Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kC32I2A-ph807wmD1jNYMFf16OY.roa
File: kC32I2A-ph807wmD1jNYMFf16OY.roa (raw, json)
Hash identifier: oRg3axubmOLOlCr4MUVlyQ438dTMYN/I4zQJhqVbkFw=
Subject key identifier: 90:2D:F6:23:60:3E:A6:1F:34:EF:09:83:D6:33:58:30:57:F5:E8:E6
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05E5F2E0
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kC32I2A-ph807wmD1jNYMFf16OY.roa
Signing time: Sat 12 Feb 2022 10:01:19 +0000
ROA not before: Sat 12 Feb 2022 10:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 93.152.206.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98956000 (0x5e5f2e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Feb 12 10:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=902df623603ea61f34ef0983d633583057f5e8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:a5:fd:ae:d2:a8:ff:15:8f:88:9c:73:6d:
5a:0d:b4:95:a2:f0:fa:a3:e9:d9:c0:10:75:07:8e:
2b:73:08:b6:bd:55:20:8f:9b:dc:5f:32:e8:f0:b8:
53:50:68:51:c6:a6:f8:72:60:6b:82:91:0a:14:97:
6a:2c:bf:85:24:10:07:39:fc:89:9a:1b:10:6a:69:
7a:c5:04:16:a9:fd:5a:72:4d:1c:2c:1e:f1:58:51:
6b:06:65:cd:57:e3:2c:ce:49:a9:88:18:94:38:88:
b4:d4:0c:27:b5:1d:bf:3c:9f:7c:46:f8:63:0f:a9:
b1:a6:f1:e8:44:89:6b:bd:0d:23:b7:ef:ec:a2:2d:
23:09:9c:f8:d8:6e:d9:bb:fa:13:4a:9f:08:06:a0:
95:66:68:0c:eb:a5:40:e1:e5:3c:d0:c5:53:ce:0e:
28:a3:1a:c9:d8:72:1f:78:34:cd:a2:5a:87:a1:92:
b4:86:98:1f:82:d9:7a:4d:70:5b:ec:53:04:20:32:
2c:c4:4c:ee:d6:c7:83:ac:59:f6:f9:d6:26:96:ad:
b6:f2:c2:0c:b4:ba:6b:6a:2b:75:b1:92:61:21:97:
e4:a4:b4:62:f4:eb:d1:1a:68:2e:7f:c1:45:5b:89:
9c:3f:81:e3:eb:3b:b9:93:f2:cd:93:45:35:e0:fa:
2b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2D:F6:23:60:3E:A6:1F:34:EF:09:83:D6:33:58:30:57:F5:E8:E6
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kC32I2A-ph807wmD1jNYMFf16OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.206.0/24
93.152.208.0/24
Signature Algorithm: sha256WithRSAEncryption
95:3e:0a:d1:0f:c1:b6:65:3e:cc:88:f2:89:22:96:fb:0b:b0:
2d:0d:e0:1f:bb:7f:f5:66:e1:c3:d2:42:32:96:c6:56:7a:12:
fc:c3:ab:a6:a7:8f:a5:d9:75:d3:70:b3:a5:90:dd:c6:3f:ee:
5c:0a:db:a2:57:06:d8:c3:0b:c1:3f:fd:80:86:64:e7:6e:db:
e8:6f:11:84:87:9d:3e:c4:39:0a:3b:f2:24:8a:d4:c9:57:60:
7f:62:16:0c:ac:db:5f:07:6d:a4:75:99:ea:89:60:e4:22:f2:
e4:8d:bd:c8:4a:68:3b:f2:3d:f2:0f:39:4b:d0:02:6a:51:ad:
cd:2a:2d:e3:9f:e8:d6:b4:90:02:8d:96:79:3d:23:29:da:5c:
b3:47:df:84:1e:52:d0:53:cb:82:34:55:c2:53:a8:04:b0:a1:
a3:52:04:e1:95:8c:5a:80:15:5a:57:ae:0e:7c:e1:02:cc:5d:
8b:11:3d:12:65:40:d0:c9:fb:4a:ed:16:41:a0:43:93:94:90:
93:fe:c2:c1:b1:f9:cf:f7:6c:35:34:9b:59:9a:91:c3:f6:74:
96:af:5a:44:02:e6:fd:37:af:f6:ef:32:15:a3:89:16:1f:5f:
b7:a5:f3:0a:ca:10:be:ad:c5:a2:81:6a:d7:96:0b:8e:25:21:
2b:c8:9c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:18 2025 by rpki-client