Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GU0bxIp6xGjVAymhTn7FyhEmAiE.roa
File: GU0bxIp6xGjVAymhTn7FyhEmAiE.roa (raw, json)
Hash identifier: t6JXdcsAjOJb2s+oj7Qo3ak9HDDnwlUdUlbSu/SyeI0=
Subject key identifier: 19:4D:1B:C4:8A:7A:C4:68:D5:03:29:A1:4E:7E:C5:CA:11:26:02:21
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A1A6875
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GU0bxIp6xGjVAymhTn7FyhEmAiE.roa
Signing time: Wed 01 Jun 2022 14:20:22 +0000
ROA not before: Wed 01 Jun 2022 14:20:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213029
IP address blocks: 95.47.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706373749 (0x2a1a6875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 14:20:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=194d1bc48a7ac468d50329a14e7ec5ca11260221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:db:2b:b9:ba:da:e0:bd:e6:07:60:38:1c:
64:bf:7b:67:ce:43:de:5d:36:6e:b4:79:4b:e9:db:
ac:7d:e0:4c:38:2a:bf:82:03:c0:70:60:66:41:eb:
c6:71:66:3e:99:2f:54:36:6f:bc:9a:f3:90:42:17:
53:46:33:31:e5:0c:8a:3d:60:a2:67:3c:c8:32:68:
9f:95:c0:ba:b7:7a:c7:5e:ea:5d:15:7c:12:ae:fd:
70:50:52:8d:e5:bc:57:a1:c9:3a:47:18:2f:c0:2e:
5a:db:54:ed:25:21:e0:0f:2a:af:eb:c0:89:11:09:
a3:a4:20:13:b2:f3:3d:5e:b9:f6:e0:8a:0a:a5:a7:
4f:39:f4:63:78:e7:fb:58:76:62:d5:95:bd:40:63:
a8:46:9a:a0:5e:8f:48:cc:dd:c0:07:0a:71:e3:69:
65:4e:fb:fa:4d:08:0f:95:33:d1:74:68:7c:82:38:
4f:8e:1a:d1:01:68:bd:6d:79:91:d0:d9:3b:7b:bd:
78:63:92:05:45:eb:fd:22:4a:b9:54:1c:53:ab:73:
f2:d6:ce:02:9f:63:4a:a3:51:5c:4a:59:43:1f:5b:
5f:49:94:2d:7a:c2:0f:d4:cb:9d:24:83:ec:35:b2:
2d:44:4f:ea:82:97:1d:c6:e7:1d:f2:6b:e1:fb:5e:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4D:1B:C4:8A:7A:C4:68:D5:03:29:A1:4E:7E:C5:CA:11:26:02:21
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GU0bxIp6xGjVAymhTn7FyhEmAiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.127.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d2:72:ed:01:e1:38:e3:84:c3:f1:76:c6:db:31:a7:d9:f0:
42:14:82:16:a3:05:5c:ad:99:e0:97:5b:56:fc:65:c3:71:e2:
fe:6c:2e:6e:5f:b3:46:54:7e:cf:1e:1b:e2:88:88:45:21:98:
10:1e:ba:64:4d:7f:ce:7c:f4:8b:4a:25:1c:f8:16:a1:e4:70:
8e:d5:1e:e7:b0:78:0f:4e:6c:8a:2d:50:e6:63:50:4f:80:09:
d2:14:40:dc:b2:a4:0e:ce:3f:27:f8:bc:20:30:f8:6d:9c:45:
ef:ac:9d:a2:4b:f9:91:a6:7b:cd:47:aa:e7:5e:08:6b:c3:10:
ec:3c:53:38:62:76:ec:d1:32:66:67:cc:0f:ee:69:89:b0:93:
08:b4:c6:74:ba:86:74:30:4a:9f:b4:23:42:10:07:ae:bc:d4:
38:45:e0:7d:c3:3e:9f:b9:e8:c0:b5:8f:b4:fb:61:5c:28:bc:
b3:13:0d:66:55:b5:af:84:98:aa:cd:14:65:00:43:91:82:69:
00:c2:b1:bb:89:5a:43:bc:a7:f8:2d:e3:ad:b8:a0:88:18:f2:
ca:af:5d:bb:8d:46:a7:45:cb:bf:99:db:cc:17:46:41:f8:94:
e3:63:e1:d0:84:24:66:fa:1d:c5:06:83:b2:9c:04:51:13:0f:
f8:5c:d3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:46 2025 by rpki-client