Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G0xBJN8bZr3Pga3Yniz81el0TTQ.roa
File: G0xBJN8bZr3Pga3Yniz81el0TTQ.roa (raw, json)
Hash identifier: x/zA359iFGd7Z3Rc4mM/3czsLYhV4S+i67JNipPOsmY=
Subject key identifier: 1B:4C:41:24:DF:1B:66:BD:CF:81:AD:D8:9E:2C:FC:D5:E9:74:4D:34
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 279D9568
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G0xBJN8bZr3Pga3Yniz81el0TTQ.roa
Signing time: Sat 01 Jan 2022 16:08:26 +0000
ROA not before: Sat 01 Jan 2022 16:08:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47845
IP address blocks: 95.47.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664638824 (0x279d9568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b4c4124df1b66bdcf81add89e2cfcd5e9744d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:cd:0c:f5:21:a8:bb:fa:81:6f:26:73:5e:
1b:3b:56:d7:82:1d:5b:56:73:07:6d:c7:8e:48:15:
7e:5c:2c:29:40:f0:6d:91:a6:28:8e:31:98:30:3b:
93:13:95:73:c8:aa:d0:80:ab:2e:00:ce:7d:8b:48:
35:e0:31:d6:0d:19:10:ca:39:fc:00:83:9b:25:f9:
62:c5:9a:27:09:47:15:09:57:5b:8c:a1:8c:70:e5:
37:3c:1f:36:56:2a:1c:47:84:e5:4f:73:bc:42:8e:
96:20:24:e8:75:b2:21:b8:c3:86:90:85:46:1a:d2:
ae:fc:ed:93:19:c2:33:41:28:03:71:5c:b3:93:c2:
b9:b7:45:f2:8b:72:9c:10:9c:f7:22:54:02:70:1d:
09:be:24:8e:95:f2:1b:55:ec:12:7e:ae:52:12:a2:
88:1a:98:ff:dc:8c:36:20:33:2a:c3:08:4b:44:d1:
11:b9:9c:8f:fc:c9:8b:78:53:80:d5:4a:4d:8f:6b:
ee:af:37:59:3f:48:34:1f:3a:fb:1e:76:af:f7:15:
32:5e:5a:37:94:0d:39:2a:f9:74:62:52:08:e2:45:
79:99:b3:8c:b8:ac:a0:81:5b:3a:86:22:79:04:ce:
ca:6e:d8:7e:b1:ec:ff:b6:40:1a:69:43:46:90:e9:
6a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4C:41:24:DF:1B:66:BD:CF:81:AD:D8:9E:2C:FC:D5:E9:74:4D:34
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/G0xBJN8bZr3Pga3Yniz81el0TTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.246.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:22:a5:10:3b:76:e3:f6:b2:db:93:96:25:c3:2f:df:10:45:
07:10:21:55:15:ca:33:66:fb:2f:60:64:4b:93:0e:07:68:67:
16:a2:e3:3f:be:dd:6c:c9:00:89:bc:6e:4d:3f:79:35:a1:83:
e0:db:fc:f0:42:09:6a:b9:32:58:6f:25:4c:91:ee:e9:2f:b5:
00:51:6e:f8:7d:da:d9:1e:ac:48:ba:0f:a1:2b:13:ed:09:86:
c1:b1:d3:aa:b9:a5:d1:3c:0e:c8:75:b2:31:8d:6d:48:d2:b1:
08:5a:7d:d1:31:35:95:04:56:bd:4d:ad:56:d8:fc:7d:66:5d:
1c:d1:3d:02:b9:4e:5a:cd:d8:f6:44:71:f1:3e:25:58:b1:2f:
39:0d:6a:fd:65:56:b6:06:21:66:d6:ea:5c:f3:6a:ed:a6:d5:
7b:d5:23:d7:05:4f:fa:8d:e1:d1:57:eb:df:f7:6f:73:b0:b6:
7b:2e:5b:87:4b:fe:58:74:b1:5c:b1:59:e4:4b:5a:f5:93:5c:
b2:92:cf:dc:2e:eb:42:6a:eb:32:60:06:6e:9e:d9:bf:80:f5:
ca:7f:06:4e:8d:0f:ba:35:bd:15:05:0b:82:c5:ac:3d:1a:19:
7d:22:5d:4d:36:08:43:05:c7:7f:85:7a:62:a6:a4:e3:ee:63:
c3:a4:bd:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org