Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wrdH8Zy5kO6yXPOXQmOORT9Gq3I.roa
File: wrdH8Zy5kO6yXPOXQmOORT9Gq3I.roa (raw, json)
Hash identifier: uyjEf/G7mXus21trVP1DAOJW8xfyq+kbvHhEn14fHSk=
Subject key identifier: C2:B7:47:F1:9C:B9:90:EE:B2:5C:F3:97:42:63:8E:45:3F:46:AB:72
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 276EC47E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wrdH8Zy5kO6yXPOXQmOORT9Gq3I.roa
Signing time: Sat 01 Jan 2022 16:08:01 +0000
ROA not before: Sat 01 Jan 2022 16:08:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39906
IP address blocks: 93.170.84.0/22 maxlen: 24
95.46.33.0/24 maxlen: 24
95.46.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661570686 (0x276ec47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2b747f19cb990eeb25cf39742638e453f46ab72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8c:1d:0a:87:55:51:b7:92:92:6b:c7:42:d1:
cf:a1:35:57:84:94:8b:9c:11:4e:ca:41:86:28:71:
aa:9e:dc:79:1a:20:07:5c:48:6e:8f:f3:16:1e:5a:
3c:79:ab:79:fc:9a:11:0b:2b:6e:f9:7c:f7:ad:6b:
f2:03:a2:4b:6a:45:8a:71:9d:73:07:f3:4f:a1:56:
45:16:f6:fc:89:bf:03:2d:f6:31:cb:23:57:23:f6:
0f:cb:0e:96:46:f9:72:3c:5d:dd:95:73:e6:d8:70:
fe:82:18:c9:6f:66:ab:cb:8c:cd:08:07:8e:74:f8:
ca:18:9b:54:2c:f4:54:3f:01:fa:e7:8e:c2:cb:92:
7a:fe:9e:e1:26:7a:cc:a2:62:eb:13:6b:67:3a:d8:
d3:27:4a:df:81:1f:3c:1c:ff:9b:f4:8f:fb:91:33:
e2:47:31:98:73:68:9a:9a:36:db:c3:f2:b3:61:da:
4b:3a:aa:1b:8c:3b:0a:f3:95:67:7b:dd:c1:3e:a0:
e5:de:a0:d9:f3:5c:73:94:64:f7:6c:d9:47:78:22:
8c:75:4f:8e:5c:4c:79:ac:25:78:ed:b3:0a:ef:0e:
7c:a2:d3:f5:10:32:fd:a1:84:58:8e:06:92:2f:e9:
0f:9c:c0:3a:e5:b3:95:06:a9:93:d5:20:f0:a7:cf:
a9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B7:47:F1:9C:B9:90:EE:B2:5C:F3:97:42:63:8E:45:3F:46:AB:72
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/wrdH8Zy5kO6yXPOXQmOORT9Gq3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.84.0/22
95.46.32.0/23
Signature Algorithm: sha256WithRSAEncryption
53:12:97:16:6e:03:8e:a2:e1:b9:68:4e:c8:59:f6:39:76:02:
7a:d6:c9:a8:8e:c2:0a:6c:e3:2f:42:d3:ea:de:fa:5d:71:1a:
58:09:19:76:da:21:53:85:fd:bd:55:de:d6:39:44:19:16:6b:
81:02:5e:7a:7a:b8:8a:92:e8:de:aa:68:d3:92:b0:73:24:52:
5b:c5:e7:c5:73:4d:8e:ce:0c:6b:43:bf:a7:5c:01:62:c8:62:
2e:d0:89:c5:99:e7:51:2e:7a:01:da:83:e6:1b:7f:7b:f9:ae:
58:9a:4f:29:6f:c6:9b:cb:d0:c8:76:37:4f:87:4f:2d:d2:45:
2b:19:85:80:a1:a1:8f:5a:92:59:2b:e3:3f:a4:08:36:ce:6a:
ce:d1:a3:65:bc:d0:52:96:91:3c:fc:ec:61:81:5c:3e:5b:38:
dc:4e:5f:89:df:47:9d:98:3e:78:ac:1c:f7:c1:32:60:74:85:
61:7f:a1:fc:f7:13:61:88:f3:a2:3d:15:ff:e6:39:1b:80:2e:
b8:61:8e:24:ba:12:73:a0:f7:48:dd:97:ef:cc:d9:b4:8a:70:
b6:e9:62:9c:53:c6:45:9d:23:a2:1d:9b:1d:53:cb:d2:2a:f4:
01:83:a8:df:b8:eb:d0:77:2c:73:23:37:ad:76:0c:87:73:8b:
c0:d6:b4:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:43:05 2025 by rpki-client