Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JUzI0Q_1mZ2TkINGA0hOiXyy1tE.roa
File: JUzI0Q_1mZ2TkINGA0hOiXyy1tE.roa (raw, json)
Hash identifier: VdpvnhnRVkuLhJOD8iai5One6Wy6XgW2VMtY1azhxss=
Subject key identifier: 25:4C:C8:D1:0F:F5:99:9D:93:90:83:46:03:48:4E:89:7C:B2:D6:D1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29B28CEE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JUzI0Q_1mZ2TkINGA0hOiXyy1tE.roa
Signing time: Mon 02 May 2022 11:05:25 +0000
ROA not before: Mon 02 May 2022 11:05:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44834
IP address blocks: 95.47.170.0/23 maxlen: 23
95.47.170.0/24 maxlen: 24
31.148.202.0/24 maxlen: 24
31.148.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 699567342 (0x29b28cee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 2 11:05:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=254cc8d10ff5999d9390834603484e897cb2d6d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:65:d1:c7:c8:5f:4a:d2:6b:db:d6:23:3d:7d:
de:ac:ff:fc:70:fa:c3:a5:9b:77:75:34:1c:df:eb:
19:00:64:a1:7c:f2:11:7b:cd:0b:ab:1d:04:ff:e2:
7c:94:64:11:81:2c:6f:8d:5d:1b:43:06:c1:9e:2c:
aa:05:49:40:b6:b6:83:55:92:b8:08:76:3c:84:3c:
94:fc:28:b6:9f:58:d5:22:63:5e:0f:8d:8a:f4:9c:
c2:17:01:c9:1f:be:1d:a3:f6:e4:22:62:66:b6:15:
f0:10:7b:c1:20:8c:8e:21:23:c3:22:da:c2:af:86:
30:b8:cc:1a:bd:d5:3a:8c:51:2b:7c:73:72:0b:2a:
37:8f:27:05:98:7b:e3:fa:85:8e:87:a8:8e:30:ee:
4a:38:a7:59:7b:a5:4e:b2:3e:91:70:11:16:f0:19:
68:c3:df:cc:70:d2:a9:6d:f4:da:b9:25:2b:40:fb:
76:26:98:fe:07:e5:0a:b5:2c:1b:ed:aa:5b:84:6b:
09:8a:28:69:81:7e:5b:8d:d7:65:17:de:e6:67:05:
57:c6:04:7c:13:ed:2d:ff:09:6e:13:65:49:ce:9a:
05:16:14:1c:5d:83:63:f3:54:6f:64:13:16:06:6f:
6b:30:21:52:52:6a:d7:a8:92:4a:14:f4:ce:ce:c0:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4C:C8:D1:0F:F5:99:9D:93:90:83:46:03:48:4E:89:7C:B2:D6:D1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JUzI0Q_1mZ2TkINGA0hOiXyy1tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.202.0/23
95.47.170.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:f1:46:2b:d5:9c:ee:5f:02:af:ca:a3:49:ff:f7:c2:2b:05:
f7:de:49:79:5f:87:b8:7f:53:6f:5e:77:58:c4:c1:4d:65:65:
8f:91:ac:2c:d3:c1:22:df:ad:0b:f8:2d:ab:40:90:0e:ff:6f:
b9:6a:16:b6:41:2b:36:56:eb:a1:d9:b0:60:57:32:99:4b:aa:
ff:fe:ec:ae:34:59:ac:f5:a7:a9:3f:c4:2d:2c:dc:c6:ba:5b:
d4:5d:04:7d:bc:05:f9:34:b6:5e:e5:bd:5e:0b:d2:95:b3:4b:
62:cf:1a:60:f6:f7:b6:31:d7:24:08:e3:8c:17:42:6b:3a:14:
1e:e7:7a:f4:c1:c0:83:49:b0:e4:5c:67:ec:bc:28:b6:5b:e2:
2d:95:d3:60:67:a7:b5:1f:64:f0:a7:6f:ef:3b:94:e9:3c:44:
f6:df:0d:e7:60:71:8d:57:9c:d8:d5:a5:78:19:af:63:8b:70:
e3:c1:37:cf:63:dc:fd:93:6c:bd:90:9f:03:0d:e5:9a:41:66:
1a:1f:e9:47:78:76:fb:a1:10:94:0c:f8:24:43:6d:de:8a:ee:
fd:f7:3e:fb:0c:cd:2f:99:f3:db:2c:f4:87:c8:31:6e:77:4b:
9e:0a:62:60:76:a2:09:1a:bb:be:bf:db:74:2c:3c:0f:6b:4c:
62:2c:c8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:58 2025 by rpki-client