Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eaf6ed-baf4-41bf-9f22-7d972e1d2e61/1/EXczbt9kj4izJbEkvG3EaOBm7mA.roa
File: EXczbt9kj4izJbEkvG3EaOBm7mA.roa (raw, json)
Hash identifier: DLd6yWZLh7GtLczO/j6dJN8AWBPrsJ0KsX39lFV7Vq8=
Subject key identifier: 11:77:33:6E:DF:64:8F:88:B3:25:B1:24:BC:6D:C4:68:E0:66:EE:60
Certificate issuer: /CN=c5e3f7f40c100dffdb18121c726199e85804c585
Certificate serial: 0ACE8A17
Authority key identifier: C5:E3:F7:F4:0C:10:0D:FF:DB:18:12:1C:72:61:99:E8:58:04:C5:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xeP39AwQDf_bGBIccmGZ6FgExYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eaf6ed-baf4-41bf-9f22-7d972e1d2e61/1/EXczbt9kj4izJbEkvG3EaOBm7mA.roa
Signing time: Sat 01 Jan 2022 01:59:33 +0000
ROA not before: Sat 01 Jan 2022 01:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41838
IP address blocks: 93.90.68.0/22 maxlen: 24
2a0d:3a40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181307927 (0xace8a17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5e3f7f40c100dffdb18121c726199e85804c585
Validity
Not Before: Jan 1 01:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1177336edf648f88b325b124bc6dc468e066ee60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:94:b8:e3:c2:3f:13:8f:6c:55:64:16:a6:ad:
41:bf:66:b1:db:6e:b0:71:be:f4:7f:89:70:38:af:
91:ce:e3:69:d9:be:13:be:27:3f:77:d2:2f:cf:77:
ac:b4:2c:ad:52:89:46:5e:eb:1e:e1:d7:77:90:a9:
03:02:da:62:fd:a2:54:72:31:5f:0c:0c:0a:f0:82:
2d:a0:01:3c:ed:ea:0d:07:09:be:86:ae:b0:22:85:
98:18:7e:79:cf:74:e1:d0:a9:bb:09:bc:a5:7f:3f:
11:75:f4:c8:21:a5:6d:69:d4:ec:fe:d8:1e:1a:5c:
5d:9e:1c:25:77:5f:17:c7:dd:db:b1:f9:bf:ef:d2:
a0:1a:11:4c:86:33:3c:b8:e0:44:42:48:cb:32:73:
9a:10:81:e2:73:28:6a:9f:71:6a:02:ce:14:f4:da:
7a:3d:0d:8e:b0:03:c7:bb:fc:48:84:3e:1d:e2:86:
cd:3e:92:8b:5f:c5:24:fb:c6:fb:5a:42:db:79:86:
31:27:14:c3:76:78:eb:b5:14:43:79:b0:df:2f:24:
11:b9:48:a2:02:9e:ac:2f:92:83:9f:34:0c:32:c3:
cf:63:89:f9:ee:6f:e1:a7:bc:91:4e:c0:9b:b9:82:
10:d5:b3:d6:19:ad:d4:00:8a:94:ff:aa:ca:00:51:
ea:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:77:33:6E:DF:64:8F:88:B3:25:B1:24:BC:6D:C4:68:E0:66:EE:60
X509v3 Authority Key Identifier:
keyid:C5:E3:F7:F4:0C:10:0D:FF:DB:18:12:1C:72:61:99:E8:58:04:C5:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xeP39AwQDf_bGBIccmGZ6FgExYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eaf6ed-baf4-41bf-9f22-7d972e1d2e61/1/EXczbt9kj4izJbEkvG3EaOBm7mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eaf6ed-baf4-41bf-9f22-7d972e1d2e61/1/xeP39AwQDf_bGBIccmGZ6FgExYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.90.68.0/22
IPv6:
2a0d:3a40::/32
Signature Algorithm: sha256WithRSAEncryption
4b:e0:5b:7c:64:16:fb:ff:de:02:b1:c7:bc:45:f3:28:4b:07:
ad:a6:ee:4a:fb:ca:13:4f:e7:e3:d3:c4:14:19:5e:8b:c6:37:
fb:3d:ca:fe:58:f4:38:61:1c:f1:81:72:c8:ff:7f:ac:ac:01:
8e:ed:c2:d9:c1:4a:b8:3d:3d:3f:ae:a6:93:5c:15:de:af:2b:
99:be:7b:48:3c:a9:a8:32:fb:b0:2c:40:5c:ab:35:c2:29:86:
ba:90:db:5e:47:89:af:eb:fa:0e:d5:e5:7f:d3:cc:d3:a7:0e:
7f:47:cf:ff:51:3a:85:2f:0c:65:6b:b7:5b:44:cc:f2:cb:89:
fd:2b:14:44:f2:76:f4:52:b3:e0:e0:e4:0c:a0:77:c2:0a:87:
0f:55:39:b6:bc:2b:a0:eb:e9:e2:6a:07:da:49:50:d3:db:ba:
7f:c0:b4:02:05:d3:95:d0:1c:16:74:0e:f9:9b:70:8c:a5:0c:
35:67:c1:e5:4c:88:c5:15:db:71:7f:f1:61:f6:21:00:3f:e9:
38:1c:cd:29:10:3d:b6:0a:46:2c:98:8d:77:72:5c:67:73:e4:
02:20:aa:de:e5:63:77:fb:4b:20:43:54:ec:ac:c3:74:61:a3:
f9:c0:a0:6a:92:1c:ae:b6:e2:ab:bd:1e:53:81:31:28:1e:e7:
2c:e3:2a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:04 2025 by rpki-client