Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8biw5S_ndeCnFwJrInes-qomB9s.roa
File: 8biw5S_ndeCnFwJrInes-qomB9s.roa (raw, json)
Hash identifier: QBBZ0N5TMz/w2a6Ruf3otX1UPRliTXp45KwWYfN2fwE=
Subject key identifier: F1:B8:B0:E5:2F:E7:75:E0:A7:17:02:6B:22:77:AC:FA:AA:26:07:DB
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 284E7C28
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8biw5S_ndeCnFwJrInes-qomB9s.roa
Signing time: Sat 01 Jan 2022 16:10:12 +0000
ROA not before: Sat 01 Jan 2022 16:10:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209398
IP address blocks: 95.46.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676232232 (0x284e7c28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1b8b0e52fe775e0a717026b2277acfaaa2607db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:57:03:f8:ef:84:f3:a5:62:65:60:63:fb:d1:
cd:6b:e5:a1:9f:60:cf:8b:53:c3:96:12:fe:c4:a7:
37:2b:69:c6:e2:9a:a9:ea:fd:93:f1:78:bf:e9:a6:
be:8b:59:bf:14:60:88:d3:c5:ee:87:f8:bb:20:87:
14:fa:eb:04:b5:27:5d:73:9a:1b:e1:b2:ca:5d:4a:
e0:77:b2:63:a7:b0:bd:dd:16:84:c2:74:06:40:cb:
63:65:61:8e:f2:6d:c1:ea:0a:c8:99:8b:c8:1a:68:
c9:15:b3:2f:a5:54:e2:8e:33:52:5e:bb:81:f6:d6:
ab:62:99:5b:fc:10:d2:1a:3b:f3:bc:60:3a:b4:8c:
70:0b:91:74:92:d6:13:0f:61:64:10:fe:27:bb:e7:
a1:59:ed:ba:d0:68:ca:d6:93:1d:8b:6f:e8:c0:58:
45:43:de:a0:83:35:c0:77:a4:d7:57:ba:7c:3a:9c:
bd:9e:c5:8a:45:2f:bf:6a:47:90:9e:20:a0:b8:74:
94:5e:0e:1c:ea:f5:00:1f:8f:7b:fa:28:b0:13:dd:
c7:69:fe:bb:05:8c:56:70:ac:74:e6:f9:73:2e:2a:
ee:da:df:ef:ce:65:a0:34:b1:17:40:0f:41:d0:07:
84:bd:e2:46:9f:2f:a0:82:79:b6:71:1f:fa:ab:d0:
1a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B8:B0:E5:2F:E7:75:E0:A7:17:02:6B:22:77:AC:FA:AA:26:07:DB
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/8biw5S_ndeCnFwJrInes-qomB9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.145.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c5:87:51:04:d5:5e:04:c5:0f:23:63:89:4e:7a:b0:79:35:
ed:ef:e1:6b:49:10:1a:8c:2e:8a:d2:8a:5e:44:48:c0:19:8d:
c4:37:c1:26:38:80:a6:72:7e:c3:05:79:89:8e:51:34:eb:5e:
36:6c:c4:a2:01:1a:3d:5d:f4:a4:4f:3b:9c:d4:ff:19:e6:da:
ae:cb:de:11:1c:75:90:6c:ee:51:68:82:82:af:7b:ce:34:79:
52:b5:33:70:f0:03:45:cc:b8:d0:87:6c:7d:e8:de:24:a0:2a:
44:41:27:13:f2:03:fc:f5:1e:c4:2e:69:cd:a5:73:75:7d:90:
fd:a6:ee:58:5f:68:96:8f:ed:70:b0:fb:f8:b9:b2:4a:ea:ad:
be:00:5a:69:38:69:cd:b3:c3:e2:76:14:0f:14:e7:fe:63:46:
35:d3:e8:2f:1d:cf:18:5c:40:b3:00:18:ef:2f:60:e9:30:c3:
d4:f2:22:1c:e2:22:06:cd:e7:fe:d4:97:2d:cf:5f:2a:72:6e:
a1:ce:e8:e9:52:b1:3c:7a:cf:64:d9:ad:d5:32:eb:b3:df:25:
ee:9a:99:b7:27:35:9b:74:9e:2c:e4:e7:12:6b:40:2f:70:bd:
36:90:5e:38:8b:39:e2:5e:c2:ad:f1:47:15:b9:47:84:03:95:
31:0b:8b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org