Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/RmuiO0nxjdXAhtiFmH1I2pL0Ckg.roa
File: RmuiO0nxjdXAhtiFmH1I2pL0Ckg.roa (raw, json)
Hash identifier: gEIa7zBKBFXBmXciU1A6OLAZnPEuEuT9I+VX7SdnB14=
Subject key identifier: 46:6B:A2:3B:49:F1:8D:D5:C0:86:D8:85:98:7D:48:DA:92:F4:0A:48
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 01856ECB7EF15DBD9FD97291D274162ECEBE
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/RmuiO0nxjdXAhtiFmH1I2pL0Ckg.roa
Signing time: Sun 01 Jan 2023 19:25:08 +0000
ROA not before: Sun 01 Jan 2023 19:25:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213111
IP address blocks: 93.177.82.0/24 maxlen: 24
2a0a:e540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:7e:f1:5d:bd:9f:d9:72:91:d2:74:16:2e:ce:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Jan 1 19:25:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=466ba23b49f18dd5c086d885987d48da92f40a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:be:b7:23:fc:87:c1:53:cd:20:22:4c:b4:13:
2d:39:26:54:f3:0d:f6:f3:db:a9:85:92:14:da:5b:
7d:23:22:5a:44:19:56:47:29:c1:64:e8:04:04:e8:
98:0d:93:73:9a:fa:7e:93:49:68:33:45:64:67:a4:
fb:50:7d:8d:ad:af:38:f3:28:a5:b4:b4:eb:64:0c:
f1:54:14:77:73:bb:46:ca:44:7a:65:57:9d:54:9c:
49:6b:0d:30:ac:01:ea:f0:51:50:0f:fb:89:8e:c8:
ab:2b:5e:b1:4b:ca:66:5a:66:b7:4f:1b:4a:16:28:
80:1b:c7:5c:a1:10:c7:fa:8c:4d:2f:d2:af:31:ce:
e3:3a:e0:6a:bc:01:93:62:99:21:c3:6e:57:1e:6c:
61:16:bc:ae:18:0c:6d:85:a5:f9:66:22:81:96:52:
3d:6a:01:f1:e2:d5:67:4f:89:1f:17:71:28:a2:e8:
17:67:aa:52:f3:bd:1c:6c:b3:35:52:9a:a4:ae:59:
83:1f:bd:8d:da:53:97:3a:5b:c8:a6:0d:85:1a:59:
44:d7:6e:3c:5f:42:d5:40:46:cf:c9:93:3c:59:ce:
5b:d2:f3:c5:8b:91:aa:21:e5:46:cc:af:35:b5:b6:
0c:91:aa:43:a9:38:84:7a:34:c5:45:8e:a9:f9:0c:
6b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6B:A2:3B:49:F1:8D:D5:C0:86:D8:85:98:7D:48:DA:92:F4:0A:48
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/RmuiO0nxjdXAhtiFmH1I2pL0Ckg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.82.0/24
IPv6:
2a0a:e540::/32
Signature Algorithm: sha256WithRSAEncryption
da:fc:22:d5:5f:95:76:83:61:35:bb:93:d1:ea:93:02:7e:38:
55:ba:d9:3e:6a:4a:f1:4f:9b:df:c7:a9:a7:01:76:78:ed:b0:
ef:50:5d:d2:3e:4f:e3:83:9f:e3:39:9c:bc:05:34:d5:f5:78:
82:be:9c:98:87:bb:2e:d0:38:c3:f0:4b:3a:49:c6:4d:c4:75:
75:4c:0f:93:25:75:98:aa:a2:d5:14:d5:c2:b5:16:ef:a8:7c:
8f:0e:4a:67:02:60:7c:02:b7:f7:01:5c:ca:f9:83:ec:3b:25:
e7:fe:55:cd:4a:52:eb:f9:3c:28:f4:b0:af:1e:2f:bc:67:93:
43:0c:99:e1:49:8d:71:8c:d9:5c:ad:b9:ba:da:c4:e3:53:f0:
5f:d7:9d:10:da:88:e1:d3:4b:ea:30:d4:56:7b:2d:21:34:52:
c4:88:94:2a:3e:a7:5a:b9:61:00:5a:e8:db:7d:42:76:20:84:
ff:2e:80:ac:29:00:72:45:6d:98:9a:88:ce:6f:70:f3:18:21:
52:a4:61:b4:77:e9:fa:7a:bd:01:d4:52:57:ac:12:95:1d:7a:
c5:2a:70:2c:d9:46:b9:10:c8:48:81:ef:0a:3c:db:34:0c:10:
f6:ba:44:2b:63:4a:39:48:dd:b5:41:97:7f:a1:a1:f2:a3:69:
7d:6e:57:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:30 2025 by rpki-client