Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/15QPm2FmoefjDVKjjqmnRzYg2W0.roa
File: 15QPm2FmoefjDVKjjqmnRzYg2W0.roa (raw, json)
Hash identifier: 9CwKYkYMnGREZU5U8NGItVv0iWTCM4VIGGcfnYMObPE=
Subject key identifier: D7:94:0F:9B:61:66:A1:E7:E3:0D:52:A3:8E:A9:A7:47:36:20:D9:6D
Certificate issuer: /CN=b78cddbfc76bda26a029ea80c8987798745f1f02
Certificate serial: 0367D858
Authority key identifier: B7:8C:DD:BF:C7:6B:DA:26:A0:29:EA:80:C8:98:77:98:74:5F:1F:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4zdv8dr2iagKeqAyJh3mHRfHwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/15QPm2FmoefjDVKjjqmnRzYg2W0.roa
Signing time: Sat 01 Jan 2022 01:56:33 +0000
ROA not before: Sat 01 Jan 2022 01:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.215.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57137240 (0x367d858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b78cddbfc76bda26a029ea80c8987798745f1f02
Validity
Not Before: Jan 1 01:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7940f9b6166a1e7e30d52a38ea9a7473620d96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:55:68:0b:61:6c:7a:f8:f7:6c:24:3e:5e:36:
c6:05:63:f1:fc:62:48:18:77:8f:8b:8e:1a:2a:80:
6d:40:d4:9f:af:0d:78:6d:43:ce:cc:0f:9a:5d:d1:
a6:f3:e2:6f:7d:4e:b1:3a:33:9b:d3:2b:bb:82:5e:
03:ad:7f:c1:84:2f:82:c5:91:35:df:7a:32:cd:b4:
e1:b5:9c:4b:ab:31:f9:8d:6e:b1:cc:25:79:15:7d:
56:6b:f7:05:89:13:ee:73:1e:a3:2d:f5:d8:71:0d:
a5:d7:e8:f1:11:24:ab:c1:43:79:88:55:c0:8e:16:
b8:42:13:63:f0:fd:be:64:00:4d:04:18:66:3f:fb:
32:42:2d:9c:83:7d:81:b4:8a:49:3c:e3:d4:40:7e:
06:39:74:9c:52:c8:eb:c3:7d:ed:28:c3:d2:04:06:
97:bd:69:72:14:a9:73:d0:99:7c:0c:ab:a5:bb:19:
8c:b6:63:c4:f4:71:e7:6e:37:56:2b:ef:69:fd:39:
9a:4d:76:df:22:78:4e:43:c0:f7:4a:f4:5c:a2:d4:
50:a0:b5:11:7a:b3:6f:1e:5b:31:1b:71:52:f5:e9:
5d:d8:ab:41:00:92:ba:e1:3e:5a:bc:bd:bb:63:57:
6b:c6:a3:37:e0:84:55:80:f7:81:e6:dc:4f:55:c9:
a9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:94:0F:9B:61:66:A1:E7:E3:0D:52:A3:8E:A9:A7:47:36:20:D9:6D
X509v3 Authority Key Identifier:
keyid:B7:8C:DD:BF:C7:6B:DA:26:A0:29:EA:80:C8:98:77:98:74:5F:1F:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4zdv8dr2iagKeqAyJh3mHRfHwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/15QPm2FmoefjDVKjjqmnRzYg2W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/t4zdv8dr2iagKeqAyJh3mHRfHwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.115.0/24
Signature Algorithm: sha256WithRSAEncryption
41:46:52:12:9b:4b:d4:7d:1b:67:fc:63:cb:a7:e1:89:d9:2c:
79:92:5e:dd:d3:ca:b8:e0:ed:ed:e2:e4:61:41:4c:d2:4c:04:
52:c6:ea:73:61:4d:89:e3:6d:e2:53:a7:4b:e2:9e:9f:4a:1b:
3d:ba:e3:4b:87:48:10:95:8c:5d:0c:f6:ed:57:40:5e:63:36:
7b:ba:9a:02:f0:6d:a7:3c:9b:d5:8f:6a:0c:53:17:50:f7:13:
f2:ec:4d:5a:f8:2b:61:e0:c0:d9:c5:ca:2f:46:f6:f2:bd:7d:
84:e1:84:d5:d2:bf:5d:df:21:20:0f:5d:35:d7:32:49:41:ff:
8c:c1:7b:f3:1e:1c:7e:ed:52:4c:85:94:48:a1:a2:ca:cf:1c:
d2:3e:10:58:d9:df:b4:dd:29:33:43:c7:70:17:46:c7:d6:fe:
ab:71:55:7d:a2:a3:f8:ba:39:59:5f:54:53:3e:7a:82:2b:a5:
8e:d1:0e:bf:cf:03:ad:06:0f:47:3d:1a:f6:62:21:f2:be:d9:
4e:b6:ce:b6:ca:22:95:f8:f0:45:2d:4b:ed:aa:f1:a2:91:ed:
29:e6:7f:31:79:6e:92:e4:f7:9b:cc:15:bf:b4:09:a1:d9:34:
76:1d:a1:d0:04:e9:20:a9:48:0c:78:5f:04:e7:31:06:a3:df:
db:a9:6a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:59 2024 by rpki-client on console-ams.rpki-client.org