Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qXI_3BQwnwBrYtKGtbBqPYqQtHE.roa
File: qXI_3BQwnwBrYtKGtbBqPYqQtHE.roa (raw, json)
Hash identifier: X5zeiCteU6wy2cNoDMgASg3d4gUV0GctZQQz8G0Xnw8=
Subject key identifier: A9:72:3F:DC:14:30:9F:00:6B:62:D2:86:B5:B0:6A:3D:8A:90:B4:71
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 281B32E2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qXI_3BQwnwBrYtKGtbBqPYqQtHE.roa
Signing time: Sat 01 Jan 2022 16:09:37 +0000
ROA not before: Sat 01 Jan 2022 16:09:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197901
IP address blocks: 95.46.74.0/23 maxlen: 24
146.120.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672871138 (0x281b32e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9723fdc14309f006b62d286b5b06a3d8a90b471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:19:ee:70:0b:64:af:69:ca:1d:df:9c:ae:7d:
58:ad:19:c8:61:63:fc:ee:5b:8b:02:ea:61:55:44:
ec:3d:fa:e9:93:d8:30:17:1e:78:4e:26:1c:b2:35:
75:36:31:13:38:b9:08:f0:6e:bf:86:9a:52:25:57:
68:5c:37:12:7a:3a:e7:a9:05:fa:2c:d1:51:19:9b:
ad:26:dc:8d:82:d8:fd:13:af:41:70:4b:fb:56:71:
ca:89:c8:5d:8e:e9:f8:a6:4b:47:ce:91:aa:97:08:
b0:a3:8c:c1:1c:c3:20:c0:90:32:7a:d6:03:d4:cc:
6b:86:cf:76:1f:12:df:a4:af:53:ee:62:23:99:83:
01:30:d4:f0:42:7c:db:c3:1d:b9:cb:ca:a2:cc:f9:
80:a6:70:6c:23:e4:a4:f8:26:c6:f8:51:d8:0d:a6:
e7:85:bc:b4:57:df:e0:fe:f2:7b:11:8e:33:2d:21:
1b:ae:b5:57:60:1d:1b:51:0b:1b:70:d4:27:71:3a:
20:d7:ec:4d:46:64:2b:5f:5e:38:af:09:19:30:57:
8f:a8:3d:6f:14:fc:82:2f:ba:64:9e:34:9d:c1:8c:
91:14:63:35:0e:49:91:8e:2a:68:71:9a:8d:7c:06:
95:33:b9:f0:87:8f:11:98:41:a2:68:8d:8a:0b:4e:
ab:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:72:3F:DC:14:30:9F:00:6B:62:D2:86:B5:B0:6A:3D:8A:90:B4:71
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/qXI_3BQwnwBrYtKGtbBqPYqQtHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.74.0/23
146.120.24.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:a7:9f:87:39:84:25:93:dd:9a:fa:6a:36:a5:b5:a4:58:33:
4c:dc:42:2f:95:55:70:b3:d5:28:dd:36:3b:51:3b:94:10:08:
d5:16:cb:ec:b0:d5:f9:d5:d7:5c:5e:33:a0:0f:b1:1d:61:35:
cf:4d:4b:13:c2:2e:66:80:71:85:a8:dc:69:16:9e:9d:dc:98:
34:8a:3f:7c:97:a2:15:fe:56:be:9d:2b:53:bd:1c:72:27:5a:
c8:76:7d:9d:a6:f3:c7:9e:c9:86:87:35:bd:98:07:d3:38:f2:
4e:35:c7:73:3d:f9:5c:d2:86:ea:12:d7:a0:c6:bc:19:bf:77:
f3:56:bb:d1:df:16:98:1b:d3:73:f2:3b:b2:aa:9b:79:bf:1a:
28:bb:71:c3:ad:b1:45:af:9f:a5:14:0e:80:cf:23:b6:93:df:
e4:2e:86:f6:d2:2d:15:ac:1b:6e:3b:77:37:c3:24:1d:7a:b9:
b6:2e:29:b7:b8:fb:f0:5e:ea:45:74:bd:8b:20:d3:e6:68:bc:
7c:54:50:ca:7c:dd:53:00:aa:ea:19:ac:99:4a:f6:70:92:29:
45:64:93:1d:84:d1:45:b6:52:7c:aa:16:63:05:b4:f4:19:c8:
bc:df:6f:11:10:b2:3f:3b:52:48:12:1e:05:28:fa:96:55:2d:
af:cc:f4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:16 2025 by rpki-client