Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vTQvxqJZNkKk0X4_A0SuEvtXJeA.roa
File: vTQvxqJZNkKk0X4_A0SuEvtXJeA.roa (raw, json)
Hash identifier: avs8udXWEDmGu1vs0gnaiHYyLnGNlYo8qyN4cepGhEQ=
Subject key identifier: BD:34:2F:C6:A2:59:36:42:A4:D1:7E:3F:03:44:AE:12:FB:57:25:E0
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018602BF7C2A236269EBDF41B4FDE9E9BCB9
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vTQvxqJZNkKk0X4_A0SuEvtXJeA.roa
Signing time: Mon 30 Jan 2023 12:55:48 +0000
ROA not before: Mon 30 Jan 2023 12:55:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12722
IP address blocks: 95.47.161.0/24 maxlen: 24
93.170.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:bf:7c:2a:23:62:69:eb:df:41:b4:fd:e9:e9:bc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 30 12:55:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd342fc6a2593642a4d17e3f0344ae12fb5725e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:29:ac:ae:68:56:f5:5d:f0:54:75:5f:52:b6:
73:3f:6a:28:42:b9:02:fc:bc:a3:b8:e6:60:bf:16:
1a:9f:7c:fb:dc:3c:b4:5e:dc:72:b4:26:08:17:70:
12:00:53:d6:2e:c8:07:dc:d8:6d:5a:c8:14:b9:f1:
97:cf:9e:0e:8f:8a:ad:3e:2c:70:15:c4:25:30:76:
a3:99:f4:ca:af:34:e0:c7:44:f9:0d:b0:c6:0b:9f:
de:11:40:87:02:d6:7a:ab:7e:ea:2c:bd:ce:4e:ee:
cb:16:cf:2d:f6:23:14:e7:d6:dd:84:3f:ea:5e:b9:
46:71:2f:2b:b8:fa:05:48:87:4d:07:55:bb:32:f3:
9a:89:ac:c7:7f:d4:84:fe:a7:84:f1:e7:62:38:5b:
48:b5:0e:c2:41:53:ad:77:3d:7c:36:97:13:26:28:
d7:cc:28:56:3a:fe:0b:a0:d9:65:2b:34:31:fd:37:
df:7c:cb:8a:16:49:aa:97:49:67:fb:2b:b2:fa:84:
47:9a:73:df:64:bf:24:1a:7a:e1:07:e0:2a:91:d9:
9b:f1:00:3d:57:45:8c:24:95:b7:64:ab:00:a1:2a:
7b:5e:b7:78:1a:d3:3b:37:4b:47:92:e9:d0:65:db:
c1:ac:9f:50:a7:ef:c9:8c:74:06:67:5d:88:f6:18:
06:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:34:2F:C6:A2:59:36:42:A4:D1:7E:3F:03:44:AE:12:FB:57:25:E0
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vTQvxqJZNkKk0X4_A0SuEvtXJeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.76.0/24
95.47.161.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:77:db:1e:2d:ad:d3:a8:77:f6:cf:10:68:d7:d3:c9:22:c6:
eb:e5:c1:c7:99:2c:7d:17:45:25:a6:d3:8d:05:29:cf:27:db:
1d:1f:79:c4:69:d7:01:1d:cb:05:c9:3e:29:a6:6a:66:f3:e2:
ce:4f:45:09:95:f3:02:c5:ea:15:3c:34:16:9b:2c:b5:1a:02:
f1:00:2d:69:ce:6c:fe:9c:ea:2c:cc:8f:9f:df:a7:0a:53:41:
56:d9:2e:77:0e:f1:ec:29:e3:43:6e:88:ba:0e:60:72:39:d9:
94:eb:d2:7f:3c:16:65:f4:29:04:cb:3b:f7:72:9e:3a:af:1c:
ed:56:64:b2:0b:2f:99:57:48:1c:74:85:fb:5e:61:13:5b:e0:
b4:d1:77:34:9d:3b:d5:46:7a:17:2e:a0:62:13:f6:9e:27:2b:
12:d2:38:20:4f:07:20:5e:bf:c4:f1:05:3b:53:fb:dd:7c:13:
05:ea:5b:a9:a9:a8:84:a2:00:52:69:30:23:1e:2e:12:89:d9:
37:51:72:08:0c:46:51:a9:91:bb:21:d2:d1:c2:af:95:2d:1c:
83:51:c8:e1:21:ff:c7:8c:45:3a:2b:c8:fa:e3:97:81:a4:11:
3c:19:c2:50:d5:cb:6d:ff:08:b6:7d:0a:40:0c:05:fe:ed:38:
8d:ca:c7:d6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYYCv3wqI2Jp699BtP3p6by5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTMwMTI1NTQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDM0MmZjNmEyNTkzNjQyYTRkMTdlM2YwMzQ0YWUxMmZiNTcyNWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCmsrmhW9V3wVHVfUrZzP2ooQrkC
/LyjuOZgvxYan3z73Dy0XtxytCYIF3ASAFPWLsgH3NhtWsgUufGXz54Oj4qtPixw
FcQlMHajmfTKrzTgx0T5DbDGC5/eEUCHAtZ6q37qLL3OTu7LFs8t9iMU59bdhD/q
XrlGcS8ruPoFSIdNB1W7MvOaiazHf9SE/qeE8ediOFtItQ7CQVOtdz18NpcTJijX
zChWOv4LoNllKzQx/TfffMuKFkmql0ln+yuy+oRHmnPfZL8kGnrhB+Aqkdmb8QA9
V0WMJJW3ZKsAoSp7Xrd4GtM7N0tHkunQZdvBrJ9Qp+/JjHQGZ12I9hgGkwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFL00L8aiWTZCpNF+PwNErhL7VyXgMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvdlRRdnhxSlpOa0trMFg0X0EwU3VFdnRYSmVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXapMAwQA
Xy+hMA0GCSqGSIb3DQEBCwUAA4IBAQAKd9seLa3TqHf2zxBo19PJIsbr5cHHmSx9
F0UlptONBSnPJ9sdH3nEadcBHcsFyT4ppmpm8+LOT0UJlfMCxeoVPDQWmyy1GgLx
AC1pzmz+nOoszI+f36cKU0FW2S53DvHsKeNDboi6DmByOdmU69J/PBZl9CkEyzv3
cp46rxztVmSyCy+ZV0gcdIX7XmETW+C00Xc0nTvVRnoXLqBiE/aeJysS0jggTwcg
Xr/E8QU7U/vdfBMF6lupqaiEogBSaTAjHi4Sidk3UXIIDEZRqZG7IdLRwq+VLRyD
UcjhIf/HjEU6K8j645eBpBE8GcJQ1ctt/wi2fQpADAX+7TiNysfW
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:50:56 2025 by rpki-client