Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qieiugEHbdmrVi9XmoEfC4RUsL8.roa
File: qieiugEHbdmrVi9XmoEfC4RUsL8.roa (raw, json)
Hash identifier: 8EM6uBlpGQFPYECk1s0l77y2UvUvqHcohVgwD5e4vAY=
Subject key identifier: AA:27:A2:BA:01:07:6D:D9:AB:56:2F:57:9A:81:1F:0B:84:54:B0:BF
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0186088057D1D7D0F11E2E1C61A73E147E2A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qieiugEHbdmrVi9XmoEfC4RUsL8.roa
Signing time: Tue 31 Jan 2023 15:44:34 +0000
ROA not before: Tue 31 Jan 2023 15:44:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202362
IP address blocks: 93.170.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:80:57:d1:d7:d0:f1:1e:2e:1c:61:a7:3e:14:7e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 31 15:44:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa27a2ba01076dd9ab562f579a811f0b8454b0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:49:6b:dc:73:d9:01:80:53:53:e2:30:87:41:
cf:1a:8b:3d:d9:cb:8a:09:9f:33:61:6d:68:75:e4:
64:cc:c6:d3:00:02:95:18:c3:36:65:d1:e4:36:85:
36:0b:df:67:fc:5a:d8:63:ce:3c:a1:8a:c5:f0:d1:
4a:de:63:d8:f9:e0:42:1a:98:f6:70:74:bb:a6:cc:
cd:b2:af:0f:c3:04:a8:17:ad:6a:d9:7c:3d:fe:dc:
ce:a1:df:76:15:28:55:80:e2:12:94:7e:e1:19:06:
f0:eb:03:40:6e:25:c8:8a:fa:e9:67:3c:a7:02:9f:
e4:14:a3:97:a6:a2:60:99:99:f8:9a:db:20:23:04:
19:7e:01:8b:de:79:ea:65:f7:fd:06:67:a7:cd:ec:
7c:4f:3f:00:0a:1c:fe:ef:f0:bc:1e:8e:fa:94:17:
4a:8b:cf:2b:1f:d3:a9:dc:b6:38:97:92:ab:bd:f8:
eb:eb:f2:6b:54:ac:b2:c2:9d:82:8c:80:e0:8e:d7:
0e:24:30:ef:00:09:1a:bb:ec:b0:1c:5f:85:dc:5a:
4b:c6:01:53:56:fa:6d:86:78:b2:bd:da:35:bf:69:
12:ff:a8:89:be:c7:bf:b4:0e:26:ea:30:bc:a8:b1:
c7:18:11:77:14:08:32:8e:c5:74:8c:4b:c7:cc:0b:
a8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:27:A2:BA:01:07:6D:D9:AB:56:2F:57:9A:81:1F:0B:84:54:B0:BF
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qieiugEHbdmrVi9XmoEfC4RUsL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.53.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:ce:60:1f:0f:73:81:63:6e:4a:18:d1:2b:ad:fc:e1:3c:c2:
77:b6:6b:4c:92:9d:fb:da:c1:a2:43:8e:86:8f:fa:01:6a:42:
ba:87:98:a8:23:92:ea:92:f4:4e:d8:84:54:e3:3f:a4:0e:22:
d3:84:75:59:62:cc:4d:b2:ea:d0:02:d1:e2:8d:ba:fb:84:2c:
61:48:47:31:be:2c:38:c6:49:0b:96:28:87:0b:66:fe:25:cd:
62:e5:1a:0d:35:53:80:f3:dd:6b:1c:dc:d2:6a:36:0e:3f:0b:
b5:55:c4:aa:22:07:14:c8:2c:32:02:b1:48:da:af:f2:17:57:
f9:a3:13:01:8f:16:60:aa:d5:0f:b4:0a:6e:a8:83:b6:e9:02:
e8:60:aa:e0:e5:f7:d9:78:75:01:a9:ef:e7:2c:3d:74:6f:43:
83:68:a5:e5:36:b6:8a:d7:84:e5:94:dc:0c:0c:49:82:1b:08:
a8:6b:66:14:3d:2d:ac:39:bc:93:69:b3:6f:77:e0:df:38:14:
ed:72:35:7d:85:1d:6e:9c:c2:7c:c5:ee:7a:61:58:d9:e9:97:
62:5e:55:a7:52:ba:b8:54:77:25:c4:ef:61:03:0f:d6:06:ab:
f0:58:ff:b6:8c:c5:99:87:30:70:0b:13:09:fc:54:07:54:61:
1c:ee:f2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:09 2025 by rpki-client