d1:d0:bd:f1:b5:46:f5:fa:0e:c8:bd:c5:69:
49:46:a9:6e:9d:d7:58:88:26:3c:96:50:c5:a9:96:d4:05:9c:
62:d2:43:ca:f3:84:9d:07:bf:55:bf:d7:cb:1a:b8:30:7b:15:
52:75:e7:f0:6b:34:5d:b0:34:db:5b:6e:c0:90:c5:93:e7:ee:
6c:41:9e:2e:2c:81:b2:4e:e8:6c:f2:3f:ac:2d:9e:04:42:e5:
40:c4:f1:eb:1a:40:5a:4d:c0:79:a6:93:7a:89:34:98:b6:fa:
42:93:ce:36:ad:03:86:a4:8c:06:89:6e:76:98:77:ff:cb:42:
fe:29:bc:d1:3d:f9:0a:48:0b:f8:e1:79:85:34:71:7d:0d:4a:
76:9f:2e:84:fd:a8:cf:c9:e7:23:6f:ac:3a:0c:86:80:ae:39:
62:9e:af:6e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ+FoAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWVlYjQ4MThjZTIz
NTVlNmE5OGJiMjNhNWQ2YzgzYmRiZTM4OWIxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLQGX92vqTkmTRco6nZDS6mcnQQ2LEmqWN1PlKBVvA82XmR
L00zxFp5q02+OqmmRDggQz/N+k6cEnJKl8ifXDOEewihjA0ohlASFTIPM1hRzGlp
hA5cusjjCUq4GVnhaRgg0ECsfNt+kotb3XnTeqoomimC3h1PQTE0vyLbO4lAQzP/
bCuS2OQYVz3W0w/OQJMyk+P2ABS978JPuwuNcGIQBRtaT+Js0aakR1Bn1RfEEmOi
t+2KOdh2WVIZDRhYr1SQTHWKGb9TqAcnTD83qhPh5njoqhlP4o1y4djqa4qB/vBs
Evs3HxcYZgy5TDWlCL3hXnaNt0wqXkF4ZhQCvbcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSe60gYziNV5qmLsjpdbIO9vjibFDAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L251dElHTTRqVmVhcGk3STZYV3lEdmI0NG14US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2qBjANBgkqhkiG9w0BAQsFAAOC
AQEAA7jKhZ/W19ahxij/z3900BcWYj77/7OrbOEDPACoSpsoOXG4e4WnUDCt/lk6
iDmHqbXvRgtXtQDKLkOXkSdCyNN5nVRphZNUfUGq36/DUpV7Pd8BBfpSKNk5JF8n
DKfR0L3xtUb1+g7IvcVpSUapbp3XWIgmPJZQxamW1AWcYtJDyvOEnQe/Vb/Xyxq4
MHsVUnXn8Gs0XbA021tuwJDFk+fubEGeLiyBsk7obPI/rC2eBELlQMTx6xpAWk3A
eaaTeok0mLb6QpPONq0DhqSMBoludph3/8tC/im80T35CkgL+OF5hTRxfQ1Kdp8u
hP2oz8nnI2+sOgyGgK45Yp6vbg==
-----END CERTIFICATE-----
Generated at Fri Apr 11 23:20:21 2025 by rpki-client