Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/eFNk454RCYLiZ-_CjRH1PhVBlYA.roa
File: eFNk454RCYLiZ-_CjRH1PhVBlYA.roa (raw, json)
Hash identifier: 2R+zzukBFlmM6vK+fY14Ej82VJ616hHrDZONMn1uL7A=
Subject key identifier: 78:53:64:E3:9E:11:09:82:E2:67:EF:C2:8D:11:F5:3E:15:41:95:80
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: C0DDCD
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/eFNk454RCYLiZ-_CjRH1PhVBlYA.roa
Signing time: Wed 16 Mar 2022 16:35:17 +0000
ROA not before: Wed 16 Mar 2022 16:35:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 185.21.0.0/22 maxlen: 22
37.1.184.0/21 maxlen: 21
37.1.190.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12639693 (0xc0ddcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Mar 16 16:35:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=785364e39e110982e267efc28d11f53e15419580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5f:24:3f:7e:2c:b0:2d:7c:46:d8:6e:f3:b6:
40:af:ee:3c:6a:4b:15:51:f6:4a:82:40:42:a8:9d:
73:58:d7:2a:d9:a0:cc:9c:e8:a9:c0:48:49:c6:84:
9c:db:fa:7a:5d:8c:ab:48:f0:08:48:32:95:82:e3:
0f:65:be:70:a6:31:e4:83:14:fc:fd:bb:53:7c:70:
7e:49:3a:c8:99:b1:37:d1:7e:87:9c:f3:d5:2d:ee:
e3:a8:c9:56:0d:9e:6e:3d:a7:31:a7:3a:f5:84:35:
81:2c:f3:90:33:14:85:f1:6b:af:4c:ef:ff:3d:d9:
18:40:6d:3b:10:ae:e1:1d:f1:10:30:f8:73:0f:93:
d8:b0:46:f2:47:61:57:66:7a:ee:c0:f2:5d:f3:69:
ac:18:8c:d0:f7:b0:1c:ac:2d:c5:f0:80:ea:a2:fe:
0b:b9:27:0d:02:cc:a9:63:7b:ca:fd:5d:11:19:ff:
64:18:d3:ba:82:ab:f1:c3:af:ff:22:98:e6:12:2a:
06:46:9c:5b:a7:52:b1:1d:7b:89:92:87:57:a9:d6:
82:07:34:e5:c6:a1:75:ed:98:0b:3f:05:89:c6:bf:
d1:ea:f9:81:9f:6a:57:73:8a:f2:e5:61:b0:81:62:
79:26:23:d0:df:ed:96:84:04:b5:fe:68:58:0a:fe:
9f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:53:64:E3:9E:11:09:82:E2:67:EF:C2:8D:11:F5:3E:15:41:95:80
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/eFNk454RCYLiZ-_CjRH1PhVBlYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.184.0/21
185.21.0.0/22
Signature Algorithm: sha256WithRSAEncryption
63:f6:c3:a9:a1:ca:75:d8:08:89:13:77:f7:82:bc:1f:ac:93:
cf:c9:1d:35:c9:53:e2:b7:a8:eb:c2:b2:97:04:3b:91:e5:18:
00:69:35:2e:69:86:bc:d1:31:e9:da:bf:27:bd:96:6d:3b:7b:
69:7b:73:37:89:5c:1e:72:4c:b7:86:70:e2:48:f6:85:f8:ba:
e2:18:ca:7a:08:2f:69:88:77:fd:db:c4:de:5a:dd:8b:20:b1:
6c:03:d3:4f:36:4c:07:22:4e:2d:4d:3c:d4:31:9f:0e:e1:6e:
6f:92:67:9e:5f:e1:58:a0:11:36:04:a2:14:50:09:0b:07:a5:
87:38:3e:3f:51:ad:14:d3:cb:db:97:7e:76:60:d2:56:ef:e8:
67:99:0a:cd:a0:5d:aa:29:fd:90:ad:b4:56:fb:37:54:fc:d5:
7b:e8:7c:72:cd:73:ea:81:e0:e3:cc:d1:dc:0a:d1:44:36:de:
dd:0e:03:39:f7:2c:f3:ce:07:92:d3:0f:cb:10:44:14:a4:e5:
76:19:5d:50:ee:6e:b4:0c:89:7f:ca:c5:3a:21:41:89:ed:36:
53:84:f4:0b:c1:59:de:34:2c:b7:fa:ae:18:72:b1:82:97:eb:
ec:15:61:7c:2f:bb:40:b4:12:5c:39:5f:ab:a8:a8:16:23:1f:
d9:d7:23:cc
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAMDdzTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MWY2ZTQzNzAxMTFjZmJmOTY4NDA0ODU0MjI3YjgwOTI4NTE0NTBkMB4XDTIyMDMx
NjE2MzUxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzg1MzY0ZTM5ZTEx
MDk4MmUyNjdlZmMyOGQxMWY1M2UxNTQxOTU4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZfJD9+LLAtfEbYbvO2QK/uPGpLFVH2SoJAQqidc1jXKtmg
zJzoqcBIScaEnNv6el2Mq0jwCEgylYLjD2W+cKYx5IMU/P27U3xwfkk6yJmxN9F+
h5zz1S3u46jJVg2ebj2nMac69YQ1gSzzkDMUhfFrr0zv/z3ZGEBtOxCu4R3xEDD4
cw+T2LBG8kdhV2Z67sDyXfNprBiM0PewHKwtxfCA6qL+C7knDQLMqWN7yv1dERn/
ZBjTuoKr8cOv/yKY5hIqBkacW6dSsR17iZKHV6nWggc05cahde2YCz8Fica/0er5
gZ9qV3OK8uVhsIFieSYj0N/tloQEtf5oWAr+n4sCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR4U2TjnhEJguJn78KNEfU+FUGVgDAfBgNVHSMEGDAWgBTR9uQ3ARHPv5aE
BIVCJ7gJKFFFDTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBmYmtOd0VSejctV2hBU0ZRaWU0Q1NoUlJRMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvNTlkNGU5LTY2MmMtNDM1YS1iMzUxLTRhYTUzOWEzMGQyMS8x
L2VGTms0NTRSQ1lMaVotX0NqUkgxUGhWQmxZQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
NTlkNGU5LTY2MmMtNDM1YS1iMzUxLTRhYTUzOWEzMGQyMS8xLzBmYmtOd0VSejct
V2hBU0ZRaWU0Q1NoUlJRMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAyUBuAMEArkVADANBgkqhkiG9w0B
AQsFAAOCAQEAY/bDqaHKddgIiRN394K8H6yTz8kdNclT4reo68KylwQ7keUYAGk1
LmmGvNEx6dq/J72WbTt7aXtzN4lcHnJMt4Zw4kj2hfi64hjKeggvaYh3/dvE3lrd
iyCxbAPTTzZMByJOLU081DGfDuFub5Jnnl/hWKARNgSiFFAJCwelhzg+P1GtFNPL
25d+dmDSVu/oZ5kKzaBdqin9kK20Vvs3VPzVe+h8cs1z6oHg48zR3ArRRDbe3Q4D
Ofcs884HktMPyxBEFKTldhldUO5utAyJf8rFOiFBie02U4T0C8FZ3jQst/quGHKx
gpfr7BVhfC+7QLQSXDlfq6ioFiMf2dcjzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org