Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xbVF6Dd5PQGimq3pMCnlKFU7cZw.roa
File: xbVF6Dd5PQGimq3pMCnlKFU7cZw.roa (raw, json)
Hash identifier: 9SGbrTVr4hUFP/0AThVsH2QpVOgK83Y2rQwwOqMs3tw=
Subject key identifier: C5:B5:45:E8:37:79:3D:01:A2:9A:AD:E9:30:29:E5:28:55:3B:71:9C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27701F0A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xbVF6Dd5PQGimq3pMCnlKFU7cZw.roa
Signing time: Sat 01 Jan 2022 16:08:03 +0000
ROA not before: Sat 01 Jan 2022 16:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41102
IP address blocks: 93.170.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661659402 (0x27701f0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5b545e837793d01a29aade93029e528553b719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:1d:1c:37:26:b0:42:cf:c6:4c:d1:a5:8e:
1d:48:38:2f:f9:38:93:ac:1d:14:15:9f:39:d1:78:
64:0b:82:e1:8c:0d:b8:1e:89:46:a8:af:cd:2a:ec:
d1:64:13:a2:1a:9d:94:bd:6d:10:a9:24:af:5a:2b:
0b:c3:84:3b:47:5d:a2:ee:d4:d1:1b:26:92:28:b1:
4c:fe:0e:d6:c9:26:1f:5e:e4:3e:3b:63:b4:a6:e7:
b6:0f:f1:bd:7b:4d:2c:a8:83:18:96:ed:bb:16:1f:
42:ad:6a:61:1e:36:93:1a:b6:87:e6:0a:07:74:31:
1e:cc:31:02:79:6b:ac:cb:6d:5d:16:47:3f:00:b9:
4e:e4:a6:c5:9e:d3:e9:c2:b0:8b:23:d7:eb:ff:41:
d1:4f:a8:00:45:06:56:91:12:e1:aa:b4:18:72:7d:
90:08:02:e1:e7:8d:2d:ea:4b:3a:d4:c8:77:ad:18:
b2:64:24:c1:7a:dc:44:8e:bf:90:79:86:ca:dc:b9:
66:61:b9:95:08:2c:da:2f:aa:88:e9:73:22:7d:66:
d1:84:3a:fe:44:c1:0d:b5:2d:20:c9:32:96:c5:fb:
c8:88:d7:87:3d:61:37:3a:db:11:05:56:9d:d8:6a:
1f:c2:94:25:df:e4:30:8c:4e:41:00:7d:ab:5d:4c:
3f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B5:45:E8:37:79:3D:01:A2:9A:AD:E9:30:29:E5:28:55:3B:71:9C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/xbVF6Dd5PQGimq3pMCnlKFU7cZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.218.0/24
Signature Algorithm: sha256WithRSAEncryption
03:3f:34:cf:b8:16:ff:cd:ff:be:ad:0e:ee:61:d9:e5:dc:ec:
1d:4c:f9:c3:21:91:e0:59:87:0e:9c:4f:f4:49:56:bc:e1:ef:
a8:74:c2:cb:08:27:e9:da:7a:2a:37:40:04:48:8e:e8:4f:a0:
f9:15:f1:3d:bb:c0:a6:7c:e4:c8:09:63:d7:92:4d:02:22:ab:
8a:92:8e:8d:3b:9a:db:cd:bc:72:b0:98:16:91:24:fb:ca:87:
a2:bb:0f:3e:03:d4:42:39:b8:0d:23:57:1d:a1:98:92:c4:9e:
7e:61:1b:a0:47:51:e4:f8:b6:00:6e:77:d6:fc:dc:f2:0c:32:
a5:e4:9d:8c:ff:ea:da:f2:f1:b6:b6:a6:98:e5:8b:af:8e:35:
91:4b:d6:c8:9a:99:3e:15:68:d1:3e:60:09:4d:42:9c:cc:a5:
59:34:69:52:e5:84:a8:9a:2c:a9:bf:f3:79:54:0a:84:93:f4:
10:87:ed:f1:97:6f:d8:6e:90:c4:1b:7e:c9:95:1b:c6:8e:10:
69:fd:e2:c7:f2:2c:e7:d7:d2:b7:1a:8f:4e:20:60:76:28:93:
88:bf:bc:7f:cf:4b:c0:86:f1:cf:7e:86:cd:92:09:3a:2e:b9:
bf:87:d7:23:73:db:dc:04:bd:1e:51:4c:a0:be:88:07:fd:28:
34:af:bb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:19 2025 by rpki-client