Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7ffcb3-357f-436d-8ae3-009477e84a86/1/XCWOSI7-br1xe9EFQ58Op9Za0j4.roa
File: XCWOSI7-br1xe9EFQ58Op9Za0j4.roa (raw, json)
Hash identifier: uPjMcGGvzOb3QppIabS8qPxsaKKk6C/z0MfdKvprNkY=
Subject key identifier: 5C:25:8E:48:8E:FE:6E:BD:71:7B:D1:05:43:9F:0E:A7:D6:5A:D2:3E
Certificate issuer: /CN=78024d480b37705fa0091b5774174e80fdd8add8
Certificate serial: 8D37E0
Authority key identifier: 78:02:4D:48:0B:37:70:5F:A0:09:1B:57:74:17:4E:80:FD:D8:AD:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eAJNSAs3cF-gCRtXdBdOgP3Yrdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7ffcb3-357f-436d-8ae3-009477e84a86/1/XCWOSI7-br1xe9EFQ58Op9Za0j4.roa
Signing time: Sat 01 Jan 2022 03:02:59 +0000
ROA not before: Sat 01 Jan 2022 03:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62252
IP address blocks: 185.41.157.0/24 maxlen: 24
185.41.158.0/24 maxlen: 24
185.41.159.0/24 maxlen: 24
185.41.156.0/22 maxlen: 22
185.41.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9254880 (0x8d37e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78024d480b37705fa0091b5774174e80fdd8add8
Validity
Not Before: Jan 1 03:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c258e488efe6ebd717bd105439f0ea7d65ad23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:31:33:fb:54:9e:21:87:28:24:c5:12:fb:4e:
fe:30:14:7f:cd:82:1f:4e:6a:45:b4:97:68:56:aa:
89:be:6c:b3:11:bf:42:79:28:c2:61:35:49:0a:87:
78:56:4d:81:e4:1f:3c:f5:09:9f:59:e7:ba:50:1a:
d9:9e:c6:01:59:cd:aa:60:05:31:b4:99:fc:21:1c:
75:f8:57:b9:ba:8d:67:b4:2c:0a:5f:22:d7:22:41:
63:63:4f:75:5e:58:7f:e3:36:c1:b3:2d:f7:e5:ae:
13:ac:e7:7f:ad:72:b6:f6:5d:4e:b1:ba:2f:96:44:
21:d6:bd:18:22:df:58:1d:e2:a8:81:f3:b0:4d:37:
d5:1a:76:d3:8e:a4:1e:58:c6:78:1c:94:4e:24:13:
01:8d:40:a5:dc:a7:64:a2:d0:fa:94:10:c7:24:9d:
b8:d0:f0:e1:22:2f:00:ba:a3:5c:e3:db:38:2b:6f:
ae:1e:e8:52:ad:a0:2b:ff:61:a1:3f:a0:85:c1:0d:
b1:e3:d1:72:03:dd:52:e3:60:2f:52:82:66:80:d8:
7a:1a:d2:b5:8b:30:4b:d4:20:c7:6a:50:3d:92:67:
a1:95:6c:de:ce:9f:93:c5:ff:45:29:53:f3:34:86:
ea:ba:99:83:b9:c2:c8:23:ca:69:00:ba:f1:78:41:
7d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:25:8E:48:8E:FE:6E:BD:71:7B:D1:05:43:9F:0E:A7:D6:5A:D2:3E
X509v3 Authority Key Identifier:
keyid:78:02:4D:48:0B:37:70:5F:A0:09:1B:57:74:17:4E:80:FD:D8:AD:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eAJNSAs3cF-gCRtXdBdOgP3Yrdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7ffcb3-357f-436d-8ae3-009477e84a86/1/XCWOSI7-br1xe9EFQ58Op9Za0j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7ffcb3-357f-436d-8ae3-009477e84a86/1/eAJNSAs3cF-gCRtXdBdOgP3Yrdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.156.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:96:75:eb:03:88:1e:de:32:9a:3e:dc:93:eb:72:82:ce:06:
