Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/w6QjWeJ_8NCOfhwQ4TViSP2yNRg.roa
File: w6QjWeJ_8NCOfhwQ4TViSP2yNRg.roa (raw, json)
Hash identifier: ZbvIIXI1qkjlkdGOj6gv3mEkuOAODpe2PVPI/yCJIk4=
Subject key identifier: C3:A4:23:59:E2:7F:F0:D0:8E:7E:1C:10:E1:35:62:48:FD:B2:35:18
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709547F2B0ACB0B70D8CDE4637680845
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/w6QjWeJ_8NCOfhwQ4TViSP2yNRg.roa
Signing time: Mon 02 Jan 2023 03:45:09 +0000
ROA not before: Mon 02 Jan 2023 03:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50182
IP address blocks: 93.170.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:47:f2:b0:ac:b0:b7:0d:8c:de:46:37:68:08:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3a42359e27ff0d08e7e1c10e1356248fdb23518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:0a:7a:ab:99:42:32:c6:ad:3a:b8:44:ab:
fc:9a:ae:d1:41:bf:be:53:24:7c:a3:9b:c0:e0:36:
76:f4:e9:74:87:c3:a8:db:2d:49:41:00:1a:79:6b:
f6:34:a5:0b:e0:2c:67:2e:3d:14:45:49:6e:54:56:
90:0f:73:eb:6a:dc:e2:9c:a5:f0:8d:3d:13:a3:73:
05:e3:f0:ec:6a:c3:3d:33:10:e5:0a:93:c1:71:12:
08:40:43:89:d9:ef:ad:82:50:d7:cb:8f:9c:3c:55:
49:3b:00:e5:c7:3d:b9:0f:a5:6c:a8:ec:be:4d:a0:
56:b2:4b:3d:ed:ed:91:90:a6:19:7e:32:25:af:3b:
6c:7a:23:1b:c9:3d:f3:a6:b4:ce:46:96:a8:77:41:
0a:08:7e:21:f1:23:f5:8b:2f:73:01:77:40:6b:ee:
20:b7:cf:1a:e4:6c:e8:e6:47:4c:f1:32:77:a7:08:
0a:1c:96:b8:4e:a5:b2:aa:7e:fc:a0:72:d2:4a:70:
33:03:a3:a7:63:08:b0:39:78:31:21:22:00:75:1a:
e9:2d:47:23:b4:7d:29:17:c4:ad:4f:88:a3:b3:ac:
6f:c1:43:4b:66:5e:1a:57:f8:90:18:f0:52:be:f0:
1c:19:34:66:13:b0:3f:0a:9e:c5:25:d1:49:aa:cb:
b9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A4:23:59:E2:7F:F0:D0:8E:7E:1C:10:E1:35:62:48:FD:B2:35:18
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/w6QjWeJ_8NCOfhwQ4TViSP2yNRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.246.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:07:39:f5:6f:aa:93:03:b4:42:cf:0b:22:16:fc:08:d9:ed:
9a:97:96:c0:99:d8:4a:48:54:68:01:20:f3:ff:5d:11:bf:51:
ed:92:49:a5:82:f6:28:64:56:1d:57:25:f7:cb:07:66:cf:91:
e2:99:47:c6:97:fc:b1:08:49:c5:2e:29:11:a3:94:a3:6e:9e:
49:1e:25:ea:f5:f9:c8:6f:be:f6:bb:03:76:79:4c:37:c4:b9:
39:9b:69:a7:62:f7:5a:4c:0f:36:85:2d:34:c0:ac:4a:f1:58:
74:2e:cb:83:74:bc:d4:1b:21:54:ea:78:93:23:a1:cf:c5:cc:
81:99:30:a0:ed:10:9f:c7:4b:51:d8:09:9b:73:ce:e4:fc:35:
ec:55:94:27:74:f7:92:61:d4:36:84:b6:f7:d5:2a:5d:95:d2:
ef:00:5c:dc:51:d6:20:1f:e1:7a:eb:78:fb:3d:f6:aa:2e:db:
52:10:29:b5:f3:32:3a:c7:7b:dc:17:24:fe:b2:a1:79:c4:0e:
b2:dc:81:08:aa:23:b4:16:29:83:eb:6f:98:5a:c4:91:44:c9:
99:69:81:4d:22:d0:ec:35:79:c9:f3:06:c3:bc:09:e8:47:bf:
8d:63:9f:3a:2a:e9:c5:33:74:76:bb:fe:b8:ec:ef:6c:f9:58:
bd:8d:3d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:35 2025 by rpki-client