Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JQXwHOP9BSb-sFE2PbMrdnHCeTQ.roa
File: JQXwHOP9BSb-sFE2PbMrdnHCeTQ.roa (raw, json)
Hash identifier: IL+2wHO9+6g8dSoAG6UEHy467aq3JgIbqvbUoGDBYDs=
Subject key identifier: 25:05:F0:1C:E3:FD:05:26:FE:B0:51:36:3D:B3:2B:76:71:C2:79:34
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27AA5B4B
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JQXwHOP9BSb-sFE2PbMrdnHCeTQ.roa
Signing time: Sat 01 Jan 2022 16:08:33 +0000
ROA not before: Sat 01 Jan 2022 16:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49430
IP address blocks: 95.46.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665475915 (0x27aa5b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2505f01ce3fd0526feb051363db32b7671c27934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:0f:f3:a9:53:0e:aa:64:d0:34:75:bd:01:
eb:14:67:65:01:bb:b8:98:d6:38:59:79:fb:46:c3:
8f:be:2e:b2:bb:e6:b4:49:45:41:d1:cb:4c:ba:76:
fd:c3:01:e4:8c:30:6f:13:28:e4:87:d8:a2:2f:76:
be:95:9a:2a:c6:c7:ec:51:ab:3f:b7:dc:80:ec:71:
9f:b9:04:93:6e:5b:4c:2c:76:34:d4:53:75:9b:e2:
2f:b0:44:43:1f:d3:4d:10:70:96:2d:0b:e8:f4:d1:
ea:0f:d7:fa:30:5f:76:43:bb:94:96:ad:74:2d:37:
24:bb:48:97:75:78:b9:78:9a:af:f5:a2:ee:5e:ce:
d2:9b:1b:05:e9:46:c8:23:b5:bb:e3:98:9e:65:83:
0a:c4:e9:78:37:fc:7e:f2:14:1a:6c:43:0f:0b:e0:
94:94:57:e9:bd:78:a3:c2:74:89:e7:d6:16:d4:54:
51:56:13:18:ad:5f:7e:94:4f:8b:44:06:86:59:fa:
8b:a5:83:0e:15:59:d4:f4:eb:a1:8d:40:44:45:78:
67:98:09:c3:6b:27:34:1b:ff:4a:f9:7f:92:c5:78:
29:50:96:0d:ea:1b:a9:d8:b1:d2:57:4b:5b:e0:35:
38:0f:ac:20:cc:ac:d3:19:b5:cf:d8:c2:a5:7c:73:
c2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:05:F0:1C:E3:FD:05:26:FE:B0:51:36:3D:B3:2B:76:71:C2:79:34
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JQXwHOP9BSb-sFE2PbMrdnHCeTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.142.0/24
Signature Algorithm: sha256WithRSAEncryption
96:a3:7b:21:12:38:a3:d7:c9:09:2f:b5:2e:69:64:1b:a2:61:
62:e2:8e:b0:3e:47:cc:34:c8:49:ec:ad:3a:ab:18:1d:20:6a:
99:dc:b4:c5:33:6b:54:22:a8:13:79:33:55:7c:8c:78:74:f3:
36:e3:7f:31:92:5f:c7:4e:63:78:90:2b:f5:2f:c7:57:b7:73:
f7:b6:45:88:f5:aa:5b:bd:0d:be:69:d5:66:55:8d:6f:2a:91:
60:08:9e:33:06:fd:d2:f8:18:be:e0:78:c2:2a:1c:de:22:ef:
f8:ff:50:53:00:57:2b:f2:5d:61:03:b6:9a:81:e7:e6:22:00:
f1:42:0a:16:02:49:87:67:99:33:c2:8b:4d:2b:2d:78:f4:a7:
30:6c:3d:d3:e2:a2:b4:16:27:d1:c3:dc:52:66:4b:a9:73:d9:
19:dd:12:18:ef:a5:79:aa:1c:ca:58:44:3f:bd:12:5a:34:fd:
d2:2e:eb:d4:52:b5:48:6b:a4:e9:82:82:02:9f:b9:3c:f6:8a:
ec:6d:ac:a5:e1:40:8d:2d:c8:b6:58:ec:7b:7e:33:73:40:19:
04:ec:6d:14:e6:21:a2:82:55:64:03:04:63:39:63:ef:c1:ba:
03:c3:ac:0a:d4:79:cd:52:a8:25:16:21:97:45:00:2e:bc:fc:
2d:b5:11:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org