Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Nri6DDyqsTXEd2dQjkXgF25dXQA.roa
File: Nri6DDyqsTXEd2dQjkXgF25dXQA.roa (raw, json)
Hash identifier: 163kHDPY83U3L+fhTsujH8I2E0v9bfcIt5po2j794dw=
Subject key identifier: 36:B8:BA:0C:3C:AA:B1:35:C4:77:67:50:8E:45:E0:17:6E:5D:5D:00
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27544560
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Nri6DDyqsTXEd2dQjkXgF25dXQA.roa
Signing time: Sat 01 Jan 2022 16:07:43 +0000
ROA not before: Sat 01 Jan 2022 16:07:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2864
IP address blocks: 95.46.140.0/23 maxlen: 24
95.47.167.0/24 maxlen: 24
95.46.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 659834208 (0x27544560)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:07:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36b8ba0c3caab135c47767508e45e0176e5d5d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:de:de:a3:16:c8:53:09:3f:88:8e:05:e7:1a:
e6:19:da:0e:23:4e:fe:52:2e:7b:a8:95:44:21:be:
53:cc:ad:2a:9f:2a:51:9b:36:1b:2e:32:ad:b2:cd:
e6:d5:a5:1b:42:3d:a1:9e:8f:00:92:dd:c6:a1:29:
cd:5c:bc:1c:ec:c0:f3:86:18:1b:93:4a:ae:40:55:
cf:27:ec:d6:6d:1d:65:5a:56:33:04:5a:bd:53:a6:
4e:85:15:0e:d1:c2:ec:7f:90:63:04:a3:77:f3:38:
a7:12:67:19:9b:48:4f:fd:3d:93:7d:03:84:22:59:
1b:ba:6b:ac:3c:dd:a3:6a:a9:2a:31:0d:41:f1:26:
49:13:55:90:48:09:69:84:8c:71:4a:99:e1:22:37:
03:24:45:3f:17:a7:48:89:a3:8e:06:14:fa:30:e8:
e6:77:f3:f8:3c:24:4e:bd:86:6c:d7:74:f5:79:c4:
6e:cd:e3:1f:15:03:52:58:f3:a4:3b:68:89:b4:27:
ae:e3:94:b4:dc:76:12:ac:68:98:e0:67:49:5b:f8:
00:fa:58:a6:cc:e3:e0:97:e6:3d:05:0d:01:0a:cf:
cd:a1:1b:14:a6:3e:07:c5:67:1b:5a:a7:07:6a:b7:
af:b4:a8:17:2d:24:7d:50:7e:cc:db:55:91:55:99:
f4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B8:BA:0C:3C:AA:B1:35:C4:77:67:50:8E:45:E0:17:6E:5D:5D:00
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Nri6DDyqsTXEd2dQjkXgF25dXQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.0.0/24
95.46.140.0/23
95.47.167.0/24
Signature Algorithm: sha256WithRSAEncryption
79:44:3d:95:ae:45:ad:f1:fd:54:08:24:fd:f9:56:e1:a4:48:
0c:c4:ea:25:26:59:fd:6e:02:43:0c:30:24:03:69:99:00:63:
c2:db:fd:2a:63:51:78:5c:51:8e:cd:6a:fd:98:fb:65:72:f2:
23:a1:8e:95:44:eb:e3:3a:b3:b4:e4:71:5c:90:f4:f2:8f:d7:
a8:2b:da:82:82:16:f1:3a:a7:d2:4e:93:78:51:12:5b:0d:f7:
0e:50:76:ac:02:38:51:80:67:dc:ff:f6:4a:f6:61:22:1c:7a:
f6:d1:0e:9a:94:d1:d9:56:5f:b7:0d:c5:ef:95:20:b9:1e:6d:
bd:91:8f:8d:61:ac:97:b5:9e:38:f7:6b:71:c2:24:b0:42:82:
35:fa:a1:b4:f2:68:f2:c8:c8:68:08:ed:cc:d7:02:e6:d5:98:
ee:16:c9:ce:14:a6:85:fe:3b:e6:5c:43:45:7a:57:bf:98:4e:
d0:ad:9d:5d:42:eb:55:35:80:47:ef:61:51:e3:65:e2:6e:5c:
5e:f0:e6:ad:2d:c3:a4:b6:43:9e:cf:7c:3b:8a:6d:d3:c1:9c:
ee:66:ba:0c:4a:08:4f:7a:81:42:c8:09:78:c5:7f:92:03:92:
29:76:2e:02:41:ad:c7:02:51:38:b7:cb:dc:ed:e2:e1:17:32:
a1:19:23:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 07:48:13 2025 by rpki-client