Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gtpL2Vi0lYFx99aZBtlcl-kyg4o.roa
File: gtpL2Vi0lYFx99aZBtlcl-kyg4o.roa (raw, json)
Hash identifier: f3MiY6H333piIFL0zkLbCpRN6SRQJD4mR57+7ATty3o=
Subject key identifier: 82:DA:4B:D9:58:B4:95:81:71:F7:D6:99:06:D9:5C:97:E9:32:83:8A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 283EAFA7
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gtpL2Vi0lYFx99aZBtlcl-kyg4o.roa
Signing time: Sat 01 Jan 2022 16:09:56 +0000
ROA not before: Sat 01 Jan 2022 16:09:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207397
IP address blocks: 95.47.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675196839 (0x283eafa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82da4bd958b4958171f7d69906d95c97e932838a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a1:b6:fe:02:86:36:ef:87:1d:9f:bd:a9:fd:
d2:37:0b:64:3e:a7:22:2e:f5:77:d4:a6:ad:09:d2:
8b:ee:bb:3c:10:aa:eb:41:90:9f:da:50:49:e4:80:
37:6b:76:db:c3:ad:23:e1:87:dc:0a:f2:fb:f5:ab:
7b:41:77:e6:a3:ce:8a:fe:05:5e:c4:28:d6:9e:3e:
b5:5e:b1:92:4f:dc:ac:8d:34:a6:6f:d5:2b:43:52:
fc:26:12:d4:8d:1f:da:f8:5b:d4:10:71:14:b8:11:
02:d5:59:ec:a0:14:88:72:87:a2:99:aa:5c:31:74:
54:91:92:85:40:3e:4e:69:fd:58:de:da:cf:61:bf:
ec:b3:e5:4a:48:0e:ab:92:0b:fd:5e:c7:82:12:25:
5e:83:f4:bf:a8:a0:8d:1a:bd:84:ff:ed:d4:46:0e:
36:99:e8:bd:c2:f3:41:67:16:a8:fd:68:05:57:51:
03:59:a9:fe:c5:44:72:e5:68:d5:a7:94:4b:36:51:
bf:36:72:5a:e5:58:09:63:7a:ab:83:43:ef:3f:df:
ab:48:70:ea:11:30:fb:3f:ff:10:b0:46:96:30:4f:
78:22:f2:34:07:10:a9:c5:58:ec:1e:08:d6:21:fd:
0c:9a:a8:4a:0b:02:9e:e9:9b:d0:62:bc:80:8d:ad:
b5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DA:4B:D9:58:B4:95:81:71:F7:D6:99:06:D9:5C:97:E9:32:83:8A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gtpL2Vi0lYFx99aZBtlcl-kyg4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.117.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:bf:26:28:93:4b:5a:02:47:cd:7e:28:e2:86:38:13:1d:23:
fa:b5:2f:2e:90:7a:27:18:e7:e6:f3:48:67:29:a5:d2:2f:c4:
20:1a:76:b4:71:9f:dd:a9:1e:44:63:fa:f7:cd:30:41:b4:c0:
4b:4a:a5:49:27:ec:07:c3:82:e0:d0:d4:ff:fa:35:8b:d7:7c:
e2:6a:7e:27:72:84:41:44:2c:c8:f3:bd:76:15:19:82:81:4a:
13:77:fd:bf:4f:6d:ac:17:62:4b:a5:97:48:5c:71:33:1c:d8:
ff:4b:63:53:b3:4b:27:fa:de:d1:37:f6:38:fc:a6:04:10:15:
cd:88:6e:fb:99:b3:a1:f6:f6:b6:cc:94:18:05:1c:a3:90:b2:
43:bf:32:c7:28:9d:d1:53:37:b9:0b:b9:9b:14:70:f4:92:7e:
0c:c1:07:e3:ca:60:af:b8:f9:b4:41:0d:7d:ca:63:77:44:58:
0f:21:40:96:b1:54:22:74:75:e6:04:a1:3e:10:18:02:bd:a7:
74:8b:5f:78:e5:ac:d7:9e:d3:bc:b5:d9:b7:26:ce:26:84:13:
93:16:88:f8:17:ba:99:c6:68:9c:be:35:d9:01:8d:88:39:0d:
ca:11:e7:14:ce:0b:83:92:6d:de:13:e8:cf:0f:0e:bb:81:29:
22:4b:38:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:32 2025 by rpki-client