Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Y0amFpjEpT5DsBHhyvNU8X62448.roa
File: Y0amFpjEpT5DsBHhyvNU8X62448.roa (raw, json)
Hash identifier: cqUpaqCj8HdgjBxCSTQ/fg19kq6k/AjxqZ8sXnXAVBc=
Subject key identifier: 63:46:A6:16:98:C4:A5:3E:43:B0:11:E1:CA:F3:54:F1:7E:B6:E3:8F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27F4C609
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Y0amFpjEpT5DsBHhyvNU8X62448.roa
Signing time: Sat 01 Jan 2022 16:09:14 +0000
ROA not before: Sat 01 Jan 2022 16:09:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60757
IP address blocks: 95.46.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670352905 (0x27f4c609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6346a61698c4a53e43b011e1caf354f17eb6e38f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bc:c8:1e:46:30:80:7e:ba:44:a8:95:a1:38:
8a:78:df:b5:c8:cf:44:14:fe:e5:75:99:90:32:e6:
89:54:c9:df:80:2f:2b:62:ca:0a:ee:34:33:d4:77:
aa:a4:80:c4:1a:03:d5:d4:ac:3b:91:05:cd:8a:0c:
83:13:15:2c:a7:07:bc:3b:84:5b:9d:fd:4a:bc:fc:
36:23:58:04:a1:a7:4f:d4:e2:42:84:0b:15:0d:7d:
d2:7a:55:f7:3d:78:36:9a:c4:56:3f:37:56:e0:e0:
c1:1d:49:b9:c7:50:2c:2f:85:b8:e6:00:61:28:94:
f2:a9:75:aa:88:4c:97:39:c4:9d:b0:b2:cf:e7:ef:
43:51:ed:ff:34:c7:cf:81:5a:00:2a:5d:64:4a:08:
ab:b2:af:12:8c:08:e8:e1:c5:73:28:6e:c1:55:94:
a7:95:2d:3b:a9:3e:e7:4a:c9:f3:72:64:73:61:c9:
77:c5:6c:26:06:5b:2b:7c:64:27:81:d2:1e:8a:17:
47:86:58:50:f4:cf:94:77:a1:fd:36:b8:8e:79:97:
ac:b0:d2:ed:40:8d:0b:b9:97:57:8a:c1:64:c6:72:
55:b9:69:7b:49:1d:ba:ed:e0:d5:d5:96:4f:88:3f:
95:12:20:a3:c8:07:88:66:bd:46:e1:a5:63:0b:e1:
58:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:46:A6:16:98:C4:A5:3E:43:B0:11:E1:CA:F3:54:F1:7E:B6:E3:8F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Y0amFpjEpT5DsBHhyvNU8X62448.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:29:13:33:fc:6d:38:d4:56:2f:5f:8d:9f:5e:60:21:0b:01:
c3:82:ca:d1:f5:12:b8:96:6e:f0:b9:28:46:89:71:12:b7:d8:
38:41:7e:97:95:b2:48:11:ca:64:5a:5d:d6:3d:d5:94:5c:bc:
b6:00:22:00:68:77:b0:81:06:d9:1d:a2:9b:cd:1f:34:8c:1d:
c9:97:13:bf:d6:1b:a7:2e:44:8c:60:ec:b8:bf:4f:f7:eb:b0:
c9:72:f7:f1:08:13:86:a3:bc:5f:9f:3d:4d:a8:73:b9:f2:06:
65:b5:0b:5d:fb:86:e2:f6:5b:21:96:bf:10:44:34:a1:de:c1:
db:e3:72:39:42:31:bf:3d:cc:e9:f2:66:f7:2a:2c:bf:e0:af:
6e:67:84:39:0c:26:48:24:7a:00:2d:55:a8:90:33:47:b1:47:
b4:11:d2:39:b0:39:1c:5c:9c:95:44:49:9c:ec:68:cb:ed:e3:
b1:1d:8f:67:13:40:09:e1:9a:5a:a6:f1:a3:bf:9a:bf:b7:cf:
52:03:4e:ce:6a:9f:07:81:b5:a2:fd:2c:b1:2b:71:f8:42:0a:
e8:ae:91:12:ba:dd:52:70:6e:bd:45:c6:6d:00:d6:15:35:31:
51:32:ac:4f:21:0d:bd:55:06:b4:e0:05:2a:74:30:83:23:cd:
11:d7:68:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:37 2025 by rpki-client