Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yJdKWKMQ1Cggxl9hB0HqEkwgtaA.roa
File: yJdKWKMQ1Cggxl9hB0HqEkwgtaA.roa (raw, json)
Hash identifier: fFfGcJDVl7GX4PQm3DXTCVG6nrd+Kdh2xik6VUFYRLI=
Subject key identifier: C8:97:4A:58:A3:10:D4:28:20:C6:5F:61:07:41:EA:12:4C:20:B5:A0
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27ADAF25
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yJdKWKMQ1Cggxl9hB0HqEkwgtaA.roa
Signing time: Sat 01 Jan 2022 16:08:35 +0000
ROA not before: Sat 01 Jan 2022 16:08:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49551
IP address blocks: 93.171.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665693989 (0x27adaf25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8974a58a310d42820c65f610741ea124c20b5a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:a6:55:20:3d:df:f9:b7:b3:15:5e:58:79:
7f:35:77:d5:02:18:22:f9:c8:2b:1d:67:e8:6f:36:
9e:5f:6c:34:fd:1a:34:71:e9:15:0b:ec:c8:eb:5c:
ee:74:38:f5:20:b6:2a:13:0e:6b:d1:ec:96:8c:91:
e4:21:1a:2a:f3:58:e4:db:6d:ff:25:34:38:3a:6b:
bc:ba:b8:e3:1c:d4:60:c3:30:24:2f:9d:3c:41:7d:
c7:7d:c9:89:21:4d:8c:21:51:fe:ad:eb:80:77:bb:
b0:36:6b:6a:83:a4:60:47:18:ab:ac:95:18:88:22:
49:6a:cf:bb:42:7c:69:53:61:52:51:42:67:4f:64:
b7:1d:c8:de:2a:bd:0c:11:ec:52:78:da:9e:ae:05:
36:a4:5d:b1:6e:8f:f7:b3:3f:7a:8d:13:2d:94:bd:
c7:35:0f:6e:6d:20:8c:11:08:c8:c6:e7:a8:00:9b:
40:bf:f1:a4:32:19:5d:04:f4:69:b4:08:97:20:27:
50:6f:50:12:47:8e:d8:45:fb:24:bc:be:79:82:82:
1b:58:72:30:03:a1:9c:df:0c:2e:67:46:e9:69:cf:
be:4e:a0:b3:08:8a:2f:46:e9:47:20:96:af:1b:39:
e2:8f:30:d4:83:22:d8:71:f7:74:1f:0b:0b:b5:31:
18:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:97:4A:58:A3:10:D4:28:20:C6:5F:61:07:41:EA:12:4C:20:B5:A0
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yJdKWKMQ1Cggxl9hB0HqEkwgtaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.44.0/22
Signature Algorithm: sha256WithRSAEncryption
78:43:99:32:bc:5e:a3:a7:60:93:93:bb:28:6b:4e:ee:7b:81:
1c:bf:f0:63:ce:70:00:40:5b:72:9a:82:28:22:65:ee:59:c4:
39:f4:02:a9:7e:94:5e:4e:f4:cd:b0:bb:e4:03:f0:3d:b9:78:
cd:57:35:82:c3:34:a2:22:e0:18:e6:a6:e1:c6:77:ff:29:87:
53:c0:3d:28:f0:e3:87:0e:16:8a:82:1c:75:4a:c3:6e:00:f7:
7f:07:5b:d8:90:e3:e9:35:61:01:e0:c8:51:72:42:5d:1e:93:
43:bc:28:53:63:8c:3f:37:f6:40:9c:31:e7:e5:39:8b:c2:f4:
25:3f:26:86:88:75:6b:e6:a3:b0:fb:95:6f:e0:83:51:ff:d4:
b1:0c:a6:12:4d:f1:a1:c1:c7:ce:9d:e4:1a:49:6c:fa:09:4c:
23:eb:9e:59:26:ba:ce:b6:18:bc:64:70:8a:08:2f:72:06:66:
3b:06:fe:20:6a:1a:9e:a4:0f:d4:ef:c6:e3:22:dd:f5:68:2d:
73:b6:05:94:11:76:ec:0a:60:c7:fa:a1:18:a0:82:ae:32:97:
13:6d:d9:0c:63:f7:4a:63:ec:35:51:fb:44:e7:46:02:b0:96:
81:8f:19:88:da:05:95:13:06:97:c4:70:8e:0d:a8:ba:f3:40:
3b:a6:ba:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:18 2025 by rpki-client