Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/r5IrIFG4n9Oeh5oaENYuPHPcQpU.roa
File: r5IrIFG4n9Oeh5oaENYuPHPcQpU.roa (raw, json)
Hash identifier: ldsJatyMZ9+ldD+KTpZhGCZurEGZOGisyqHnx7ZtzNw=
Subject key identifier: AF:92:2B:20:51:B8:9F:D3:9E:87:9A:1A:10:D6:2E:3C:73:DC:42:95
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27C88983
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/r5IrIFG4n9Oeh5oaENYuPHPcQpU.roa
Signing time: Sat 01 Jan 2022 16:08:51 +0000
ROA not before: Sat 01 Jan 2022 16:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56418
IP address blocks: 93.171.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667453827 (0x27c88983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af922b2051b89fd39e879a1a10d62e3c73dc4295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:42:9a:4b:75:05:c3:98:90:ed:76:9b:05:b3:
34:29:65:3b:fb:db:7c:8e:30:1e:b9:61:d5:4c:d3:
ec:be:09:a1:7f:a5:e9:23:5e:66:31:61:24:72:27:
bf:77:99:a6:76:13:bd:39:5c:24:c8:e9:0e:c2:cd:
7b:a2:79:78:0e:21:62:b2:be:f9:a0:1c:d7:3a:9c:
1f:28:85:6a:3e:ef:f2:ae:0b:67:ce:85:91:4f:f2:
b0:4b:f5:e2:d7:67:b1:c2:4a:2f:5d:74:8c:3d:fb:
f1:3d:b4:cd:95:7b:de:0c:aa:a2:93:98:d1:4a:b2:
64:bc:6b:b6:0e:65:30:71:62:b9:1f:97:d6:a9:23:
5f:2a:78:a4:53:d6:38:a5:90:84:de:a5:e6:f1:ca:
77:1c:37:1f:ad:23:61:32:47:ef:7c:fa:10:92:f4:
e7:b4:61:b8:b1:ec:59:78:15:d4:11:f3:3f:41:cf:
ce:af:06:94:12:69:5b:8c:d7:90:03:9c:60:fa:1d:
c4:d4:f2:51:b1:a4:6f:02:1e:79:c1:20:33:20:d1:
cd:b1:d6:f7:f1:3a:1e:44:e1:2d:59:7e:79:b0:df:
94:1d:2c:63:14:27:e1:af:5f:49:69:02:c9:e9:ba:
63:36:f9:3c:6b:be:b9:bc:30:85:08:be:6d:2e:dd:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:92:2B:20:51:B8:9F:D3:9E:87:9A:1A:10:D6:2E:3C:73:DC:42:95
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/r5IrIFG4n9Oeh5oaENYuPHPcQpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.198.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:75:9b:a5:58:96:1c:69:a4:d6:34:95:3d:ad:bd:03:58:8c:
72:ec:58:e6:84:6a:62:50:c1:4a:04:85:3a:8a:a1:c1:79:65:
20:54:6f:d8:34:8a:3a:bb:7e:cc:1e:05:d3:36:5a:4e:39:d6:
5a:96:c4:33:63:f0:6c:89:78:57:fd:ea:07:e9:46:3d:78:e9:
66:db:00:58:86:a2:d5:04:8f:41:ba:c7:09:24:bd:ff:13:32:
85:4d:8e:72:23:82:a3:28:58:72:3a:8b:29:68:11:1e:f8:c8:
d4:99:bf:80:e4:f3:1d:b4:96:d7:1b:c1:a8:ee:0b:51:4e:8a:
46:47:59:c5:42:c3:58:d6:08:2b:78:2c:5b:3c:7b:c6:41:c1:
86:7d:2c:fa:d3:6c:db:38:ba:c4:18:e3:79:ed:0a:0b:32:91:
3c:85:01:a1:91:ca:32:e1:e1:d1:53:7b:e6:87:72:5c:c8:11:
20:13:30:47:ad:c6:e5:24:0c:38:f4:1f:0c:20:00:2e:8d:57:
aa:ff:fd:46:c1:5f:f4:2b:6d:64:24:d1:c3:f7:da:08:f9:4a:
77:26:84:af:95:85:73:ae:37:27:02:a5:91:46:dc:49:b1:c7:
74:b8:91:56:63:98:42:e7:87:c4:63:e8:f9:da:67:ac:4b:63:
f3:42:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-fra.rpki-client.org