Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ezcnci_ay4PU3pF_RMCpGWof2Ag.roa
File: ezcnci_ay4PU3pF_RMCpGWof2Ag.roa (raw, json)
Hash identifier: WTUhjNz6PAIRb3WVNTJB8WWZS58+Ssm7hK3hPCpUxj8=
Subject key identifier: 7B:37:27:72:2F:DA:CB:83:D4:DE:91:7F:44:C0:A9:19:6A:1F:D8:08
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 0184858740BD613181DF2A6F12AD0BD74222
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ezcnci_ay4PU3pF_RMCpGWof2Ag.roa
Signing time: Thu 17 Nov 2022 12:19:04 +0000
ROA not before: Thu 17 Nov 2022 12:19:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43561
IP address blocks: 95.87.209.0/24 maxlen: 24
37.157.191.0/24 maxlen: 24
95.87.223.0/24 maxlen: 24
95.87.228.0/24 maxlen: 24
84.40.116.0/24 maxlen: 24
95.87.199.0/24 maxlen: 24
37.157.169.0/24 maxlen: 24
95.43.250.0/24 maxlen: 24
84.40.65.0/24 maxlen: 24
84.40.73.0/24 maxlen: 24
84.40.74.0/24 maxlen: 24
84.40.89.0/24 maxlen: 24
84.40.93.0/24 maxlen: 24
95.87.255.0/24 maxlen: 24
185.60.66.0/24 maxlen: 24
185.60.67.0/24 maxlen: 24
2a02:1338::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:87:40:bd:61:31:81:df:2a:6f:12:ad:0b:d7:42:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Nov 17 12:19:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b3727722fdacb83d4de917f44c0a9196a1fd808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e4:c8:8f:e7:69:b1:0f:ce:8d:1a:e9:b0:7e:
65:0d:8e:83:87:97:58:06:08:26:56:5c:d8:2e:df:
27:36:30:f7:2d:a1:0c:8c:40:b5:cd:a6:74:82:90:
51:ff:82:97:6c:cb:5b:ea:0e:f3:dc:c4:7b:8c:72:
9c:bf:1d:b4:04:3a:bf:63:97:69:d3:66:11:b2:bc:
38:7f:8f:66:03:7d:87:d3:3d:c7:70:20:01:7f:ac:
f3:2a:49:32:0d:6f:6b:06:c3:98:b9:0f:ee:d8:ef:
e4:54:ae:a8:ec:b4:1e:27:5c:51:03:7a:1b:08:e8:
2d:b6:05:cc:a1:ad:0f:9a:b4:8f:a7:dd:6d:73:65:
19:fb:90:c6:c4:40:8f:2a:54:1f:72:3e:74:47:28:
fd:7d:11:4e:95:ff:73:f5:f3:66:c9:8b:3b:d7:55:
5f:74:b0:c6:0e:56:8a:37:06:93:c3:0c:88:51:32:
c1:42:7e:2d:78:fe:09:79:da:b9:4e:c9:a6:47:56:
67:83:4c:2b:be:9c:b2:aa:a9:d6:14:ae:80:61:56:
9a:a7:35:15:a5:c4:53:f6:ca:33:58:bc:b1:a2:70:
95:d3:57:5b:20:01:8c:c8:a1:53:ab:78:7b:2a:9d:
e0:ca:b0:31:12:e9:0b:f7:3c:78:33:e3:2d:34:ce:
89:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:37:27:72:2F:DA:CB:83:D4:DE:91:7F:44:C0:A9:19:6A:1F:D8:08
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ezcnci_ay4PU3pF_RMCpGWof2Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.169.0/24
37.157.191.0/24
84.40.65.0/24
84.40.73.0-84.40.74.255
84.40.89.0/24
