Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Uimjh8I3O40edtAVtLBHBUt23GQ.roa
File: Uimjh8I3O40edtAVtLBHBUt23GQ.roa (raw, json)
Hash identifier: oCwFOMDm8JT3goLHm4YZoQzwkhtTglfL+zmi/xdm1Zs=
Subject key identifier: 52:29:A3:87:C2:37:3B:8D:1E:76:D0:15:B4:B0:47:05:4B:76:DC:64
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189E3BA3569C9D248284080181ED12A4D11
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Uimjh8I3O40edtAVtLBHBUt23GQ.roa
Signing time: Fri 11 Aug 2023 08:32:58 +0000
ROA not before: Fri 11 Aug 2023 08:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 93.113.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:ba:35:69:c9:d2:48:28:40:80:18:1e:d1:2a:4d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 11 08:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5229a387c2373b8d1e76d015b4b047054b76dc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6b:8d:5c:1d:3c:56:51:8b:a9:cd:f0:db:25:
26:75:3a:ea:b4:12:ff:cb:0f:94:1c:61:73:be:a0:
97:c7:12:5f:64:49:1c:0a:29:e8:6d:60:38:8f:af:
34:20:10:bc:ad:3d:da:76:a7:09:d2:5c:a7:57:ad:
4a:81:20:63:b2:5f:cc:13:0d:f6:26:3a:6c:f3:17:
25:c8:0a:9c:a6:11:23:39:ef:5b:1f:e0:41:0d:23:
5c:ea:0e:fa:40:95:48:f3:f5:15:b0:a0:33:c9:2f:
e8:41:8a:bd:f5:00:6c:db:6f:8a:0d:86:8c:3e:df:
04:62:49:78:93:77:22:a1:36:e2:47:e5:07:28:ff:
4c:c2:57:5f:89:36:85:1a:5d:9e:d9:38:0d:2a:98:
e4:31:ff:04:8b:93:4e:df:c2:1b:34:f6:0c:cc:0c:
2a:e1:7a:3d:ea:75:51:c6:4f:a4:ef:7b:ff:45:0f:
11:11:88:3d:93:34:c5:36:97:09:1c:0a:c8:cd:1b:
d9:7c:34:3c:4a:48:bc:7e:b4:25:1d:d3:81:ba:ec:
38:bf:c4:2f:78:96:34:39:43:aa:88:5e:d5:f5:55:
4d:cf:0b:f2:cf:f8:cd:c7:4c:86:73:3a:a3:45:b3:
20:f1:a0:a1:7f:cc:b8:fd:7a:09:25:a4:90:8b:cd:
d3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:29:A3:87:C2:37:3B:8D:1E:76:D0:15:B4:B0:47:05:4B:76:DC:64
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Uimjh8I3O40edtAVtLBHBUt23GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.171.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:f2:1d:9a:44:25:fd:bd:53:b2:f1:b9:58:b1:45:7c:c5:59:
31:7a:ef:75:45:45:cd:ca:0c:ed:04:e9:de:71:99:93:a1:06:
fc:53:3d:e0:1d:40:17:fe:44:cc:48:f6:cc:6d:62:b5:ac:96:
14:85:bb:7c:dd:ea:e6:4a:a9:f8:9e:d9:c5:b7:e5:f5:fd:95:
33:43:e4:f2:95:b0:12:70:ce:6b:a0:05:5f:eb:6a:59:17:8a:
ef:fd:93:02:7c:9f:0d:07:73:59:cf:67:9f:bf:d1:00:f4:38:
42:35:86:8c:b4:35:ff:cd:d4:8a:d4:06:b9:38:d5:e4:6a:9f:
57:67:b5:94:66:4b:39:33:34:15:7b:95:e9:d2:22:5c:ea:79:
f5:c1:eb:73:02:d2:cb:37:29:8f:10:6b:f0:61:0d:bc:53:af:
22:a2:09:23:ce:71:5a:1d:03:6c:bf:17:62:9a:d9:62:e9:40:
3d:a0:7e:92:17:b7:e4:74:18:bc:b8:a9:3a:62:d9:f4:4d:ca:
dd:62:8d:69:7a:9d:f1:4a:42:62:48:f3:e0:a8:5f:89:a7:41:
55:0c:dc:44:ff:66:2c:54:a9:3f:8d:fa:a3:9d:68:8f:2f:cf:
ad:eb:a7:b4:13:d0:c5:a3:ed:81:88:cd:16:b0:e3:2c:31:4c:
4d:b0:13:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:51:10 2025 by rpki-client