Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k0kvRfF2yAfHYQhbiSXaDKaL7_s.roa
File: k0kvRfF2yAfHYQhbiSXaDKaL7_s.roa (raw, json)
Hash identifier: 9t6IBm28yVAWmbHmZUf52Oiwun9BL9D5139juERg8ok=
Subject key identifier: 93:49:2F:45:F1:76:C8:07:C7:61:08:5B:89:25:DA:0C:A6:8B:EF:FB
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29B5C7B8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k0kvRfF2yAfHYQhbiSXaDKaL7_s.roa
Signing time: Mon 02 May 2022 11:52:33 +0000
ROA not before: Mon 02 May 2022 11:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57764
IP address blocks: 95.46.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 699779000 (0x29b5c7b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 2 11:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93492f45f176c807c761085b8925da0ca68beffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ae:aa:c6:c0:0d:5f:78:97:66:ca:6a:ec:2e:
ca:df:7b:81:c2:e6:88:66:14:c6:60:73:e8:21:48:
41:bf:72:09:cd:8b:73:ca:29:29:08:33:9a:2b:66:
7b:54:0a:22:cf:52:44:54:94:01:6d:70:e7:bf:5c:
57:9f:12:5e:3a:0c:de:92:69:97:4c:67:c7:a0:9f:
74:8c:df:d5:02:57:38:6b:6a:58:1f:da:28:8e:ac:
42:0d:e8:e2:2b:6f:9e:e1:92:c7:a1:b7:6a:27:25:
cb:fd:12:c2:7c:d7:88:62:8e:bd:3d:dc:b5:92:cb:
f1:9f:e8:33:ec:c6:dd:d0:51:d9:e2:77:03:7a:8d:
1c:08:b3:9a:83:7e:f4:e7:b8:bc:49:5a:8e:ad:fe:
8e:d8:d7:51:76:06:27:4a:ba:1f:91:8c:66:36:a6:
39:d9:52:de:09:f7:83:78:a0:77:79:c9:64:48:b4:
74:4e:7b:f0:f3:1f:3b:58:c7:7a:e3:cd:4b:96:22:
52:34:d1:0b:7c:cb:62:41:6d:7f:30:8e:03:c8:be:
9e:ea:08:12:50:8d:39:e2:62:3a:ec:e4:2f:6c:80:
65:31:97:0a:e4:01:41:c8:74:90:c3:86:56:fe:51:
b9:39:b3:56:cc:c6:24:4c:c0:a7:36:ab:8a:ab:91:
c1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:49:2F:45:F1:76:C8:07:C7:61:08:5B:89:25:DA:0C:A6:8B:EF:FB
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k0kvRfF2yAfHYQhbiSXaDKaL7_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.64.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:fe:f0:01:03:e0:af:e0:21:16:9a:30:65:37:c8:ac:72:e7:
02:82:0a:e5:c6:76:a5:05:7a:5a:22:f3:4a:3d:9a:d1:0e:2c:
99:40:0e:9b:6e:f4:7e:d3:60:d8:94:51:b7:57:78:41:fd:1a:
42:51:73:1e:1d:e4:be:3f:06:1b:c0:0d:79:b9:46:78:8d:17:
d7:d9:98:d6:fe:98:2a:9c:63:e7:e8:d6:b0:39:60:04:22:66:
6e:42:f0:d3:d5:cc:df:5a:e9:40:4a:57:66:54:32:b3:37:14:
aa:79:32:e4:4f:c8:eb:74:6e:c7:11:23:3c:ab:d4:ea:b7:2d:
26:99:14:c5:a6:36:f5:d4:6f:6f:32:58:da:ac:e1:cb:2c:dc:
b5:c0:16:03:58:a1:86:95:54:da:fb:6d:73:25:f6:0c:48:7f:
85:71:04:3a:b6:8d:f4:22:9b:3b:15:fb:e8:10:51:e4:ce:a2:
34:82:7d:b7:e1:8d:73:fb:dc:03:2d:bf:9a:d1:0d:01:7c:23:
2d:87:1d:45:43:34:44:e2:a9:2c:dd:00:bb:37:4d:a3:e5:6d:
95:5d:34:36:5f:70:7b:68:6f:f5:88:44:52:1c:24:fb:f1:bb:
ec:6b:1f:ea:58:0b:81:39:81:12:d6:a6:17:3b:a2:27:04:c4:
88:e0:07:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org