Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TtwUhtB0Yjpt-LRCEfaRrx-xziM.roa
File: TtwUhtB0Yjpt-LRCEfaRrx-xziM.roa (raw, json)
Hash identifier: 0mwNRqT59sjipYghHH3Dzmbb2ADDao999bHzOg3RnIM=
Subject key identifier: 4E:DC:14:86:D0:74:62:3A:6D:F8:B4:42:11:F6:91:AF:1F:B1:CE:23
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570953661D3739894DE5397DB0E4403B3
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TtwUhtB0Yjpt-LRCEfaRrx-xziM.roa
Signing time: Mon 02 Jan 2023 03:45:04 +0000
ROA not before: Mon 02 Jan 2023 03:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47966
IP address blocks: 95.46.47.0/24 maxlen: 24
95.47.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:36:61:d3:73:98:94:de:53:97:db:0e:44:03:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4edc1486d074623a6df8b44211f691af1fb1ce23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c6:75:83:f1:ab:71:6e:0e:ad:47:ad:cd:e4:
58:c6:21:2c:ac:e3:c9:6c:67:d7:cb:3d:63:81:45:
09:14:6e:8a:16:9c:35:d6:fe:b3:29:35:8d:c3:8b:
98:b2:1b:be:f3:ba:f8:c5:33:a9:08:80:0c:f4:ba:
f3:c2:2f:2c:5a:38:f2:f4:31:6c:be:55:d8:0c:3d:
05:e5:e6:40:f7:0b:ee:0b:4a:87:97:fd:1f:24:0c:
a2:9a:7c:36:ec:ba:11:aa:82:a8:db:ab:56:e4:7b:
30:39:4b:3f:77:75:2a:15:2a:f6:3f:eb:8b:7f:0a:
eb:e3:43:f9:06:70:5d:cb:b8:1a:8d:ef:45:f8:47:
82:75:43:37:b7:e4:15:5c:8e:fd:18:32:4c:bb:6d:
41:e1:2c:2a:40:db:ea:60:40:c8:0d:5e:f4:22:99:
30:8d:ab:6c:e8:a7:47:28:7d:9c:82:23:c6:d3:05:
69:ad:90:8d:62:68:4c:53:09:e2:91:e0:8c:bc:ac:
fd:16:24:4a:88:13:7c:09:27:8d:79:a9:f4:11:36:
cc:a1:83:d2:f8:00:b1:73:87:4e:45:5b:3a:48:76:
16:79:1d:b6:92:af:d2:95:5c:a8:0b:76:c9:27:ee:
b6:e6:49:cc:0a:4f:c6:24:2c:64:44:11:78:7c:3e:
32:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DC:14:86:D0:74:62:3A:6D:F8:B4:42:11:F6:91:AF:1F:B1:CE:23
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/TtwUhtB0Yjpt-LRCEfaRrx-xziM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.47.0/24
95.47.237.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ba:b6:e5:35:de:6c:38:a8:ed:cb:e2:43:67:3c:e1:6e:3d:
42:51:c6:2b:9c:9e:90:4c:21:2f:b8:d2:8a:dd:9d:af:0c:f1:
28:30:10:20:5d:a7:3d:55:28:45:da:41:cc:da:a7:31:74:e5:
0d:22:9d:e4:35:1e:bd:d4:a9:5b:af:8f:7f:4e:dc:af:2d:b7:
92:8a:a3:e6:b6:cc:aa:ef:f6:b7:2c:b4:7a:b1:d9:a7:03:a3:
53:49:0a:88:97:7c:65:88:bf:47:43:d2:2d:f3:8f:63:ea:84:
99:63:28:f6:c2:a5:d4:ff:06:d7:78:c1:c6:32:19:78:47:cd:
44:e7:ab:2e:85:10:b8:52:c5:3f:62:d2:cd:e5:2f:ef:8e:28:
7a:c4:ea:7a:49:2e:f1:e0:03:8c:be:e9:1f:f4:ed:f8:50:2c:
cf:4d:4d:9f:c5:a9:df:e7:82:f0:03:c3:cb:a6:c6:35:d1:a9:
70:ff:43:a1:1d:c2:98:04:0e:a0:b6:3d:82:50:16:b2:50:57:
a2:7f:85:83:31:79:db:b4:22:17:b5:c1:41:f0:ae:23:1c:6b:
b2:8c:c7:2d:67:bf:d7:e7:ec:c9:c9:04:9c:4b:59:56:84:b1:
0e:a3:75:e2:57:c3:ba:8c:68:a0:70:31:37:39:64:b5:19:ce:
f5:78:dc:58
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwlTZh03OYlN5Tl9sORAOzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWRjMTQ4NmQwNzQ2MjNhNmRmOGI0NDIxMWY2OTFhZjFmYjFjZTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosZ1g/GrcW4OrUetzeRYxiEsrOPJ
bGfXyz1jgUUJFG6KFpw11v6zKTWNw4uYshu+87r4xTOpCIAM9Lrzwi8sWjjy9DFs
vlXYDD0F5eZA9wvuC0qHl/0fJAyimnw27LoRqoKo26tW5HswOUs/d3UqFSr2P+uL
fwrr40P5BnBdy7gaje9F+EeCdUM3t+QVXI79GDJMu21B4SwqQNvqYEDIDV70Ipkw
jats6KdHKH2cgiPG0wVprZCNYmhMUwnikeCMvKz9FiRKiBN8CSeNean0ETbMoYPS
+ACxc4dORVs6SHYWeR22kq/SlVyoC3bJJ+625knMCk/GJCxkRBF4fD4yxwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFE7cFIbQdGI6bfi0QhH2ka8fsc4jMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvVHR3VWh0QjBZanB0LUxSQ0VmYVJyeC14emlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXy4vAwQA
Xy/tMA0GCSqGSIb3DQEBCwUAA4IBAQBrurblNd5sOKjty+JDZzzhbj1CUcYrnJ6Q
TCEvuNKK3Z2vDPEoMBAgXac9VShF2kHM2qcxdOUNIp3kNR691Klbr49/TtyvLbeS
iqPmtsyq7/a3LLR6sdmnA6NTSQqIl3xliL9HQ9It849j6oSZYyj2wqXU/wbXeMHG
Mhl4R81E56suhRC4UsU/YtLN5S/vjih6xOp6SS7x4AOMvukf9O34UCzPTU2fxanf
54LwA8PLpsY10alw/0OhHcKYBA6gtj2CUBayUFeif4WDMXnbtCIXtcFB8K4jHGuy
jMctZ7/X5+zJyQScS1lWhLEOo3XiV8O6jGigcDE3OWS1Gc71eNxY
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:32 2025 by rpki-client