Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TkcQFsxbz4kfvSTaYo-FutFIty0.roa
File: TkcQFsxbz4kfvSTaYo-FutFIty0.roa (raw, json)
Hash identifier: 4BL+OeK7LK527/9ADEmBoQiH/Uz1n56UKogmBnRvnm0=
Subject key identifier: 4E:47:10:16:CC:5B:CF:89:1F:BD:24:DA:62:8F:85:BA:D1:48:B7:2D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27DA9532
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TkcQFsxbz4kfvSTaYo-FutFIty0.roa
Signing time: Sat 01 Jan 2022 16:08:59 +0000
ROA not before: Sat 01 Jan 2022 16:08:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58060
IP address blocks: 95.46.78.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668636466 (0x27da9532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e471016cc5bcf891fbd24da628f85bad148b72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:12:95:f7:15:89:35:d4:cc:93:50:fd:c4:b5:
1d:19:a0:7e:dc:83:07:ca:3e:82:3a:22:dc:30:5c:
30:2d:d4:4b:be:7d:7e:73:75:bd:b3:1b:ff:06:08:
ce:9f:16:89:85:ad:cd:75:1d:6d:e4:89:0c:1b:80:
c2:3d:55:df:7e:a0:1d:0e:16:0b:76:39:f3:2e:3f:
47:5a:4b:4f:e8:3c:9f:94:c7:97:20:ec:d5:9d:e0:
0e:72:48:36:84:23:fb:70:f0:8e:1b:6a:9d:41:0f:
35:73:91:fd:ca:11:63:f3:7a:06:f4:1e:db:ce:2e:
a0:9b:bf:d5:8f:f1:31:d8:61:51:7f:c1:6c:91:af:
41:60:e2:72:ac:f1:ec:66:a4:e3:36:6c:a3:a7:c6:
69:37:d3:78:20:15:35:85:1a:03:d1:9b:8d:7d:5a:
65:b8:ba:0e:79:6b:71:7f:26:e4:6e:06:db:f7:37:
59:c0:ad:4c:cb:e4:cf:6a:ed:90:21:e2:20:40:e2:
03:64:47:5d:0d:05:f7:68:73:f1:81:9c:24:f7:ff:
9d:98:32:21:29:f0:29:32:5b:16:da:27:59:f1:ff:
ab:f4:a5:bf:65:9e:61:ea:18:9b:d5:2f:69:7c:53:
18:44:bf:38:7b:78:ba:0e:8a:17:0d:6a:5b:3e:1b:
a2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:47:10:16:CC:5B:CF:89:1F:BD:24:DA:62:8F:85:BA:D1:48:B7:2D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TkcQFsxbz4kfvSTaYo-FutFIty0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.78.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:3b:48:cd:a4:66:c8:e7:12:60:7d:e1:df:c4:d6:2f:11:45:
33:f9:e1:5e:57:db:e9:2a:a8:3a:af:a8:4c:7a:16:49:e0:ac:
0e:ce:bf:44:ea:8b:01:c8:a6:f8:6c:f1:e3:a0:43:ef:43:be:
75:d2:62:0a:39:1c:6d:7b:09:fe:3d:c3:4b:98:5d:fd:e1:aa:
5f:ae:0e:dc:f8:f0:bc:e0:c9:d6:9f:bc:17:bc:4d:c0:cb:3a:
0a:d7:0e:d6:ee:62:65:92:17:04:d9:49:1a:ac:c1:31:c3:2c:
03:52:e6:9e:ef:c7:65:ae:d3:bd:a5:8a:50:08:81:0b:a7:cc:
51:cc:80:47:4f:a2:4f:6b:b4:69:cb:9b:c3:8c:09:39:ae:5a:
3e:01:1b:fa:ac:9d:92:62:b6:be:fb:88:a9:5e:b2:89:9d:60:
60:4e:ea:e9:d7:a7:e0:d7:d0:26:a3:27:cd:0f:53:2f:33:c1:
d0:0f:c7:9b:20:10:99:37:f8:3d:ee:84:99:67:22:a4:57:b4:
43:db:61:d3:6d:83:01:ba:8f:1e:73:2e:66:cf:4d:ca:1b:39:
41:60:fd:50:d9:29:3c:00:85:f9:83:b9:5f:2b:36:10:ad:ea:
07:5a:88:0e:1b:38:2b:49:ec:6c:a7:5a:e2:46:52:e2:49:16:
e2:4a:e1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:46 2025 by rpki-client