Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d_JY-M1ShW7kY9xfp8c85cBiVdA.roa
File: d_JY-M1ShW7kY9xfp8c85cBiVdA.roa (raw, json)
Hash identifier: o2lqb7Tr5MwobfIBo627Od8+TSZ9XHx9PbRKTiV37r0=
Subject key identifier: 77:F2:58:F8:CD:52:85:6E:E4:63:DC:5F:A7:C7:3C:E5:C0:62:55:D0
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A0D6A03
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d_JY-M1ShW7kY9xfp8c85cBiVdA.roa
Signing time: Wed 01 Jun 2022 09:05:23 +0000
ROA not before: Wed 01 Jun 2022 09:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59734
IP address blocks: 95.47.240.0/23 maxlen: 23
92.38.86.0/23 maxlen: 24
95.46.120.0/23 maxlen: 23
93.171.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705522179 (0x2a0d6a03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77f258f8cd52856ee463dc5fa7c73ce5c06255d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ee:16:94:ab:09:d3:04:2e:bc:41:59:77:61:
af:40:f4:fe:1f:76:d8:5f:b9:29:12:ee:6c:de:07:
14:f6:1c:9e:c5:ff:a2:45:73:b7:d4:d4:2a:35:54:
ee:75:1d:58:2e:42:74:b5:a3:7e:24:67:40:23:27:
d1:bc:b9:3c:11:8d:da:2f:b5:e9:cb:7b:5f:46:b5:
7e:33:94:b3:1a:15:c9:a4:8a:24:1f:d2:0c:67:73:
d6:11:7f:db:4c:fe:b9:9d:5d:61:89:4b:ef:9a:ae:
49:ed:96:93:d8:3a:d5:10:06:4f:6f:ce:90:a9:6f:
b5:97:19:3b:36:b0:6e:b4:e8:f5:52:9c:82:35:93:
c3:13:63:10:c5:ce:0e:1d:c9:51:21:d3:87:d0:53:
f7:47:b7:ec:af:5f:b9:21:10:7a:91:a8:71:c2:0a:
57:b5:72:ab:7c:dd:7e:89:ee:dc:33:82:c2:d1:6e:
a7:c9:9c:9b:8c:a9:a9:80:5d:12:4b:f3:04:f9:24:
c8:83:a9:bf:cd:7f:57:e6:6c:a5:9a:da:15:36:43:
f6:41:d9:28:1f:5e:a3:ff:00:2b:a9:92:b7:da:0d:
77:f8:21:b7:46:f3:66:e6:3f:ed:6b:87:88:c6:84:
e8:e0:23:de:f0:f8:38:6e:6a:3c:ba:07:3b:6c:18:
7f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F2:58:F8:CD:52:85:6E:E4:63:DC:5F:A7:C7:3C:E5:C0:62:55:D0
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d_JY-M1ShW7kY9xfp8c85cBiVdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.86.0/23
93.171.32.0/23
95.46.120.0/23
95.47.240.0/23
Signature Algorithm: sha256WithRSAEncryption
12:48:3c:14:da:37:58:8f:a4:5c:92:15:96:f3:26:90:e9:4d:
fa:dc:69:47:f2:75:5e:f2:8a:0d:66:a2:67:88:2b:2a:d9:35:
42:7e:91:48:40:ba:95:2a:22:36:d7:92:af:5e:5b:09:39:48:
39:f1:4e:2a:4a:97:60:c0:af:2f:43:82:a8:11:a3:a0:10:b5:
d2:e6:09:9b:8c:a4:ac:4c:4e:49:31:1a:eb:ba:69:ff:1d:be:
f9:18:03:3d:49:b5:f1:13:3d:6f:03:64:4a:f2:0b:96:0b:52:
95:55:41:60:5b:57:f6:52:53:f0:89:ac:3e:f9:bc:70:9e:c2:
9a:74:1a:32:4e:60:1b:db:17:19:70:4c:29:1d:54:71:69:3e:
de:60:be:34:1f:17:75:99:44:9c:80:bc:e3:79:40:da:4c:08:
be:8a:f9:8f:9d:9e:13:54:29:cf:38:a7:0a:37:fe:cb:21:0c:
62:ab:22:22:1b:4a:27:e3:2b:65:bc:50:8a:89:20:09:dd:7e:
74:ed:30:35:b8:0b:26:d0:8a:22:d4:08:90:5a:c9:59:a3:f8:
89:36:1f:5a:3c:70:d8:c7:ad:9f:26:45:63:1b:aa:38:1c:6f:
cb:b4:bb:53:87:1d:23:e6:eb:96:53:22:a6:58:92:11:61:0c:
fd:84:7a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:27 2025 by rpki-client