Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tZDSWQQKEk_YVqiBgbf1KwtZlBw.roa
File: tZDSWQQKEk_YVqiBgbf1KwtZlBw.roa (raw, json)
Hash identifier: 2hEuU5DaOCH0TdENEHEKSGy9EA71GXUbDH7zwdA0zOo=
Subject key identifier: B5:90:D2:59:04:0A:12:4F:D8:56:A8:81:81:B7:F5:2B:0B:59:94:1C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 278FE9F8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tZDSWQQKEk_YVqiBgbf1KwtZlBw.roa
Signing time: Sat 01 Jan 2022 16:08:19 +0000
ROA not before: Sat 01 Jan 2022 16:08:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44200
IP address blocks: 93.171.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663742968 (0x278fe9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b590d259040a124fd856a88181b7f52b0b59941c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:15:aa:b4:41:df:91:a5:28:42:ad:df:81:35:
8b:e8:b9:28:9d:f9:7b:7c:03:9a:dd:d3:a9:54:e9:
58:b1:b0:27:14:87:ad:03:c7:32:de:63:21:9c:b2:
48:cf:00:dd:4f:18:d8:46:eb:33:43:3a:09:6d:17:
33:c0:27:8f:23:78:a1:d6:13:4a:8d:99:2d:c3:c4:
b9:d0:98:87:b0:f7:72:10:6e:2d:b8:c3:db:94:e1:
d5:8a:e1:10:b1:a4:6e:b3:69:55:db:ab:e5:fe:01:
8a:be:96:1f:3b:69:ef:a4:44:52:26:5f:30:50:77:
e7:6c:05:0b:62:75:d4:8f:46:4f:d2:f1:6a:24:88:
3f:b0:ae:82:76:66:cd:d2:b0:1c:3a:68:01:b3:20:
39:38:7d:fc:28:19:8b:66:0e:71:8e:ea:c5:54:f9:
7e:41:de:c1:e6:63:1c:98:e9:2c:e2:ac:5d:40:c9:
4a:50:90:cc:f7:de:eb:3e:e5:ae:0b:1d:3f:75:5c:
47:5b:53:b5:6d:2f:69:22:11:1a:2d:06:62:34:27:
bd:fc:9f:13:88:24:54:26:33:70:07:a0:79:34:b2:
29:0c:69:3a:c8:a6:79:91:7e:24:73:5f:71:15:67:
f4:b5:fd:dc:62:fb:59:88:3d:ac:48:7e:36:b7:b4:
93:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:90:D2:59:04:0A:12:4F:D8:56:A8:81:81:B7:F5:2B:0B:59:94:1C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tZDSWQQKEk_YVqiBgbf1KwtZlBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.209.0/24
Signature Algorithm: sha256WithRSAEncryption
09:8d:04:0e:75:74:6a:76:f3:c2:03:0c:a1:4f:6b:91:16:e0:
5d:93:6b:25:65:6a:0c:fb:0b:b4:3f:8b:c1:e1:03:70:68:a6:
2c:34:2b:76:3b:58:ba:fb:7c:39:e6:12:f4:4f:43:c9:54:f8:
c5:bd:29:2c:c3:6d:4e:8a:5e:de:64:3d:a0:e4:76:d3:09:e5:
94:a4:c7:4c:b2:6c:43:52:4b:e4:8f:8b:70:36:e7:f2:30:fa:
79:93:da:f3:40:2f:30:27:a2:37:5f:85:d5:14:8c:4f:9f:cc:
a3:eb:73:04:fb:d5:62:b5:0e:dd:f9:2a:9b:d9:39:e7:71:6f:
54:39:50:8e:f7:6a:04:46:7a:4f:eb:a2:3c:4c:52:88:0e:c8:
ad:7f:2d:71:34:38:4c:ac:e1:d7:d1:b7:9e:3e:33:a1:a1:16:
ec:e9:eb:f1:af:9e:a8:8c:5b:a4:e7:a5:ce:0f:bb:32:38:f2:
32:21:b9:3f:97:0a:64:22:96:1c:6a:bd:07:fc:f3:57:ed:8e:
15:c9:67:da:26:ab:18:71:b3:4d:32:55:84:f5:b2:6d:9e:a1:
3e:22:81:94:33:fd:97:19:28:67:1d:6f:d0:60:5a:1a:e4:4b:
1d:62:0d:99:7f:9b:85:9c:23:44:63:70:c1:e5:23:7b:6b:ee:
60:a8:a2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org