84.40.93.0/24
84.40.116.0/24
95.43.250.0/24
95.87.199.0/24
95.87.209.0/24
95.87.223.0/24
95.87.228.0/24
95.87.255.0/24
185.60.66.0/23
IPv6:
2a02:1338::/32
Signature Algorithm: sha256WithRSAEncryption
0c:8a:93:6d:05:a8:c4:c7:89:e6:f9:5a:52:dc:37:8e:96:39:
35:15:ce:98:62:f7:e7:e7:6c:3a:ac:77:9d:03:b4:54:f9:a5:
ce:f3:98:6f:f7:14:b0:08:f9:ff:64:00:0d:7d:eb:bd:0e:68:
5a:67:c3:97:d9:8d:52:8c:4b:37:28:2a:80:a9:ce:00:21:bd:
26:89:9f:a9:27:f5:c3:2a:dd:61:93:a5:89:61:80:14:6b:cb:
1f:54:91:88:3b:c9:ea:30:b4:a2:80:10:a9:4b:af:0f:d8:22:
f8:fa:02:64:33:0e:32:96:eb:f4:5c:4e:41:6a:6b:35:78:8f:
2e:de:2b:c3:86:5f:23:29:01:60:75:ee:c7:94:ec:94:9b:de:
8c:c3:03:58:fe:d1:b9:f1:37:8c:42:4e:86:4a:4e:75:43:81:
61:55:0a:cc:e4:d3:1e:84:96:8e:0e:a5:7e:92:07:96:57:de:
96:3a:84:a7:5f:36:0c:e6:c9:4a:e5:e8:c0:9a:05:b0:fe:6f:
76:32:b7:be:78:70:e7:47:0f:df:17:07:ed:d7:52:60:7b:19:
bc:a5:a8:87:a4:e4:d6:fe:dc:e3:b0:2e:08:a3:0f:d9:36:0e:
72:c1:27:eb:c2:d6:32:01:3e:19:61:a5:70:2b:67:03:fb:58:
35:2d:a7:49
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYSFh0C9YTGB3ypvEq0L10IiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjIxMTE3MTIxOTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjM3Mjc3MjJmZGFjYjgzZDRkZTkxN2Y0NGMwYTkxOTZhMWZkODA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhOTIj+dpsQ/OjRrpsH5lDY6Dh5dY
BggmVlzYLt8nNjD3LaEMjEC1zaZ0gpBR/4KXbMtb6g7z3MR7jHKcvx20BDq/Y5dp
02YRsrw4f49mA32H0z3HcCABf6zzKkkyDW9rBsOYuQ/u2O/kVK6o7LQeJ1xRA3ob
COgttgXMoa0PmrSPp91tc2UZ+5DGxECPKlQfcj50Ryj9fRFOlf9z9fNmyYs711Vf
dLDGDlaKNwaTwwyIUTLBQn4teP4Jedq5TsmmR1Zng0wrvpyyqqnWFK6AYVaapzUV
pcRT9sozWLyxonCV01dbIAGMyKFTq3h7Kp3gyrAxEukL9zx4M+MtNM6JHQIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFHs3J3Iv2suD1N6Rf0TAqRlqH9gIMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvZXpjbmNpX2F5NFBVM3BGX1JNQ3BHV29mMkFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwYgQCAAEwXAMEACWdqQME
ACWdvwMEAFQoQTAMAwQAVChJAwQAVChKAwQAVChZAwQAVChdAwQAVCh0AwQAXyv6
AwQAX1fHAwQAX1fRAwQAX1ffAwQAX1fkAwQAX1f/AwQBuTxCMA0EAgACMAcDBQAq
AhM4MA0GCSqGSIb3DQEBCwUAA4IBAQAMipNtBajEx4nm+VpS3DeOljk1Fc6YYvfn
52w6rHedA7RU+aXO85hv9xSwCPn/ZAANfeu9DmhaZ8OX2Y1SjEs3KCqAqc4AIb0m
iZ+pJ/XDKt1hk6WJYYAUa8sfVJGIO8nqMLSigBCpS68P2CL4+gJkMw4yluv0XE5B
ams1eI8u3ivDhl8jKQFgde7HlOyUm96MwwNY/tG58TeMQk6GSk51Q4FhVQrM5NMe
hJaODqV+kgeWV96WOoSnXzYM5slK5ejAmgWw/m92Mre+eHDnRw/fFwft11Jgexm8
paiHpOTW/tzjsC4Iow/ZNg5ywSfrwtYyAT4ZYaVwK2cD+1g1LadJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org