Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3JPfr-Wo_oxZP1a0U9Cbe7zDLa8.roa
File: 3JPfr-Wo_oxZP1a0U9Cbe7zDLa8.roa (raw, json)
Hash identifier: uZD4vNgYpH7Uqw+08WocAtNzYROg3zrKe64bDSmfVho=
Subject key identifier: DC:93:DF:AF:E5:A8:FE:8C:59:3F:56:B4:53:D0:9B:7B:BC:C3:2D:AF
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2797F0F6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3JPfr-Wo_oxZP1a0U9Cbe7zDLa8.roa
Signing time: Sat 01 Jan 2022 16:08:23 +0000
ROA not before: Sat 01 Jan 2022 16:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44956
IP address blocks: 95.47.247.0/24 maxlen: 24
95.46.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664269046 (0x2797f0f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc93dfafe5a8fe8c593f56b453d09b7bbcc32daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f4:c7:ad:e3:a5:e9:b0:7b:a2:aa:ce:47:c6:
ea:26:17:ac:84:84:20:fd:5c:8a:d5:c1:54:98:29:
e8:da:51:ef:26:5a:5a:ee:e8:32:f2:a9:a9:03:2c:
5f:9a:28:44:b0:80:c2:78:5f:9c:4a:f1:bd:c8:0d:
d9:31:14:43:5f:37:70:63:d1:dc:f9:b5:6e:8f:c7:
01:e4:6a:52:4e:0d:ab:0d:5c:d1:c4:b7:3b:8e:e8:
a6:ac:d7:37:f7:3a:d2:20:88:ca:1c:7a:f0:b4:99:
df:a4:3f:8c:9e:44:12:c9:15:9a:92:db:3e:ed:e2:
30:6b:83:4b:e7:c2:01:e5:41:27:80:93:5f:77:ad:
97:6b:46:67:7d:dd:9f:26:14:f7:57:63:33:f1:ea:
72:65:0d:2e:57:bb:bd:8e:67:4b:1b:fb:da:ea:b0:
64:a3:20:72:5f:2e:8c:f9:a5:58:a1:3e:3d:53:d2:
49:fd:a5:6d:41:4e:52:4c:fc:fa:25:c8:88:bb:51:
fc:5a:36:f7:2c:71:14:5c:25:a7:71:57:4e:1b:50:
24:84:4d:dc:fc:8f:78:03:36:1f:8e:c4:b5:b4:10:
50:a7:03:45:f1:e2:2e:63:1d:be:c5:e3:5d:2e:fd:
01:0f:ef:ac:e2:54:1e:89:82:1c:29:1d:0e:6b:74:
8d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:93:DF:AF:E5:A8:FE:8C:59:3F:56:B4:53:D0:9B:7B:BC:C3:2D:AF
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/3JPfr-Wo_oxZP1a0U9Cbe7zDLa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.97.0/24
95.47.247.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f1:b2:d9:83:cc:90:59:e1:2e:d6:50:c7:9f:03:04:43:a0:
72:34:eb:97:5f:cb:21:ae:a7:52:9a:72:9c:2f:b6:23:f1:fb:
8b:2c:29:26:03:f6:b6:4f:68:ec:85:79:01:84:86:9d:fb:32:
5b:34:ae:be:b2:a3:03:f1:45:13:aa:b0:93:b8:a2:2a:c8:c8:
46:be:be:26:90:30:e3:a0:9b:47:2f:ad:86:5a:c8:05:69:51:
75:66:52:dc:0f:34:b3:f6:5c:dc:ca:14:2d:35:66:41:e4:6f:
1f:ce:af:43:d2:7e:e8:dc:94:00:fb:ed:24:82:fd:e9:18:b2:
5f:8b:67:1a:00:92:3f:29:b5:42:89:35:f9:1d:5b:38:71:2a:
3c:12:f5:ff:06:e2:c9:bb:2a:be:0d:10:f2:a5:a9:d0:42:cd:
63:29:79:2c:44:6f:f5:95:53:0d:a0:27:83:43:b0:98:84:24:
3c:50:fd:65:56:75:30:df:9a:ad:ab:2d:fe:37:d0:76:45:9d:
30:3e:81:cd:75:01:51:ae:fe:a9:9a:51:c3:de:f6:c2:84:58:
18:08:2f:cc:f2:d6:8e:59:58:53:b3:f7:39:81:28:e1:26:32:
1c:98:98:b0:48:27:47:2d:28:a3:08:5d:9c:d8:aa:7f:f3:b0:
31:29:ff:59
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEJ5fw9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDgyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGM5M2RmYWZlNWE4
ZmU4YzU5M2Y1NmI0NTNkMDliN2JiY2MzMmRhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANz0x63jpemwe6KqzkfG6iYXrISEIP1citXBVJgp6NpR7yZa
Wu7oMvKpqQMsX5ooRLCAwnhfnErxvcgN2TEUQ183cGPR3Pm1bo/HAeRqUk4Nqw1c
0cS3O47opqzXN/c60iCIyhx68LSZ36Q/jJ5EEskVmpLbPu3iMGuDS+fCAeVBJ4CT
X3etl2tGZ33dnyYU91djM/HqcmUNLle7vY5nSxv72uqwZKMgcl8ujPmlWKE+PVPS
Sf2lbUFOUkz8+iXIiLtR/Fo29yxxFFwlp3FXThtQJIRN3PyPeAM2H47EtbQQUKcD
RfHiLmMdvsXjXS79AQ/vrOJUHomCHCkdDmt0jXMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTck9+v5aj+jFk/VrRT0Jt7vMMtrzAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
LzNKUGZyLVdvX294WlAxYTBVOUNiZTd6RExhOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAF8uYQMEAF8v9zANBgkqhkiG9w0B
AQsFAAOCAQEAIfGy2YPMkFnhLtZQx58DBEOgcjTrl1/LIa6nUppynC+2I/H7iywp
JgP2tk9o7IV5AYSGnfsyWzSuvrKjA/FFE6qwk7iiKsjIRr6+JpAw46CbRy+thlrI
BWlRdWZS3A80s/Zc3MoULTVmQeRvH86vQ9J+6NyUAPvtJIL96RiyX4tnGgCSPym1
Qok1+R1bOHEqPBL1/wbiybsqvg0Q8qWp0ELNYyl5LERv9ZVTDaAng0OwmIQkPFD9
ZVZ1MN+arast/jfQdkWdMD6BzXUBUa7+qZpRw972woRYGAgvzPLWjllYU7P3OYEo
4SYyHJiYsEgnRy0oowhdnNiqf/OwMSn/WQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org