Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/5Zp52F-iz5t_sDcoszrQ1Y7TU8k.roa
File: 5Zp52F-iz5t_sDcoszrQ1Y7TU8k.roa (raw, json)
Hash identifier: C/LXnT9NApYyzfxtv9PIpwvP4yh+jtPMNu2rHIrL190=
Subject key identifier: E5:9A:79:D8:5F:A2:CF:9B:7F:B0:37:28:B3:3A:D0:D5:8E:D3:53:C9
Certificate issuer: /CN=eab9a157e12a2ef717d13231af06fd85454b3151
Certificate serial: 93483B
Authority key identifier: EA:B9:A1:57:E1:2A:2E:F7:17:D1:32:31:AF:06:FD:85:45:4B:31:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6rmhV-EqLvcX0TIxrwb9hUVLMVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/5Zp52F-iz5t_sDcoszrQ1Y7TU8k.roa
Signing time: Sat 01 Jan 2022 02:00:41 +0000
ROA not before: Sat 01 Jan 2022 02:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198622
IP address blocks: 37.157.0.0/21 maxlen: 24
185.84.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9652283 (0x93483b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eab9a157e12a2ef717d13231af06fd85454b3151
Validity
Not Before: Jan 1 02:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e59a79d85fa2cf9b7fb03728b33ad0d58ed353c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:85:f6:94:ee:e0:5a:37:5b:c1:30:48:0e:90:
9b:df:97:85:02:a7:84:ea:ea:32:e9:b4:2b:15:5f:
9e:de:80:4b:61:44:28:b6:f8:8a:a1:27:85:e4:4d:
8d:51:04:0c:7f:9f:52:77:ae:8f:3d:e8:c9:4c:93:
79:af:ea:3b:cc:78:aa:ab:ca:68:eb:20:eb:ff:d5:
e7:70:97:3e:14:ee:a7:08:7e:e1:f9:30:33:2d:39:
1a:d7:20:ce:1f:da:c0:14:b1:1f:d4:8d:2f:b9:30:
80:e8:0e:99:69:50:01:bc:a7:25:55:a9:a2:07:be:
d7:2c:ce:f3:b1:56:87:2d:fd:be:b2:9c:39:df:1d:
28:a3:cf:05:b2:8a:8f:c6:9d:5a:47:14:41:68:0e:
85:56:d1:3f:e0:eb:da:9d:4a:58:ea:86:7e:fc:ee:
57:f5:c3:b9:44:47:4c:0b:c8:36:09:6f:5b:5c:f9:
6b:1e:59:09:bc:6e:06:1d:38:05:74:46:88:19:7b:
dc:8f:f9:f5:0c:c0:6d:48:76:74:fb:00:f7:a0:28:
a9:77:e9:a4:3b:eb:c2:e9:82:5f:99:c9:06:dd:0c:
09:90:71:10:73:3a:dd:78:6c:d3:e4:8b:ac:39:31:
67:77:d1:ad:40:6d:a9:b7:c5:72:bf:b6:14:7d:6f:
f2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9A:79:D8:5F:A2:CF:9B:7F:B0:37:28:B3:3A:D0:D5:8E:D3:53:C9
X509v3 Authority Key Identifier:
keyid:EA:B9:A1:57:E1:2A:2E:F7:17:D1:32:31:AF:06:FD:85:45:4B:31:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6rmhV-EqLvcX0TIxrwb9hUVLMVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/5Zp52F-iz5t_sDcoszrQ1Y7TU8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/6rmhV-EqLvcX0TIxrwb9hUVLMVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.0.0/21
185.84.60.0/22
Signature Algorithm: sha256WithRSAEncryption
