Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/xr7C3HX9dYdCM4OH4dAc6S1apGA.roa
File: xr7C3HX9dYdCM4OH4dAc6S1apGA.roa (raw, json)
Hash identifier: 9DP/nrLQXXhrfVZh7G81QAe5hr4NEyJ4d1giqW3jAHQ=
Subject key identifier: C6:BE:C2:DC:75:FD:75:87:42:33:83:87:E1:D0:1C:E9:2D:5A:A4:60
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 16408D6B
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/xr7C3HX9dYdCM4OH4dAc6S1apGA.roa
Signing time: Sat 01 Jan 2022 08:52:54 +0000
ROA not before: Sat 01 Jan 2022 08:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49806
IP address blocks: 185.15.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373329259 (0x16408d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 1 08:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6bec2dc75fd758742338387e1d01ce92d5aa460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d0:b6:95:fe:44:4d:a8:88:4c:65:a0:0f:14:
fe:2e:11:6a:80:79:bd:d4:dd:3a:5b:9d:bc:29:48:
f9:dc:98:39:3c:55:e0:ab:80:6a:82:60:14:4a:1b:
b0:e6:d7:44:55:f2:e2:c7:1c:99:ec:6b:c8:a6:5f:
46:d3:3a:99:7f:d1:a6:10:88:d1:6c:0d:2c:b9:0b:
fb:7c:bc:a7:43:5d:17:eb:85:a8:27:be:bc:a0:6e:
e8:21:25:16:06:be:39:c0:32:61:26:82:c0:c7:e0:
9b:3f:9a:7b:17:1c:d8:60:0d:4d:0d:2c:2d:04:cd:
30:90:23:ab:c4:b9:d7:4c:36:02:33:d8:84:9d:93:
69:40:89:7b:f4:e2:f8:a2:87:28:8d:bb:47:39:43:
74:d5:90:c8:5d:cb:a1:4d:36:88:1d:d4:5c:16:65:
d8:d2:32:e8:18:b7:8e:a4:15:67:bd:5e:ad:e6:bb:
37:cf:37:43:41:c9:44:2d:e5:0b:38:df:5d:c4:c8:
58:c6:f0:b0:65:e9:ca:c2:8e:17:bb:a0:30:3e:c5:
84:a7:c9:7d:40:de:80:f6:43:a3:af:04:ce:92:4e:
84:ce:9a:d7:72:33:58:92:b7:63:d8:1e:2d:b8:71:
70:48:c1:08:fc:f9:83:c6:97:41:79:d0:2b:f4:08:
5f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BE:C2:DC:75:FD:75:87:42:33:83:87:E1:D0:1C:E9:2D:5A:A4:60
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/xr7C3HX9dYdCM4OH4dAc6S1apGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.157.0/24
Signature Algorithm: sha256WithRSAEncryption
18:33:11:e7:4e:81:15:79:4b:5d:b5:0c:39:90:61:8b:ba:a0:
3d:c2:85:aa:12:9b:9f:78:95:c4:7f:de:0f:60:35:e9:f7:a5:
d9:17:6a:e8:30:9a:ec:0f:d8:05:af:ab:bd:79:13:b2:c3:4a:
6f:40:d3:3c:56:61:7d:b7:59:56:09:7c:7f:7c:2e:5b:11:e3:
bb:7b:c1:05:a4:97:ae:84:5b:0a:0f:00:05:78:55:5b:d9:0a:
42:07:09:b6:ba:37:6b:dc:94:79:aa:4f:3e:47:14:cb:61:0c:
03:9b:77:bf:03:d3:f0:ef:c6:84:13:84:1f:ea:06:b3:ba:d9:
f4:d2:68:5b:e5:85:1d:9d:5e:19:cb:70:cc:e9:2f:21:e8:83:
af:08:a7:12:b8:b4:2c:3a:56:ba:eb:c6:46:bb:b0:98:f5:1d:
cb:b7:27:d8:16:08:4f:18:16:b6:0a:2f:0e:d4:23:52:41:aa:
cd:7d:db:36:dd:b4:39:0c:2d:62:8e:cd:41:d7:ba:62:93:14:
d8:33:d1:22:7d:4f:86:8c:1a:a4:fc:5f:13:af:0e:ec:98:92:
7a:b6:7c:b0:c1:9a:d3:6b:35:3e:57:9f:11:68:82:96:fb:26:
84:93:24:4a:9c:31:30:58:4c:84:2d:ef:c1:22:ef:0f:8e:e1:
42:ad:77:98
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFkCNazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OTEwMTAzNWQ1MzM3N2M1YTcyYmVkY2E1MjJmYzE0NTZlMGI4NDE5MB4XDTIyMDEw
MTA4NTI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzZiZWMyZGM3NWZk
NzU4NzQyMzM4Mzg3ZTFkMDFjZTkyZDVhYTQ2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOfQtpX+RE2oiExloA8U/i4RaoB5vdTdOludvClI+dyYOTxV
4KuAaoJgFEobsObXRFXy4sccmexryKZfRtM6mX/RphCI0WwNLLkL+3y8p0NdF+uF
qCe+vKBu6CElFga+OcAyYSaCwMfgmz+aexcc2GANTQ0sLQTNMJAjq8S510w2AjPY
hJ2TaUCJe/Ti+KKHKI27RzlDdNWQyF3LoU02iB3UXBZl2NIy6Bi3jqQVZ71erea7
N883Q0HJRC3lCzjfXcTIWMbwsGXpysKOF7ugMD7FhKfJfUDegPZDo68EzpJOhM6a
13IzWJK3Y9geLbhxcEjBCPz5g8aXQXnQK/QIXxcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTGvsLcdf11h0Izg4fh0BzpLVqkYDAfBgNVHSMEGDAWgBR5EBA11TN3xacr
7cpSL8FFbguEGTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VSQVFOZFV6ZDhXbkstM0tVaV9CUlc0TGhCay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvOTU4YzJjLWI0YzMtNDMyZC05YWIxLTBjYzgzYjAwZmM1OC8x
L3hyN0MzSFg5ZFlkQ000T0g0ZEFjNlMxYXBHQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
OTU4YzJjLWI0YzMtNDMyZC05YWIxLTBjYzgzYjAwZmM1OC8xL2VSQVFOZFV6ZDhX
bkstM0tVaV9CUlc0TGhCay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkPnTANBgkqhkiG9w0BAQsFAAOC
AQEAGDMR506BFXlLXbUMOZBhi7qgPcKFqhKbn3iVxH/eD2A16fel2Rdq6DCa7A/Y
Ba+rvXkTssNKb0DTPFZhfbdZVgl8f3wuWxHju3vBBaSXroRbCg8ABXhVW9kKQgcJ
tro3a9yUeapPPkcUy2EMA5t3vwPT8O/GhBOEH+oGs7rZ9NJoW+WFHZ1eGctwzOkv
IeiDrwinEri0LDpWuuvGRruwmPUdy7cn2BYITxgWtgovDtQjUkGqzX3bNt20OQwt
Yo7NQde6YpMU2DPRIn1PhowapPxfE68O7JiSerZ8sMGa02s1PlefEWiClvsmhJMk
SpwxMFhMhC3vwSLvD47hQq13mA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:48 2024 by rpki-client on console-ams.rpki-client.org