Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5Bb_nygOIrd2jMT5GjjWmwZoApU.roa
File: 5Bb_nygOIrd2jMT5GjjWmwZoApU.roa (raw, json)
Hash identifier: WsFx1K08W+v2OW/ssK9Kx13KbxPfl6J/05eHA2rOfuk=
Subject key identifier: E4:16:FF:9F:28:0E:22:B7:76:8C:C4:F9:1A:38:D6:9B:06:68:02:95
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 279A830C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5Bb_nygOIrd2jMT5GjjWmwZoApU.roa
Signing time: Sat 01 Jan 2022 16:08:25 +0000
ROA not before: Sat 01 Jan 2022 16:08:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47463
IP address blocks: 95.46.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664437516 (0x279a830c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e416ff9f280e22b7768cc4f91a38d69b06680295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:17:98:b7:2e:49:c2:19:28:df:58:9b:03:df:
ec:41:d0:2d:60:a6:30:8b:55:38:10:f4:14:47:ae:
d7:15:1d:61:6b:43:81:e7:f3:16:93:7b:33:a0:7f:
54:0f:6b:73:23:5b:91:ea:85:8c:de:2d:d1:9a:a7:
0c:51:6d:e8:d5:58:62:07:fc:89:2e:66:7c:99:aa:
7f:34:b9:53:d4:77:92:92:84:ab:24:5a:60:2f:c9:
b3:39:bc:c0:ba:65:18:d7:0c:b6:3c:6a:25:8c:cd:
fe:03:b3:f0:a2:24:fc:52:5b:29:00:d4:81:21:56:
a3:cb:f0:e8:4a:2e:05:95:75:49:41:af:03:ee:5a:
14:72:29:96:ad:b2:e9:e5:05:53:05:66:52:2a:93:
5b:de:65:cb:4e:f1:a0:03:c1:5b:49:26:5c:12:02:
64:5c:82:96:cd:b6:f8:00:fa:5e:dc:d0:f1:2b:f2:
c9:78:e2:56:3c:3a:95:cb:16:75:87:27:45:3e:15:
0f:f5:0e:93:c6:f1:13:00:08:b8:82:16:04:87:40:
4c:ee:d0:eb:13:2a:ac:5b:bf:6c:23:2c:1f:48:14:
b5:4f:c6:d8:94:43:75:b4:39:d6:4a:b7:5b:c1:e7:
45:13:a2:e6:70:99:60:95:bc:09:9c:04:97:c2:9d:
58:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:16:FF:9F:28:0E:22:B7:76:8C:C4:F9:1A:38:D6:9B:06:68:02:95
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5Bb_nygOIrd2jMT5GjjWmwZoApU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.124.0/24
Signature Algorithm: sha256WithRSAEncryption
22:44:b7:81:fa:00:8e:4a:bd:4c:cc:5f:fa:bf:4f:e6:dc:b0:
04:a1:42:80:0a:36:ce:72:c1:d8:13:05:bc:fe:ad:e3:b3:5e:
83:76:69:89:02:61:2e:bc:f6:52:6d:8c:2f:9e:32:66:42:84:
b9:e6:cd:c7:75:1c:c4:fa:85:f5:6e:0e:63:00:bf:45:4f:27:
41:34:cf:df:0a:5c:d3:f4:51:7a:7b:7d:f1:06:cc:32:e2:18:
8b:54:88:df:3d:43:ba:6b:bf:ae:35:50:84:4c:a0:be:12:f1:
f2:15:d5:bb:17:d8:c5:5c:a5:b9:b3:4e:2b:ab:9b:73:11:5b:
a7:60:cc:ef:61:e3:25:ca:8f:bb:8c:e6:df:09:91:31:dc:59:
9f:b9:2a:2d:7b:bc:fe:da:bc:fd:45:df:68:bf:da:87:2c:ec:
e5:96:d6:f4:69:1e:1e:9e:51:de:ed:67:aa:82:d5:52:ba:f9:
0f:94:cb:05:79:fa:b1:7b:fe:78:1c:00:6c:af:5d:68:c8:59:
43:89:50:3b:91:d1:e9:04:60:dc:9c:bb:6e:09:c5:66:59:2e:
02:e9:99:2e:a8:88:a1:c5:d7:70:a9:a7:11:0f:d4:29:27:d2:
c5:01:56:4a:fc:e8:ce:87:47:17:06:c0:63:3f:01:00:56:3d:
44:d6:55:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:27 2025 by rpki-client