Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vAOtb7YtM6SKDQ6qrvPHlJZn0ek.roa
File: vAOtb7YtM6SKDQ6qrvPHlJZn0ek.roa (raw, json)
Hash identifier: FuqbczUeF1AzxHGCyq6iwriSjAcGwY9HbUfwGEMxq7s=
Subject key identifier: BC:03:AD:6F:B6:2D:33:A4:8A:0D:0E:AA:AE:F3:C7:94:96:67:D1:E9
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29338359
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vAOtb7YtM6SKDQ6qrvPHlJZn0ek.roa
Signing time: Thu 17 Mar 2022 10:41:14 +0000
ROA not before: Thu 17 Mar 2022 10:41:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42447
IP address blocks: 93.170.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 691241817 (0x29338359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Mar 17 10:41:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc03ad6fb62d33a48a0d0eaaaef3c7949667d1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:98:44:e2:20:17:c0:d0:46:03:89:10:3a:b2:
67:c8:1f:8e:de:d4:70:74:6c:0d:87:f4:47:aa:6f:
ee:9b:d5:d1:a4:73:a6:6a:30:33:12:04:8f:5e:e2:
2e:77:79:57:b4:6e:5e:3f:38:e5:86:9c:2f:fa:3d:
4f:8d:fb:7a:70:6e:16:e4:c2:93:22:18:77:a6:27:
33:a2:81:6d:0b:4c:e4:e2:50:f1:6a:89:08:32:2d:
e3:8d:84:9d:a2:25:f4:16:95:80:74:75:c2:c1:36:
7a:33:47:23:98:4a:35:13:cb:d5:8c:a9:97:0f:47:
9b:e0:59:6b:d7:99:5d:d7:4f:f6:de:ee:ff:4e:1c:
66:d4:f1:c0:d0:9e:58:f7:53:e2:73:f4:b8:9e:36:
c7:f0:05:76:d2:a8:41:17:27:f3:b9:62:73:00:ca:
ad:2f:28:da:3e:c4:23:59:83:72:38:cd:b7:9e:ce:
9e:b1:14:4c:48:f0:9b:84:cf:ca:bc:dd:c9:44:e9:
f6:3b:da:31:9e:2e:2b:2c:46:ed:d2:ec:d4:d8:b0:
b4:0a:6e:7d:0f:21:bf:6a:1a:c1:6a:e3:6d:4c:94:
0e:61:4c:ca:5e:39:bd:ac:f9:50:26:1b:f9:55:79:
b7:18:09:e7:9d:b8:0b:af:69:20:a5:64:ff:32:fb:
c6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:03:AD:6F:B6:2D:33:A4:8A:0D:0E:AA:AE:F3:C7:94:96:67:D1:E9
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vAOtb7YtM6SKDQ6qrvPHlJZn0ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.72.0/23
Signature Algorithm: sha256WithRSAEncryption
25:bc:51:f2:0d:44:d6:3e:db:ac:bd:5a:ec:2e:74:fc:9d:a5:
40:97:1a:88:9d:a6:7f:51:36:aa:39:c4:4e:66:92:13:a6:10:
f4:74:db:a5:a3:8d:a2:6e:c6:e1:a6:93:19:ec:13:61:a3:ec:
a4:46:cb:9c:51:15:a7:6b:60:95:61:b6:bd:c2:d7:a8:a9:54:
80:c6:f9:7a:9f:6d:25:19:39:c2:ad:0c:b2:6c:b8:fd:2b:03:
be:f4:17:b4:0c:ab:de:c8:01:a7:2b:c4:62:b7:d4:34:b3:78:
1b:73:12:0e:4c:73:02:60:71:95:35:f2:22:f4:ac:b6:1b:7d:
5f:90:1f:a0:34:50:d2:f1:0b:a5:52:2f:ab:07:53:f8:e4:6d:
3f:73:dd:86:5e:3e:58:3c:94:9b:e4:15:2d:4f:a7:16:4b:4e:
a0:4a:f6:c1:d9:64:a9:d0:ef:4a:eb:2e:db:51:3b:f2:e7:da:
ca:94:bf:cb:8d:fa:08:d5:91:b8:81:10:d7:a6:3e:e9:05:01:
e0:ed:4c:a5:67:e2:78:82:8f:b0:46:af:2f:aa:a9:c8:f8:4d:
1e:1b:26:e9:ae:85:30:39:4a:a4:eb:17:c0:53:12:89:35:1a:
81:71:82:64:09:1e:af:bd:3b:78:3f:c2:d0:3c:2a:f8:57:2f:
25:77:96:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:22 2025 by rpki-client