Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/LIDQcyJrkFTyBvdnOUCghhLdiuk.roa
File: LIDQcyJrkFTyBvdnOUCghhLdiuk.roa (raw, json)
Hash identifier: eMnNQvrc0+rVX8SJssv9bOj+BwJlYmsdVfGwwBnIxac=
Subject key identifier: 2C:80:D0:73:22:6B:90:54:F2:06:F7:67:39:40:A0:86:12:DD:8A:E9
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0474E2EE
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/LIDQcyJrkFTyBvdnOUCghhLdiuk.roa
Signing time: Sat 01 Jan 2022 08:57:36 +0000
ROA not before: Sat 01 Jan 2022 08:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 37.252.3.0/24 maxlen: 24
5.45.76.0/22 maxlen: 22
5.45.72.0/22 maxlen: 22
5.45.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74769134 (0x474e2ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 08:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c80d073226b9054f206f7673940a08612dd8ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bf:1d:c2:45:d5:52:54:20:39:9f:6e:b8:11:
20:7a:83:9b:dc:ab:ed:f5:08:5f:cc:df:2a:a5:de:
7f:29:09:72:c3:de:f4:b2:8a:c5:08:28:ac:b5:ac:
90:f9:c3:63:51:9a:0d:8d:ec:a7:21:2c:11:99:16:
02:31:a4:b1:d0:c3:e0:af:db:8b:27:f8:fc:7c:6d:
3e:f4:27:26:9a:3e:53:c4:59:cf:2d:67:f3:57:20:
3b:f1:f2:ef:01:6a:94:7d:dc:1d:75:89:88:99:ab:
89:d8:e3:74:47:e4:c5:81:47:bf:7c:e4:c1:f9:dc:
c4:3a:51:db:21:ce:bf:3f:8d:8c:63:49:1f:8c:6b:
7e:f6:55:fb:3f:88:94:88:d4:f2:83:dd:5b:32:35:
89:18:46:80:32:19:77:b6:30:69:7b:8b:cf:ef:5b:
63:eb:11:57:12:f1:46:07:e8:ad:4e:fc:29:2f:07:
d7:a8:27:dd:51:95:e1:f1:71:36:bd:17:47:7c:d0:
1a:5a:ae:c2:9b:40:09:ca:b4:92:02:38:b1:b9:f4:
18:9d:15:ba:b4:45:15:e6:62:90:ee:1a:f9:5a:3a:
33:82:61:35:f0:e6:df:d5:9c:18:9d:fa:a3:24:84:
a0:9f:59:72:d3:f0:91:57:bd:82:10:cf:bb:e4:3f:
1e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:80:D0:73:22:6B:90:54:F2:06:F7:67:39:40:A0:86:12:DD:8A:E9
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/LIDQcyJrkFTyBvdnOUCghhLdiuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.72.0/21
5.45.88.0/22
37.252.3.0/24
Signature Algorithm: sha256WithRSAEncryption
04:fb:47:45:a4:0c:5c:40:1a:c5:dc:3e:9b:01:dc:05:8a:c8:
de:b0:d0:6d:51:c9:4d:42:bf:73:0c:d8:44:e1:d8:0f:2c:ce:
8a:b9:53:3d:a7:2f:25:71:b8:47:a6:be:ba:32:80:8c:2f:e8:
e3:52:59:d3:91:6d:06:46:e1:9e:cf:8f:e9:20:c1:a0:67:ea:
61:30:05:33:8b:32:89:23:45:99:81:d5:a1:6f:4d:c6:77:23:
f3:2a:5b:0e:86:8c:29:5e:f1:57:f4:b6:11:0b:e4:a7:6a:27:
1f:ab:10:7a:75:5c:ff:1d:a4:37:5a:31:f6:29:04:ad:ac:a6:
1f:c8:7d:b2:7b:da:c2:89:95:0c:98:6c:79:2c:ef:34:15:46:
be:1e:77:0a:d1:2d:d5:3a:0f:e2:da:2f:7b:9b:69:04:bb:69:
5d:5a:d0:67:6c:dd:b9:65:90:36:b9:34:6b:b0:e2:70:27:bb:
68:04:c9:92:70:bd:08:1b:f4:9e:cf:3c:b1:1b:41:a8:6a:fb:
97:84:2e:4a:e7:aa:02:3e:53:2e:0c:df:40:c4:20:bf:c4:a9:
81:9a:29:a9:50:a4:62:70:46:7b:65:09:2f:27:a3:5d:be:3a:
4b:2b:5b:46:5a:80:bf:e5:99:d8:f9:a1:25:b2:0a:89:ea:1b:
88:49:ca:de
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBHTi7jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZWY1Y2IyZjU5MGQwNDE2NTRmNGRmZGI2MGEyOGY5YTE1NDRmNDQ0MB4XDTIyMDEw
MTA4NTczNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmM4MGQwNzMyMjZi
OTA1NGYyMDZmNzY3Mzk0MGEwODYxMmRkOGFlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIq/HcJF1VJUIDmfbrgRIHqDm9yr7fUIX8zfKqXefykJcsPe
9LKKxQgorLWskPnDY1GaDY3spyEsEZkWAjGksdDD4K/biyf4/HxtPvQnJpo+U8RZ
zy1n81cgO/Hy7wFqlH3cHXWJiJmridjjdEfkxYFHv3zkwfncxDpR2yHOvz+NjGNJ
H4xrfvZV+z+IlIjU8oPdWzI1iRhGgDIZd7YwaXuLz+9bY+sRVxLxRgforU78KS8H
16gn3VGV4fFxNr0XR3zQGlquwptACcq0kgI4sbn0GJ0VurRFFeZikO4a+Vo6M4Jh
NfDm39WcGJ36oySEoJ9ZctPwkVe9ghDPu+Q/HrUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQsgNBzImuQVPIG92c5QKCGEt2K6TAfBgNVHSMEGDAWgBQO9csvWQ0EFlT0
39tgoo+aFUT0RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0R2WExMMWtOQkJaVTlOX2JZS0tQbWhWRTlFUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMjI2ZjA0LWY3ZGItNDkxYS1iYWZiLWVlNDM1ZDNjZDU4NS8x
L0xJRFFjeUpya0ZUeUJ2ZG5PVUNnaGhMZGl1ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
MjI2ZjA0LWY3ZGItNDkxYS1iYWZiLWVlNDM1ZDNjZDU4NS8xL0R2WExMMWtOQkJa
VTlOX2JZS0tQbWhWRTlFUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAwUtSAMEAgUtWAMEACX8AzANBgkq
hkiG9w0BAQsFAAOCAQEABPtHRaQMXEAaxdw+mwHcBYrI3rDQbVHJTUK/cwzYROHY
DyzOirlTPacvJXG4R6a+ujKAjC/o41JZ05FtBkbhns+P6SDBoGfqYTAFM4syiSNF
mYHVoW9Nxncj8ypbDoaMKV7xV/S2EQvkp2onH6sQenVc/x2kN1ox9ikEraymH8h9
snvawomVDJhseSzvNBVGvh53CtEt1ToP4tove5tpBLtpXVrQZ2zduWWQNrk0a7Di
cCe7aATJknC9CBv0ns88sRtBqGr7l4QuSueqAj5TLgzfQMQgv8SpgZopqVCkYnBG
e2UJLyejXb46SytbRlqAv+WZ2PmhJbIKieobiEnK3g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:44 2024 by rpki-client on console-fra.rpki-client.org