f2:21:46:a4:3b:c6:0b:66:73:8e:30:cc:87:7f:ef:73:ab:b6:
32:a7:cc:b1:48:de:51:a2:70:a4:f0:01:37:fa:8d:ec:40:e0:
ff:f6:62:0f:86:ed:4e:51:41:c7:06:dd:d2:bb:ff:78:ba:f6:
d2:05:6b:96:0b:a8:a1:5b:88:74:51:0a:da:77:6f:82:9d:d4:
35:78:18:0e:18:c5:9a:7a:8b:bd:c1:18:94:bb:e0:0a:9e:db:
26:0a:ef:de:f2:f1:26:8d:32:40:b6:1c:af:83:34:3d:77:9f:
9d:17:11:99:78:51:09:3b:6f:a2:da:d0:93:74:22:69:2b:e3:
6e:6e:6e:62:a4:e5:a2:bb:2c:03:d3:0c:99:27:e0:e1:c9:bd:
da:33:a7:dc:7e:5d:f7:d6:cf:56:fa:ff:a1:14:f6:35:27:f7:
93:66:a6:8c:fa:4c:4b:25:84:22:47:4d:29:b7:26:af:47:83:
44:2d:0e:4d:47:a6:22:aa:a6:ec:c6:56:16:3a:24:01:59:7b:
ae:e0:bd:4f:f1:7f:29:e4:de:9f:4e:1e:ec:c9:be:95:60:a1:
1f:11:32:17:f8:ad:7f:34:40:19:e3:7e:2b:6c:2e:41:96:22:
aa:0f:16:2c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAI034DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ODAyNGQ0ODBiMzc3MDVmYTAwOTFiNTc3NDE3NGU4MGZkZDhhZGQ4MB4XDTIyMDEw
MTAzMDI1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWMyNThlNDg4ZWZl
NmViZDcxN2JkMTA1NDM5ZjBlYTdkNjVhZDIzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQxM/tUniGHKCTFEvtO/jAUf82CH05qRbSXaFaqib5ssxG/
QnkowmE1SQqHeFZNgeQfPPUJn1nnulAa2Z7GAVnNqmAFMbSZ/CEcdfhXubqNZ7Qs
Cl8i1yJBY2NPdV5Yf+M2wbMt9+WuE6znf61ytvZdTrG6L5ZEIda9GCLfWB3iqIHz
sE031Rp2046kHljGeByUTiQTAY1ApdynZKLQ+pQQxySduNDw4SIvALqjXOPbOCtv
rh7oUq2gK/9hoT+ghcENsePRcgPdUuNgL1KCZoDYehrStYswS9Qgx2pQPZJnoZVs
3s6fk8X/RSlT8zSG6rqZg7nCyCPKaQC68XhBfRMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRcJY5Ijv5uvXF70QVDnw6n1lrSPjAfBgNVHSMEGDAWgBR4Ak1ICzdwX6AJ
G1d0F06A/dit2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VBSk5TQXMzY0YtZ0NSdFhkQmRPZ1AzWXJkZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2IvN2ZmY2IzLTM1N2YtNDM2ZC04YWUzLTAwOTQ3N2U4NGE4Ni8x
L1hDV09TSTctYnIxeGU5RUZRNThPcDlaYTBqNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Iv
N2ZmY2IzLTM1N2YtNDM2ZC04YWUzLTAwOTQ3N2U4NGE4Ni8xL2VBSk5TQXMzY0Yt
Z0NSdFhkQmRPZ1AzWXJkZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkpnDANBgkqhkiG9w0BAQsFAAOC
AQEAP5Z16wOIHt4ymj7ck+tygs4G8iFGpDvGC2ZzjjDMh3/vc6u2MqfMsUjeUaJw
pPABN/qN7EDg//ZiD4btTlFBxwbd0rv/eLr20gVrlguooVuIdFEK2ndvgp3UNXgY
DhjFmnqLvcEYlLvgCp7bJgrv3vLxJo0yQLYcr4M0PXefnRcRmXhRCTtvotrQk3Qi
aSvjbm5uYqTlorssA9MMmSfg4cm92jOn3H5d99bPVvr/oRT2NSf3k2amjPpMSyWE
IkdNKbcmr0eDRC0OTUemIqqm7MZWFjokAVl7ruC9T/F/KeTen04e7Mm+lWChHxEy
F/itfzRAGeN+K2wuQZYiqg8WLA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:03 2024 by rpki-client on console-ams.rpki-client.org