Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vp-25Rmk3jArO383-n58Ho7FvlU.roa
File: vp-25Rmk3jArO383-n58Ho7FvlU.roa (raw, json)
Hash identifier: k03Dz3FafCg1NkESn3xwcKvU6aROQXis7YD8UoCMbwE=
Subject key identifier: BE:9F:B6:E5:19:A4:DE:30:2B:3B:7F:37:FA:7E:7C:1E:8E:C5:BE:55
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27B893A8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vp-25Rmk3jArO383-n58Ho7FvlU.roa
Signing time: Sat 01 Jan 2022 16:08:42 +0000
ROA not before: Sat 01 Jan 2022 16:08:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50438
IP address blocks: 93.170.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666407848 (0x27b893a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be9fb6e519a4de302b3b7f37fa7e7c1e8ec5be55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:88:2f:de:ad:26:72:d4:97:81:d4:1e:e3:
f2:a5:48:b4:7d:a5:eb:5a:a2:5b:a9:e1:f4:2d:be:
b3:3e:b4:fb:98:b8:54:b0:ea:70:1f:30:52:b4:d0:
5e:50:c1:0b:b4:cb:cf:8f:db:c2:2d:7a:47:75:ca:
fc:da:f2:9e:b6:7c:1c:39:c4:27:09:65:49:70:ca:
98:24:8b:ce:8d:bd:cb:06:c6:ed:72:e2:27:44:9c:
1e:23:f4:4c:5a:16:55:35:a0:4b:85:33:6c:9d:bb:
d0:1d:8b:f8:0d:b1:dd:21:4b:89:c1:15:4f:5f:c5:
d4:34:e2:ac:b1:d5:fd:38:8e:e3:0b:ec:b5:6e:fc:
44:84:5a:98:8c:b3:eb:e9:5b:e7:03:02:f9:e9:9f:
2a:3b:c3:ac:23:81:02:1e:d6:04:35:67:96:d0:16:
ee:22:ed:56:45:aa:0c:71:d6:7b:f6:09:43:5e:4c:
95:ae:f9:78:0a:b3:8b:29:ef:d0:a8:85:c5:0e:75:
4f:f0:8e:0f:89:6d:dc:12:9c:2c:a1:44:05:67:3f:
90:62:a5:f9:b5:91:0b:61:ac:d8:52:a7:c7:52:7d:
49:6f:b3:ac:b0:f6:c2:d7:6b:25:ae:9f:b6:23:ce:
6e:03:3d:4d:e2:33:b8:e0:06:b5:69:ee:9b:b5:5c:
23:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9F:B6:E5:19:A4:DE:30:2B:3B:7F:37:FA:7E:7C:1E:8E:C5:BE:55
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vp-25Rmk3jArO383-n58Ho7FvlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.28.0/22
Signature Algorithm: sha256WithRSAEncryption
56:3f:41:bc:16:2f:3a:01:28:dd:49:6a:8c:05:95:bf:f3:22:
b0:fb:44:76:30:d8:62:6b:e8:1e:63:52:88:53:6c:2a:96:fa:
e6:1c:c8:86:27:72:b7:9b:b4:c9:49:32:cd:e4:70:be:aa:c8:
73:3c:1a:89:5a:41:ea:53:83:d0:9c:c9:80:c0:ff:a6:8a:c8:
c4:08:3e:4c:6c:e6:f5:8e:91:f3:5a:72:01:a9:f3:7a:43:68:
23:6e:e8:b9:80:84:ff:ad:e0:1b:74:ba:c7:42:6a:38:fb:68:
88:98:78:21:7a:ad:a3:91:65:da:f7:b8:9b:9c:5b:6c:d2:0b:
39:64:e8:b4:05:32:84:00:f5:48:5f:ab:9a:46:7f:89:21:1a:
02:ac:88:ef:51:ec:84:70:e0:9d:0f:d9:16:bc:77:d2:87:a2:
a6:70:0f:8c:72:5e:e5:1f:b8:57:df:80:b9:a3:6d:6f:3c:ca:
76:1d:6b:ce:7d:4b:ec:48:ec:2b:07:6b:c0:f9:9a:8e:05:d6:
64:4e:6f:75:b1:bb:47:6d:29:7e:58:40:d1:4c:52:b5:9c:51:
c8:bd:8b:e1:a4:b0:c6:31:c5:69:f4:cb:e4:ee:31:75:96:16:
5c:b4:dc:78:c8:80:eb:9e:d7:0e:4f:5b:c6:1a:06:07:e2:3f:
4a:db:be:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ7iTqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmU5ZmI2ZTUxOWE0
ZGUzMDJiM2I3ZjM3ZmE3ZTdjMWU4ZWM1YmU1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALC0iC/erSZy1JeB1B7j8qVItH2l61qiW6nh9C2+sz60+5i4
VLDqcB8wUrTQXlDBC7TLz4/bwi16R3XK/NrynrZ8HDnEJwllSXDKmCSLzo29ywbG
7XLiJ0ScHiP0TFoWVTWgS4UzbJ270B2L+A2x3SFLicEVT1/F1DTirLHV/TiO4wvs
tW78RIRamIyz6+lb5wMC+emfKjvDrCOBAh7WBDVnltAW7iLtVkWqDHHWe/YJQ15M
la75eAqziynv0KiFxQ51T/COD4lt3BKcLKFEBWc/kGKl+bWRC2Gs2FKnx1J9SW+z
rLD2wtdrJa6ftiPObgM9TeIzuOAGtWnum7VcI90CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS+n7blGaTeMCs7fzf6fnwejsW+VTAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L3ZwLTI1Um1rM2pBck8zODMtbjU4SG83RnZsVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl2qHDANBgkqhkiG9w0BAQsFAAOC
AQEAVj9BvBYvOgEo3UlqjAWVv/MisPtEdjDYYmvoHmNSiFNsKpb65hzIhidyt5u0
yUkyzeRwvqrIczwaiVpB6lOD0JzJgMD/porIxAg+TGzm9Y6R81pyAanzekNoI27o
uYCE/63gG3S6x0JqOPtoiJh4IXqto5Fl2ve4m5xbbNILOWTotAUyhAD1SF+rmkZ/
iSEaAqyI71HshHDgnQ/ZFrx30oeipnAPjHJe5R+4V9+AuaNtbzzKdh1rzn1L7Ejs
KwdrwPmajgXWZE5vdbG7R20pflhA0UxStZxRyL2L4aSwxjHFafTL5O4xdZYWXLTc
eMiA657XDk9bxhoGB+I/Stu+xw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:08:20 2025 by rpki-client