Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/eBcwJEApuD5LyYRXOXyVK5YVIyA.roa
File: eBcwJEApuD5LyYRXOXyVK5YVIyA.roa (raw, json)
Hash identifier: cjgDSmSABjvW34A4iZD24oYp178f+s5rTJwvCKFvACo=
Subject key identifier: 78:17:30:24:40:29:B8:3E:4B:C9:84:57:39:7C:95:2B:96:15:23:20
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 03C55C0D
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/eBcwJEApuD5LyYRXOXyVK5YVIyA.roa
Signing time: Sat 01 Jan 2022 09:02:41 +0000
ROA not before: Sat 01 Jan 2022 09:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197476
IP address blocks: 37.35.56.0/21 maxlen: 21
178.157.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63265805 (0x3c55c0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 1 09:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=781730244029b83e4bc98457397c952b96152320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:42:cd:13:3b:66:7b:d9:5e:42:c2:a7:eb:ec:
2a:9c:bd:e1:7c:b9:e8:ab:3d:bb:f8:dd:0a:b2:db:
53:c5:64:fc:5c:17:b5:b1:33:ea:db:83:35:c3:ab:
22:ed:a2:46:1c:00:8a:db:7a:43:13:4e:9e:18:a0:
76:0e:27:be:d8:02:5e:98:4f:40:97:aa:54:94:0a:
b4:28:b6:de:2d:c4:19:b6:9a:25:6c:22:e7:e8:8e:
f2:d8:b0:3f:02:01:bb:72:1c:86:01:dd:c2:e9:8e:
e8:9d:c8:e0:47:64:55:ff:c1:b3:bd:75:48:27:86:
40:52:b8:5f:05:66:9a:52:28:fd:66:12:92:a8:e7:
87:f6:75:9b:c5:31:53:88:d7:68:04:d4:83:ac:05:
48:f8:be:db:c7:5f:d2:7c:ad:a7:cb:26:78:a4:aa:
b3:e3:1b:42:3c:a9:a0:08:76:0a:11:9f:d9:52:1c:
ca:b8:83:4c:c8:9d:ce:00:b8:f2:a1:c2:9a:49:1b:
b6:e8:e3:89:79:f7:4e:ee:38:06:39:81:30:35:40:
cf:ff:22:88:cc:e8:4c:67:81:2c:87:05:e7:2c:f1:
95:bb:6d:f7:7d:25:0b:9b:f4:0a:40:0a:13:0b:fd:
3e:3f:33:8f:05:59:b9:2a:e9:57:73:33:a5:de:79:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:17:30:24:40:29:B8:3E:4B:C9:84:57:39:7C:95:2B:96:15:23:20
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/eBcwJEApuD5LyYRXOXyVK5YVIyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.56.0/21
178.157.104.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:e4:a1:d7:c7:28:2f:85:95:0e:1e:93:92:e0:bd:22:31:1a:
11:76:2a:7b:df:58:05:9f:45:67:bc:1d:df:45:85:83:ca:eb:
e1:6c:93:29:66:fb:c6:d2:2d:39:bf:86:8a:6f:b2:21:e8:67:
75:03:5f:60:74:0a:57:74:65:ce:ed:1a:d8:dc:10:c4:89:97:
94:00:43:84:bd:7b:54:e8:8b:3d:27:98:91:e3:21:92:ab:58:
14:41:87:9a:a6:b3:ed:0f:57:16:f9:e1:bc:a9:bf:ff:ea:f5:
b7:8a:6f:40:1c:15:9b:16:1e:44:b9:f3:51:56:74:81:cf:d9:
f4:3e:0b:e7:ba:d8:0a:24:e1:c3:88:fd:bf:ff:30:cb:cb:f1:
99:c8:b2:6b:f6:d2:a8:51:01:9a:60:c0:8c:95:f2:c4:d1:ab:
80:e3:90:8e:4e:1c:29:5e:f7:01:f2:76:2d:d0:e5:10:fa:0d:
f9:db:a2:3e:ac:a3:b7:d2:81:f9:7b:8a:ab:3c:f5:d5:df:b7:
64:0f:8a:8b:60:bf:b7:d8:d5:62:a6:84:78:9b:78:2f:e4:1c:
44:19:f7:16:de:d2:21:e3:30:e6:33:3a:94:53:b3:59:6e:39:
6a:39:d5:90:c4:78:f7:c0:46:89:1a:66:13:b5:5d:5f:a1:c9:
1f:e3:5c:13
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA8VcDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjIzM2Q3NTUwOGI0ZTg1Y2NjZjQ0MzQ5YTdjYjcwMzE5OGQxZDI2MB4XDTIyMDEw
MTA5MDI0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzgxNzMwMjQ0MDI5
YjgzZTRiYzk4NDU3Mzk3Yzk1MmI5NjE1MjMyMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALhCzRM7ZnvZXkLCp+vsKpy94Xy56Ks9u/jdCrLbU8Vk/FwX
tbEz6tuDNcOrIu2iRhwAitt6QxNOnhigdg4nvtgCXphPQJeqVJQKtCi23i3EGbaa
JWwi5+iO8tiwPwIBu3IchgHdwumO6J3I4EdkVf/Bs711SCeGQFK4XwVmmlIo/WYS
kqjnh/Z1m8UxU4jXaATUg6wFSPi+28df0nytp8smeKSqs+MbQjypoAh2ChGf2VIc
yriDTMidzgC48qHCmkkbtujjiXn3Tu44BjmBMDVAz/8iiMzoTGeBLIcF5yzxlbtt
930lC5v0CkAKEwv9Pj8zjwVZuSrpV3Mzpd55yhECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR4FzAkQCm4PkvJhFc5fJUrlhUjIDAfBgNVHSMEGDAWgBRrIz11UItOhczP
RDSafLcDGY0dJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2F5TTlkVkNMVG9YTXowUTBtbnkzQXhtTkhTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTAvOWQ5MTkyLTI3M2MtNGNhOS1iMmJhLWZhOWNiNTFjZDBmMS8x
L2VCY3dKRUFwdUQ1THlZUlhPWHlWSzVZVkl5QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAv
OWQ5MTkyLTI3M2MtNGNhOS1iMmJhLWZhOWNiNTFjZDBmMS8xL2F5TTlkVkNMVG9Y
TXowUTBtbnkzQXhtTkhTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAyUjOAMEArKdaDANBgkqhkiG9w0B
AQsFAAOCAQEAjOSh18coL4WVDh6TkuC9IjEaEXYqe99YBZ9FZ7wd30WFg8rr4WyT
KWb7xtItOb+Gim+yIehndQNfYHQKV3Rlzu0a2NwQxImXlABDhL17VOiLPSeYkeMh
kqtYFEGHmqaz7Q9XFvnhvKm//+r1t4pvQBwVmxYeRLnzUVZ0gc/Z9D4L57rYCiTh
w4j9v/8wy8vxmciya/bSqFEBmmDAjJXyxNGrgOOQjk4cKV73AfJ2LdDlEPoN+dui
Pqyjt9KB+XuKqzz11d+3ZA+Ki2C/t9jVYqaEeJt4L+QcRBn3Ft7SIeMw5jM6lFOz
WW45ajnVkMR498BGiRpmE7VdX6HJH+NcEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org