Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/dlgLr90oAwoz5zLmW8HDdmoztxA.roa
File: dlgLr90oAwoz5zLmW8HDdmoztxA.roa (raw, json)
Hash identifier: NpUK2ut2BloOJHvSYbWZQsnWBe9AG/Uc7sSwqSHJ28k=
Subject key identifier: 76:58:0B:AF:DD:28:03:0A:33:E7:32:E6:5B:C1:C3:76:6A:33:B7:10
Certificate issuer: /CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Certificate serial: 02E0BD91
Authority key identifier: 25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/dlgLr90oAwoz5zLmW8HDdmoztxA.roa
Signing time: Mon 14 Mar 2022 08:39:16 +0000
ROA not before: Mon 14 Mar 2022 08:39:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43160
IP address blocks: 149.62.176.0/21 maxlen: 21
149.62.181.0/24 maxlen: 24
5.158.81.0/24 maxlen: 24
5.158.80.0/24 maxlen: 24
5.158.83.0/24 maxlen: 24
37.235.37.0/24 maxlen: 24
37.235.32.0/21 maxlen: 21
37.235.33.0/24 maxlen: 24
2a01:b5c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48283025 (0x2e0bd91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Validity
Not Before: Mar 14 08:39:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76580bafdd28030a33e732e65bc1c3766a33b710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:42:b2:dd:22:d0:5f:de:6f:84:fb:3d:3c:
ee:83:c5:b5:25:a7:8f:e0:c5:a6:21:59:76:ea:2a:
98:ed:7d:33:62:1b:ae:7e:68:86:8e:bf:73:5c:be:
c3:61:2c:c7:6d:36:82:33:63:7e:ab:56:21:20:da:
42:e8:9e:18:a2:a7:7a:fd:9f:71:28:16:71:a2:28:
16:40:21:2e:3b:09:4c:0c:6c:76:f9:7f:40:55:b4:
64:99:96:1d:fe:04:44:66:8e:3e:eb:19:8a:2c:8e:
03:24:31:a9:1e:f8:07:84:3c:dd:15:54:8b:dd:0d:
c6:4b:9a:1d:55:19:d0:ea:bc:5e:b9:c4:47:26:52:
70:2a:28:73:e9:30:15:54:39:4b:b4:38:77:29:f9:
67:ae:60:a8:b1:29:fa:68:fc:85:47:66:2e:de:57:
ef:f2:81:c4:54:68:d4:05:5d:95:bc:1b:2e:c5:43:
9b:7e:e3:6b:75:e9:bc:cf:9e:04:89:5a:e5:b2:7a:
bf:ce:e2:80:dd:9c:2d:7c:57:92:f2:ff:a2:99:c5:
f9:d5:bf:b0:3e:5b:8f:31:d0:40:ab:0c:bd:f4:42:
31:d4:de:65:a0:53:8f:53:63:b5:55:ad:9b:15:b7:
dd:58:de:5f:f0:b3:b7:07:76:25:ee:0e:14:8a:8e:
5d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:58:0B:AF:DD:28:03:0A:33:E7:32:E6:5B:C1:C3:76:6A:33:B7:10
X509v3 Authority Key Identifier:
keyid:25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/dlgLr90oAwoz5zLmW8HDdmoztxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/Ja5VGvC7XXl36nP2iW8l8eyij50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.80.0/23
5.158.83.0/24
37.235.32.0/21
149.62.176.0/21
IPv6:
2a01:b5c0::/32
Signature Algorithm: sha256WithRSAEncryption
17:ed:06:13:8e:ba:a9:81:5e:d0:04:78:64:3f:90:25:cd:f8:
6c:33:04:e4:01:b3:82:92:0c:5f:d8:82:03:ff:12:6e:26:7e:
cc:4c:82:97:a3:6f:08:a5:42:d1:20:12:c0:90:3c:82:d5:c8:
33:21:ff:8e:88:1b:f1:fd:96:e8:d0:b3:72:24:63:50:d1:d1:
6f:35:2a:72:fe:d7:3f:07:e5:5a:92:76:2e:37:e6:af:6e:45:
49:8a:d1:30:47:8b:ec:d8:5e:92:9e:ad:04:d7:91:d7:f1:59:
23:61:a7:d9:9b:b7:6f:e4:8e:00:17:b3:c0:a8:da:55:3c:fb:
8f:1f:77:c5:e8:74:5e:40:3a:04:3e:94:73:03:f5:a3:ea:13:
e7:ec:9b:68:88:21:70:37:49:25:f3:8f:65:90:fa:ae:fd:bc:
d3:e1:4a:cc:7c:3f:2c:8d:98:7f:fe:88:c2:1f:67:1a:ab:0b:
6f:79:2e:ec:5c:46:6c:36:a2:d8:c1:11:c4:5f:0b:09:3b:bc:
a3:59:1a:43:26:4b:85:93:d1:a6:8a:05:7a:d2:c0:98:0d:a7:
04:fd:6c:d8:8f:af:db:25:25:1b:07:fe:e0:ec:2b:68:24:8c:
a9:f1:43:a1:30:f9:67:a5:f8:ec:09:71:c2:b5:54:c5:8f:92:
7e:7a:bb:57
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIEAuC9kTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NWFlNTUxYWYwYmI1ZDc5NzdlYTczZjY4OTZmMjVmMWVjYTI4ZjlkMB4XDTIyMDMx
NDA4MzkxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzY1ODBiYWZkZDI4
MDMwYTMzZTczMmU2NWJjMWMzNzY2YTMzYjcxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYRQrLdItBf3m+E+z087oPFtSWnj+DFpiFZduoqmO19M2Ib
rn5oho6/c1y+w2Esx202gjNjfqtWISDaQuieGKKnev2fcSgWcaIoFkAhLjsJTAxs
dvl/QFW0ZJmWHf4ERGaOPusZiiyOAyQxqR74B4Q83RVUi90NxkuaHVUZ0Oq8XrnE
RyZScCooc+kwFVQ5S7Q4dyn5Z65gqLEp+mj8hUdmLt5X7/KBxFRo1AVdlbwbLsVD
m37ja3XpvM+eBIla5bJ6v87igN2cLXxXkvL/opnF+dW/sD5bjzHQQKsMvfRCMdTe
ZaBTj1NjtVWtmxW33VjeX/Cztwd2Je4OFIqOXeECAwEAAaOCAiowggImMB0GA1Ud
DgQWBBR2WAuv3SgDCjPnMuZbwcN2ajO3EDAfBgNVHSMEGDAWgBQlrlUa8LtdeXfq
c/aJbyXx7KKPnTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0phNVZHdkM3WFhsMzZuUDJpVzhsOGV5aWo1MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvNDJmODFiLWM0MmMtNDI1NC1hYmI5LTIxNDJmOGZiNjc2ZS8x
L2RsZ0xyOTBvQXdvejV6TG1XOEhEZG1venR4QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
NDJmODFiLWM0MmMtNDI1NC1hYmI5LTIxNDJmOGZiNjc2ZS8xL0phNVZHdkM3WFhs
MzZuUDJpVzhsOGV5aWo1MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBA
BggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAQWeUAMEAAWeUwMEAyXrIAMEA5U+
sDANBAIAAjAHAwUAKgG1wDANBgkqhkiG9w0BAQsFAAOCAQEAF+0GE466qYFe0AR4
ZD+QJc34bDME5AGzgpIMX9iCA/8SbiZ+zEyCl6NvCKVC0SASwJA8gtXIMyH/jogb
8f2W6NCzciRjUNHRbzUqcv7XPwflWpJ2Ljfmr25FSYrRMEeL7Nhekp6tBNeR1/FZ
I2Gn2Zu3b+SOABezwKjaVTz7jx93xeh0XkA6BD6UcwP1o+oT5+ybaIghcDdJJfOP
ZZD6rv280+FKzHw/LI2Yf/6Iwh9nGqsLb3ku7FxGbDai2MERxF8LCTu8o1kaQyZL
hZPRpooFetLAmA2nBP1s2I+v2yUlGwf+4OwraCSMqfFDoTD5Z6X47AlxwrVUxY+S
fnq7Vw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:39 2024 by rpki-client on console-ams.rpki-client.org