07:61:94:a3:e2:32:16:0f:88:46:9b:2d:58:9f:dc:9f:17:5b:
11:ca:d1:66:84:36:59:a5:51:f1:3f:da:10:8e:ad:6b:1b:f1:
e3:51:b1:f3:92:7e:ba:95:b9:de:88:ab:ec:5f:db:8c:9b:87:
63:23:81:11:1d:fb:1e:ec:19:2f:f7:56:e7:67:ac:31:ab:cb:
2a:8f:13:23:aa:88:1d:4e:b5:62:64:e1:39:80:ec:29:77:9b:
b9:77:47:37:1a:a5:8a:95:84:ef:78:74:5d:f5:6e:4f:8e:52:
09:46:5d:87:1a:e3:e1:58:fd:0f:c0:d3:81:dc:17:a4:26:a9:
a6:c2:d1:de:0f:52:a3:3d:22:74:36:14:09:58:e5:49:eb:42:
5b:c1:de:ee:cb:dc:a3:28:6b:15:87:12:17:de:52:b5:33:7e:
9c:02:6b:48:4b:99:d6:b8:f1:99:f5:4c:cd:60:49:bc:c3:97:
5a:57:81:70:88:5f:d0:eb:42:6d:01:cd:67:01:de:9c:e9:be:
5b:f3:87:b6:1b:d5:8e:61:94:94:96:01:35:0c:79:9a:4b:af:
26:5e:c6:e6:11:9e:41:d7:13:8d:d3:32:19:bb:f9:6d:2b:c5:
36:5e:47:b3:af:3d:cf:2d:af:79:b6:db:b2:c1:2c:ff:10:28:
09:30:d4:4b
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAJNIOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWI5YTE1N2UxMmEyZWY3MTdkMTMyMzFhZjA2ZmQ4NTQ1NGIzMTUxMB4XDTIyMDEw
MTAyMDA0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU5YTc5ZDg1ZmEy
Y2Y5YjdmYjAzNzI4YjMzYWQwZDU4ZWQzNTNjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqF9pTu4Fo3W8EwSA6Qm9+XhQKnhOrqMum0KxVfnt6AS2FE
KLb4iqEnheRNjVEEDH+fUneujz3oyUyTea/qO8x4qqvKaOsg6//V53CXPhTupwh+
4fkwMy05Gtcgzh/awBSxH9SNL7kwgOgOmWlQAbynJVWpoge+1yzO87FWhy39vrKc
Od8dKKPPBbKKj8adWkcUQWgOhVbRP+Dr2p1KWOqGfvzuV/XDuURHTAvINglvW1z5
ax5ZCbxuBh04BXRGiBl73I/59QzAbUh2dPsA96AoqXfppDvrwumCX5nJBt0MCZBx
EHM63Xhs0+SLrDkxZ3fRrUBtqbfFcr+2FH1v8okCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTlmnnYX6LPm3+wNyizOtDVjtNTyTAfBgNVHSMEGDAWgBTquaFX4Sou9xfR
MjGvBv2FRUsxUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZybWhWLUVxTHZjWDBUSXhyd2I5aFVWTE1WRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvNGRiNzcwLWQ3ZjUtNGJjYi1iYTQ0LTg1NzcxMjcyMGEzNS8x
LzVacDUyRi1pejV0X3NEY29zenJRMVk3VFU4ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
NGRiNzcwLWQ3ZjUtNGJjYi1iYTQ0LTg1NzcxMjcyMGEzNS8xLzZybWhWLUVxTHZj
WDBUSXhyd2I5aFVWTE1WRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAyWdAAMEArlUPDANBgkqhkiG9w0B
AQsFAAOCAQEAB2GUo+IyFg+IRpstWJ/cnxdbEcrRZoQ2WaVR8T/aEI6taxvx41Gx
85J+upW53oir7F/bjJuHYyOBER37HuwZL/dW52esMavLKo8TI6qIHU61YmThOYDs
KXebuXdHNxqlipWE73h0XfVuT45SCUZdhxrj4Vj9D8DTgdwXpCappsLR3g9Soz0i
dDYUCVjlSetCW8He7svcoyhrFYcSF95StTN+nAJrSEuZ1rjxmfVMzWBJvMOXWleB
cIhf0OtCbQHNZwHenOm+W/OHthvVjmGUlJYBNQx5mkuvJl7G5hGeQdcTjdMyGbv5
bSvFNl5Hs689zy2vebbbssEs/xAoCTDUSw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:06 2024 by rpki-client on console-fra.rpki-client.org