Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/eS5do8r3ZWASuCzdbo2I9ZMnVWs.roa
File: eS5do8r3ZWASuCzdbo2I9ZMnVWs.roa (raw, json)
Hash identifier: ytkyHhfiVZfUe2UxhzHV7T4/VQK0IY44zTRn3vCTsAE=
Subject key identifier: 79:2E:5D:A3:CA:F7:65:60:12:B8:2C:DD:6E:8D:88:F5:93:27:55:6B
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13687BFA
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/eS5do8r3ZWASuCzdbo2I9ZMnVWs.roa
Signing time: Sat 01 Jan 2022 05:58:23 +0000
ROA not before: Sat 01 Jan 2022 05:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40371
IP address blocks: 84.207.212.0/24 maxlen: 24
83.125.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325614586 (0x13687bfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=792e5da3caf7656012b82cdd6e8d88f59327556b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4f:3d:54:d2:a7:f2:19:af:d6:3e:f5:9e:df:
29:45:fd:ea:55:3c:bf:8f:41:4e:07:67:63:50:77:
83:ba:9e:63:46:14:3f:9e:da:01:67:8e:a9:9b:2e:
ec:c1:67:c8:31:21:ac:9b:1a:cf:d2:61:2f:d4:5b:
8b:cb:37:3d:c0:0e:90:de:0e:4f:08:70:bb:d3:41:
30:c6:79:6d:e2:5a:21:12:9f:7d:98:03:82:0f:d6:
9a:85:f4:14:c9:9f:d3:73:20:b1:e7:10:2b:56:8d:
a8:05:45:f5:34:93:1c:ab:b7:5c:b9:7d:2a:b4:df:
91:c7:5a:7e:fe:90:27:3b:c6:12:f7:73:08:b3:30:
64:00:82:60:7c:49:ad:f7:8f:31:5d:3e:fb:77:36:
13:34:05:2e:1a:bc:9e:87:50:40:9c:13:15:5d:ab:
b2:d1:ae:0a:db:76:b8:02:f6:5a:17:a3:29:81:46:
d9:36:f7:af:49:b1:8d:b6:32:83:a0:e7:b1:98:e1:
09:d9:9b:e9:78:4b:fa:4d:62:5a:a1:b2:29:d8:c2:
df:8d:73:06:f7:21:6d:99:0f:2e:75:81:e2:7b:f3:
72:90:5f:7e:03:3f:07:de:7d:18:f9:fe:e2:46:5e:
1e:42:ed:8f:70:ae:6b:a1:9e:4e:89:5e:d7:a4:1d:
21:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2E:5D:A3:CA:F7:65:60:12:B8:2C:DD:6E:8D:88:F5:93:27:55:6B
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/eS5do8r3ZWASuCzdbo2I9ZMnVWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.125.36.0/24
84.207.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:3a:50:a3:19:a4:29:e7:f1:a4:ab:8a:bf:26:5b:c2:ce:aa:
ea:a8:32:5e:84:b4:e4:47:c9:38:e6:88:c6:0c:65:6c:fe:e1:
2d:99:a5:8e:e4:f3:a4:03:00:56:57:27:c6:85:51:90:52:2f:
32:f9:e8:fd:be:72:32:d0:4d:86:b3:0e:0e:0b:17:55:67:13:
89:0a:ba:14:b4:6c:74:fe:80:b3:e1:7a:d8:1f:85:8e:24:21:
f5:7c:24:18:90:5b:63:42:a8:11:15:f3:2d:2a:25:88:66:fd:
74:83:f3:db:92:18:b8:fd:52:96:9d:19:1b:8c:e4:41:c7:fe:
49:63:6d:f7:89:03:71:13:4c:99:fe:5f:c0:82:45:e1:17:63:
c8:02:1c:89:38:6c:3a:80:3a:dc:c0:54:ba:8f:0e:15:11:ed:
ab:c9:f3:a7:44:a3:db:46:55:bc:c8:fc:57:a5:38:94:7e:18:
74:9d:b1:58:13:72:34:a2:cc:27:c2:ae:a9:60:96:15:83:c1:
aa:9e:40:eb:fd:9c:9e:46:e2:80:93:68:c6:27:ef:25:ec:63:
78:a7:a5:54:3c:59:e9:fc:f8:62:a8:6e:c8:75:31:3d:b6:51:
ef:eb:20:4d:ef:32:5c:c6:b4:c0:8f:2e:5b:69:d9:2b:43:bb:
48:a5:35:e9
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEE2h7+jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZmU5MGZkZTk3ODRhOTFkOTNhN2EyYWY1OWQ0ZDA0M2YxMTcxZmJhMB4XDTIyMDEw
MTA1NTgyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzkyZTVkYTNjYWY3
NjU2MDEyYjgyY2RkNmU4ZDg4ZjU5MzI3NTU2YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJxPPVTSp/IZr9Y+9Z7fKUX96lU8v49BTgdnY1B3g7qeY0YU
P57aAWeOqZsu7MFnyDEhrJsaz9JhL9Rbi8s3PcAOkN4OTwhwu9NBMMZ5beJaIRKf
fZgDgg/WmoX0FMmf03MgsecQK1aNqAVF9TSTHKu3XLl9KrTfkcdafv6QJzvGEvdz
CLMwZACCYHxJrfePMV0++3c2EzQFLhq8nodQQJwTFV2rstGuCtt2uAL2WhejKYFG
2Tb3r0mxjbYyg6DnsZjhCdmb6XhL+k1iWqGyKdjC341zBvchbZkPLnWB4nvzcpBf
fgM/B959GPn+4kZeHkLtj3Cua6GeTole16QdIasCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR5Ll2jyvdlYBK4LN1ujYj1kydVazAfBgNVHSMEGDAWgBQf6Q/el4SpHZOn
oq9Z1NBD8RcfujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gta1AzcGVFcVIyVHA2S3ZXZFRRUV9FWEg3by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTIvYTk0NWY3LTUzYjMtNGRiNS1hZTA0LTIzNzcyZTdmOTJlMy8x
L2VTNWRvOHIzWldBU3VDemRibzJJOVpNblZXcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIv
YTk0NWY3LTUzYjMtNGRiNS1hZTA0LTIzNzcyZTdmOTJlMy8xL0gta1AzcGVFcVIy
VHA2S3ZXZFRRUV9FWEg3by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFN9JAMEAFTP1DANBgkqhkiG9w0B
AQsFAAOCAQEAKjpQoxmkKefxpKuKvyZbws6q6qgyXoS05EfJOOaIxgxlbP7hLZml
juTzpAMAVlcnxoVRkFIvMvno/b5yMtBNhrMODgsXVWcTiQq6FLRsdP6As+F62B+F
jiQh9XwkGJBbY0KoERXzLSoliGb9dIPz25IYuP1Slp0ZG4zkQcf+SWNt94kDcRNM
mf5fwIJF4RdjyAIciThsOoA63MBUuo8OFRHtq8nzp0Sj20ZVvMj8V6U4lH4YdJ2x
WBNyNKLMJ8KuqWCWFYPBqp5A6/2cnkbigJNoxifvJexjeKelVDxZ6fz4YqhuyHUx
PbZR7+sgTe8yXMa0wI8uW2nZK0O7SKU16Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:11 2024 by rpki-client on console-ams.rpki-client.org