Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/RSzHrG4UL9m5EAJY_McwFj5PVLg.roa
File: RSzHrG4UL9m5EAJY_McwFj5PVLg.roa (raw, json)
Hash identifier: tU00mDLX3uLGIBMUtL6ImzoZAfYW9wKvTZj55eiU7ZY=
Subject key identifier: 45:2C:C7:AC:6E:14:2F:D9:B9:10:02:58:FC:C7:30:16:3E:4F:54:B8
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 1642505E
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/RSzHrG4UL9m5EAJY_McwFj5PVLg.roa
Signing time: Sat 01 Jan 2022 08:52:56 +0000
ROA not before: Sat 01 Jan 2022 08:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211487
IP address blocks: 185.15.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373444702 (0x1642505e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 1 08:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=452cc7ac6e142fd9b9100258fcc730163e4f54b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e5:2e:e5:c4:9d:c9:5b:c8:39:69:c2:73:c5:
af:27:5c:7b:2f:68:33:91:89:42:09:43:23:af:7d:
0e:47:36:53:87:5e:e2:5d:bc:0a:56:60:3d:4c:ac:
b3:95:f7:4a:57:3d:ee:74:0e:27:b4:88:15:61:0b:
b8:65:d9:61:62:ba:87:1a:ba:5e:0b:f1:6b:4b:3a:
1a:75:20:a3:bd:d2:7c:31:9d:6f:85:15:b1:6d:19:
7c:9a:a3:61:c4:9b:0f:6d:4f:85:d8:57:55:aa:1a:
4b:89:ea:f4:cf:4e:db:eb:37:7c:bf:f9:46:75:d2:
33:ed:90:ef:03:b5:37:31:89:66:25:db:88:bb:d4:
32:3b:cc:ee:0b:7f:25:ed:61:81:9f:8d:f2:a7:3f:
02:9e:1d:61:70:d7:cd:ca:8d:12:64:34:6a:c0:6d:
a8:00:94:10:dc:fa:b9:fc:65:ff:f0:b7:32:b1:7c:
a2:ec:a3:92:62:56:01:cb:e9:23:46:ee:56:89:51:
50:78:dd:d7:3e:18:73:37:2d:09:f6:3e:ee:e0:9e:
88:34:22:4e:30:c7:92:a7:73:2c:3d:b1:1e:5e:bb:
37:ec:33:16:58:51:28:7d:6a:90:b6:5f:cb:4e:80:
c6:a2:c6:5e:20:ca:c6:ae:20:e8:03:76:af:c3:32:
08:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2C:C7:AC:6E:14:2F:D9:B9:10:02:58:FC:C7:30:16:3E:4F:54:B8
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/RSzHrG4UL9m5EAJY_McwFj5PVLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.156.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:52:29:0c:51:1c:25:28:74:d0:68:c5:5b:69:e5:f4:29:28:
f2:60:84:9f:f3:9d:2e:1c:89:80:7a:79:16:5f:16:4c:53:7b:
70:37:67:4d:8b:82:32:b1:39:22:e9:da:34:fd:1c:e1:41:a3:
f2:f1:4f:4c:ee:7f:09:8e:a9:46:2c:d3:b5:f5:74:00:46:00:
11:dd:56:95:f3:b3:f4:68:e5:51:50:a8:ce:5a:fa:a9:c8:2d:
56:fc:ff:f1:b3:95:dc:9c:4a:39:65:a6:f2:d8:3f:b2:b5:ab:
37:ef:e2:a2:bd:2b:85:1b:6f:ba:c4:bf:6c:f2:9b:5d:f7:09:
3b:12:63:e8:08:3e:b3:30:01:9e:54:cf:5a:9d:96:f0:e8:56:
f7:64:b6:84:90:86:7c:88:96:76:9b:7d:e4:1b:1f:29:31:61:
a5:29:b2:b7:be:70:e7:a8:89:10:19:5f:17:e9:cb:23:83:0e:
ab:57:5d:6c:0f:81:37:67:34:a4:c9:a0:98:fe:f3:ec:fc:b8:
8e:86:63:7e:84:f2:55:46:34:c4:0c:9e:3a:96:bc:d5:de:3f:
12:54:89:2e:24:6e:a1:bd:9b:6c:cd:05:84:2e:15:15:2e:f1:
24:17:78:f8:31:23:fe:42:65:33:c7:b1:f5:7c:71:52:1f:6e:
67:82:a5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:30 2024 by rpki-client on console-fra.rpki-client.org