Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j5wNGl8Zh4Ljak29Z_f_lV4oUdc.roa
File: j5wNGl8Zh4Ljak29Z_f_lV4oUdc.roa (raw, json)
Hash identifier: vxMK3gnkrDurtLwigL6KnPSGT5Jd3N/gV8HBjZnzByw=
Subject key identifier: 8F:9C:0D:1A:5F:19:87:82:E3:6A:4D:BD:67:F7:FF:95:5E:28:51:D7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27EC56FC
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j5wNGl8Zh4Ljak29Z_f_lV4oUdc.roa
Signing time: Sat 01 Jan 2022 16:09:08 +0000
ROA not before: Sat 01 Jan 2022 16:09:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60108
IP address blocks: 95.47.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669800188 (0x27ec56fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f9c0d1a5f198782e36a4dbd67f7ff955e2851d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:49:0a:90:de:5a:f8:ac:b1:92:65:e3:28:a6:
91:da:f4:8d:56:ce:01:16:d5:0b:db:7b:10:36:8d:
ac:90:86:b1:dc:6d:2e:c1:cb:fe:9c:53:fa:9b:aa:
a8:10:6e:82:7b:ed:84:f8:cf:ae:2f:f4:f9:81:b3:
42:a7:57:36:06:1a:5f:65:04:12:44:2d:39:77:29:
6b:74:99:2d:65:b3:0e:58:a3:0b:9c:a3:3c:20:55:
bf:f5:a6:cd:fa:d6:a9:73:2c:5d:14:0b:fb:34:e1:
fe:53:15:0a:fd:f7:41:94:48:e1:e7:f3:e3:55:7f:
62:d1:eb:29:56:19:17:7b:e3:e0:0b:f6:7d:6d:bf:
ce:80:89:52:72:1e:9c:c6:eb:cf:4a:50:23:3c:6c:
1c:3d:d8:f7:05:b6:ce:0d:3b:08:5f:44:86:07:75:
d7:a4:c6:3e:8b:3a:01:33:5d:81:82:0b:f8:6d:ca:
a5:ea:7f:29:33:44:f6:ac:29:5f:c4:a9:27:40:d0:
e0:47:17:51:91:bb:86:f6:ed:ac:33:4b:f2:55:0a:
fb:96:bc:85:33:0f:36:a4:5d:e4:a5:e7:d8:56:86:
e4:0d:53:c0:ad:e0:b6:5c:04:b4:e0:7e:40:93:83:
44:32:9c:2b:f3:c7:f2:5c:87:47:b8:ff:0e:bc:c5:
2e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9C:0D:1A:5F:19:87:82:E3:6A:4D:BD:67:F7:FF:95:5E:28:51:D7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/j5wNGl8Zh4Ljak29Z_f_lV4oUdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.140.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:32:91:68:c4:4a:74:2f:81:55:ef:3e:c4:d8:c4:1b:b8:e3:
59:3d:84:d5:08:ba:14:bc:23:cb:c1:b2:79:49:ca:8f:76:5f:
24:c6:8c:cb:1b:1e:b3:d7:3e:4c:c2:0d:37:33:50:b7:f1:a4:
fc:64:f9:52:78:ac:37:87:b6:4e:90:e3:34:4e:dc:64:a3:7a:
cd:b7:d2:25:03:24:7d:4e:ee:7c:48:d9:ff:ef:3f:ab:9b:ab:
27:bd:ef:d8:ba:a5:74:35:3a:7b:e7:48:b2:7a:6c:ae:cc:bd:
dc:79:41:53:ca:a9:c1:38:5f:d0:2a:db:5c:94:8a:2f:d4:92:
0a:64:e0:5b:13:5b:0b:d0:50:8a:0d:d7:db:49:58:9f:47:24:
3b:50:f5:75:bc:69:6f:de:7a:b3:f1:ac:7c:d7:4b:a9:58:55:
5b:19:e7:b5:9a:00:0d:ca:73:5e:a8:58:d0:67:90:a1:81:b0:
b0:fd:fd:ab:97:45:5d:95:42:7f:d6:46:54:bd:d4:97:b8:4a:
9f:73:fb:69:1a:49:cd:e5:56:d7:76:0e:d2:73:ad:6f:3f:15:
ab:2d:1f:0d:46:2a:c9:c2:6b:1f:71:0a:6c:65:6b:69:4b:24:
78:71:d4:79:25:e9:13:32:3a:58:a6:be:42:34:77:48:6b:6e:
58:d3:49:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:20 2025 by rpki-client