Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/m0ko7306qa6uIzeabsvw_ZGxOSQ.roa
File: m0ko7306qa6uIzeabsvw_ZGxOSQ.roa (raw, json)
Hash identifier: Cr0Ye1GoUGtLzvsm1DJ2SLfvRGwltB0w83La3cmEJik=
Subject key identifier: 9B:49:28:EF:7D:3A:A9:AE:AE:23:37:9A:6E:CB:F0:FD:91:B1:39:24
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2848C9C4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/m0ko7306qa6uIzeabsvw_ZGxOSQ.roa
Signing time: Sat 01 Jan 2022 16:10:01 +0000
ROA not before: Sat 01 Jan 2022 16:10:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208941
IP address blocks: 95.46.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675858884 (0x2848c9c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b4928ef7d3aa9aeae23379a6ecbf0fd91b13924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d2:0e:5b:c9:e2:57:f8:b8:6a:6a:08:04:3d:
75:24:42:10:5a:a7:82:53:4d:49:6d:fc:d1:7c:6c:
05:da:49:b3:21:2f:dc:3c:c9:6d:df:87:dc:ea:2f:
af:cc:0f:2c:5b:38:d1:4e:dc:90:37:d7:23:bf:dd:
68:6b:31:a5:51:e0:36:5e:f7:ff:ef:a1:5f:9d:76:
a9:40:06:6b:d2:2e:e2:88:39:11:ed:0f:6d:5b:e0:
a1:e2:6c:a3:eb:5b:8f:37:3a:e1:3b:fe:9e:e7:c3:
bb:e8:9e:0d:b2:8a:64:c6:62:a9:47:08:9e:be:bf:
85:2f:37:00:81:6a:84:a9:8d:5d:f0:7e:92:ab:d9:
24:ad:4b:bc:1a:a6:9a:54:4b:25:66:36:37:f2:b2:
f0:dd:43:a5:0f:72:e8:26:69:cf:6c:20:b4:6b:64:
f5:b6:8a:bd:89:78:1e:0b:02:fc:88:26:29:34:57:
f6:03:73:70:84:28:1b:aa:c3:f6:24:ae:f2:69:4a:
54:11:99:1b:84:7e:8b:66:a7:32:e9:80:fd:f1:58:
78:dd:0d:98:f5:be:a9:9a:9d:57:1f:d4:12:e8:db:
3b:69:86:23:22:75:86:8a:d1:61:77:7e:d7:72:6b:
ef:62:18:e4:c8:68:0e:77:f6:fe:09:0a:1f:79:24:
2d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:49:28:EF:7D:3A:A9:AE:AE:23:37:9A:6E:CB:F0:FD:91:B1:39:24
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/m0ko7306qa6uIzeabsvw_ZGxOSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.73.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ed:d1:bd:50:e9:b8:53:7d:a5:91:f4:c1:7b:7f:93:de:d2:
ff:53:e6:13:c3:fe:b4:92:67:a7:db:74:85:8d:5e:62:62:fb:
a4:e2:44:c6:d6:fb:de:63:65:da:a8:de:6c:be:58:ab:a2:6e:
6c:cf:e1:8b:4d:12:0b:5a:13:03:9c:66:27:41:09:1a:1b:00:
1f:36:db:a9:88:80:cf:f4:a5:04:2d:be:7e:88:a5:fd:07:3b:
80:2c:6b:4c:f7:b4:80:e7:54:4e:49:3c:e6:0d:5d:33:dd:ba:
31:ce:e5:90:3c:32:b7:f4:57:54:c6:0f:fb:17:c8:f0:bd:fb:
a6:a7:d6:1f:3d:12:a7:48:b7:54:00:27:80:b6:35:51:0e:fd:
05:9f:ea:e4:2e:b5:c9:f9:bd:c5:25:1b:41:51:be:cc:a1:06:
b4:9a:ce:a6:43:63:10:e9:82:2f:9e:79:3a:fb:28:93:8d:ab:
7a:79:06:59:28:ba:34:1d:50:a3:db:39:ad:ee:d5:f3:64:4c:
ef:2f:78:8c:6b:d5:0f:3a:a7:d8:46:58:91:cd:32:da:14:a7:
12:c0:51:24:82:4e:e8:c4:6c:58:2e:70:26:2b:74:c0:f1:02:
15:29:8b:24:20:d9:a8:fd:36:f8:22:1a:a8:14:ea:4f:59:f4:
b6:28:7e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:29 2025 by rpki-client