Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0Hg3aTclg3gnpi6YGPkb8xwakNk.roa
File: 0Hg3aTclg3gnpi6YGPkb8xwakNk.roa (raw, json)
Hash identifier: TuiI+zDH+6KmvjuxCcDUccNTux9tBNPFP7qQZdqWOGw=
Subject key identifier: D0:78:37:69:37:25:83:78:27:A6:2E:98:18:F9:1B:F3:1C:1A:90:D9
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 283242F2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0Hg3aTclg3gnpi6YGPkb8xwakNk.roa
Signing time: Sat 01 Jan 2022 16:09:50 +0000
ROA not before: Sat 01 Jan 2022 16:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204671
IP address blocks: 95.47.236.0/24 maxlen: 24
95.47.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674382578 (0x283242f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d07837693725837827a62e9818f91bf31c1a90d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ab:d1:0c:10:c9:64:01:14:b7:6a:f4:eb:3c:
57:ac:d1:36:07:59:b5:32:e6:ef:96:a1:33:79:17:
b2:40:68:5d:be:b8:d7:eb:26:d1:62:e9:7f:1d:fe:
b7:23:f2:65:8f:30:f1:52:d1:ee:05:6d:6d:dd:d6:
04:96:40:8a:c5:5a:f2:5a:56:66:06:10:30:61:45:
6c:5b:44:07:7d:65:5e:16:9a:97:fd:8c:d1:60:9b:
59:ca:08:7a:d6:b4:16:e6:0e:20:23:6a:cd:59:85:
7c:de:1e:ab:39:d5:19:2d:68:88:e6:58:40:55:d1:
27:20:31:ea:59:f1:7d:60:2d:67:b8:2b:9f:f9:6b:
1c:2f:90:b4:fe:97:3c:c8:48:d4:06:c0:9e:ad:b9:
b5:53:8c:33:fc:91:93:e6:08:9d:7f:c1:9b:7a:45:
72:2c:0d:30:fd:97:f5:d6:2d:22:7a:0a:ea:76:5d:
bf:fb:67:41:06:de:16:05:cb:b1:4d:03:a8:4f:ae:
d4:dd:20:35:1c:31:6c:d2:07:35:07:bb:d0:58:e6:
d4:07:ee:a5:6e:07:d7:0e:97:10:e6:5a:5d:0d:84:
e9:ef:19:db:75:fe:32:48:bb:88:94:f5:37:91:b8:
31:35:42:15:73:1b:cb:7b:8d:78:86:20:bc:ac:30:
17:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:78:37:69:37:25:83:78:27:A6:2E:98:18:F9:1B:F3:1C:1A:90:D9
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0Hg3aTclg3gnpi6YGPkb8xwakNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.173.0/24
95.47.236.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:58:90:d2:9d:1e:33:c3:60:c1:0e:95:8b:ea:9d:6b:ae:ae:
1c:5f:59:81:a4:e5:89:89:39:d6:7c:70:74:c0:41:36:a6:09:
06:ac:00:60:f0:18:8d:e8:13:76:e7:6d:d2:5b:0f:4b:cd:d0:
a4:50:1f:b3:f5:a7:2a:ab:ce:66:5a:a6:5a:58:9b:2a:0d:af:
6c:5c:56:bd:24:c8:fb:a9:29:8f:42:56:d7:bb:5e:c5:5c:4c:
51:ec:3d:5f:dc:d3:98:49:4d:b9:29:d6:65:e9:d4:e5:bc:ed:
a4:7d:35:5c:78:88:8f:dd:71:e3:a3:1b:4d:c0:c3:97:35:a0:
ff:3a:5d:54:d5:c6:83:27:1d:f4:10:d2:f3:23:36:79:ff:1a:
1e:29:74:ab:b1:00:42:7e:90:98:3d:80:d5:70:40:9f:47:43:
9a:8e:77:59:7c:cf:59:1b:84:3d:b6:60:ea:a0:95:bd:f9:f6:
4f:5c:c9:cb:14:a1:d7:11:1c:16:96:ea:66:62:fc:e2:cb:bd:
97:bb:66:84:b9:a1:7b:7a:aa:4b:8d:10:11:17:12:10:74:20:
8a:5c:0b:1a:92:50:98:34:19:5f:3b:a0:3c:c7:f5:6a:bf:46:
f9:4e:69:b8:86:63:ce:cd:d7:ae:95:2f:ea:cd:07:8c:5c:35:
ec:db:5c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:48:32 2025 by rpki-client