Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FNvFKJBIQ7hgNIYPoBuHqjqlABQ.roa
File: FNvFKJBIQ7hgNIYPoBuHqjqlABQ.roa (raw, json)
Hash identifier: XFFS4giCnNbqtuqsOViulFsbwEi8BZdb0og7EAObZls=
Subject key identifier: 14:DB:C5:28:90:48:43:B8:60:34:86:0F:A0:1B:87:AA:3A:A5:00:14
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2779758E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FNvFKJBIQ7hgNIYPoBuHqjqlABQ.roa
Signing time: Sat 01 Jan 2022 16:08:08 +0000
ROA not before: Sat 01 Jan 2022 16:08:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41773
IP address blocks: 95.47.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 662271374 (0x2779758e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14dbc528904843b86034860fa01b87aa3aa50014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b5:0b:27:22:7b:f4:a9:c8:28:bd:1e:82:c0:
81:94:f1:a9:53:15:d6:d4:1b:22:a1:34:1e:78:88:
d8:b9:55:97:a6:7d:6a:c0:e4:19:69:46:6b:a1:de:
01:16:5e:0c:13:c3:02:e4:4f:f5:57:8d:a8:9d:96:
e9:34:6d:be:f7:61:02:1d:28:90:55:b4:2c:d8:1c:
8c:b8:af:8a:00:45:0c:8a:63:38:f5:28:fb:61:1d:
13:9e:b8:e3:05:91:2f:f6:8c:f4:8d:00:c8:78:03:
76:69:a3:90:73:88:4e:26:3e:ce:e4:ce:69:23:6b:
ae:b9:ae:67:15:0f:f3:7a:84:c4:04:18:30:a5:2c:
00:c7:cb:09:64:80:1f:4d:cd:14:8c:96:cb:0b:f9:
52:d9:1d:7a:31:e7:dc:3d:e5:c0:a6:ba:97:6a:da:
4b:87:71:6d:21:d9:c4:d3:b0:93:56:ef:a4:c9:72:
9b:82:38:04:40:76:14:f1:42:ca:12:f1:2a:a8:b3:
53:76:30:d2:3e:93:fb:de:74:4e:d6:e1:20:43:81:
5a:56:3c:8a:4a:7b:b3:45:8b:5d:35:c0:f6:4b:43:
d3:a6:ce:a3:a6:64:80:76:e9:d2:76:f7:e4:0d:fd:
ed:ee:a4:bb:2c:d9:77:78:c2:31:11:e1:70:9c:93:
f2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DB:C5:28:90:48:43:B8:60:34:86:0F:A0:1B:87:AA:3A:A5:00:14
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FNvFKJBIQ7hgNIYPoBuHqjqlABQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.250.0/23
Signature Algorithm: sha256WithRSAEncryption
41:97:df:35:44:f5:df:d7:00:8a:a2:e7:b7:1e:94:4d:67:b7:
ca:f4:47:61:1b:5d:d5:3a:19:13:e4:f1:96:5b:e3:aa:96:8f:
a9:15:aa:92:d4:70:66:25:2e:d4:01:ec:aa:51:cc:66:8e:a4:
46:9e:63:84:d4:b2:c1:d7:27:c0:58:2b:86:41:57:1a:ac:9d:
d0:d7:85:fa:48:fd:53:8b:17:4a:7a:79:07:28:e9:43:29:be:
6e:78:cd:28:5c:e0:fd:21:48:ef:c2:7b:83:8f:69:1b:6f:b4:
f7:99:31:c1:36:42:fe:23:b3:5e:16:ff:bd:d1:ac:30:b2:e0:
89:a4:96:1b:01:60:95:32:24:9a:8e:44:b8:32:48:62:eb:f8:
d8:0a:fd:6f:42:7f:8c:08:b2:90:46:ea:93:c9:54:d2:38:d5:
8b:85:2b:e5:56:40:ad:1b:9c:7e:81:7d:46:1f:2b:2c:66:76:
36:a1:86:4d:be:45:f0:77:6f:70:61:11:3c:55:6c:90:e2:26:
b8:ee:eb:77:3d:0b:aa:67:34:2e:ff:b3:c6:8e:13:41:e3:b8:
d3:50:e6:93:d0:a4:c9:b0:54:15:f2:8f:c0:64:aa:9b:07:c6:
d2:a3:ff:a4:82:0b:65:62:f2:6d:b4:93:89:f7:b6:ef:6f:cf:
12:ba:50:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:03 2025 by rpki-client