Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/A92OziizbetVYg6ik6BHu0nPoaY.roa
File: A92OziizbetVYg6ik6BHu0nPoaY.roa (raw, json)
Hash identifier: Hi+/9TONE5TzwwpkLr5CIYFNEBCaHU41a+CWq330reI=
Subject key identifier: 03:DD:8E:CE:28:B3:6D:EB:55:62:0E:A2:93:A0:47:BB:49:CF:A1:A6
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A7640E9
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/A92OziizbetVYg6ik6BHu0nPoaY.roa
Signing time: Sat 01 Jan 2022 04:51:56 +0000
ROA not before: Sat 01 Jan 2022 04:51:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50551
IP address blocks: 81.15.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980828393 (0x3a7640e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03dd8ece28b36deb55620ea293a047bb49cfa1a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:26:ce:02:68:b3:4a:cc:11:9d:80:51:a3:
7e:ea:e1:48:28:73:31:04:b9:d1:a0:d1:92:64:f8:
50:e2:1e:a2:11:e4:bf:ec:f1:f9:f4:b1:34:f3:d4:
1d:b8:12:ec:a5:e9:3d:20:bd:48:09:2b:2f:06:81:
d0:aa:0b:72:97:4e:88:79:61:c2:f0:a6:39:61:86:
ec:f2:e3:b5:8e:f2:ea:2f:a0:ad:de:3a:27:c4:09:
51:db:47:cc:08:3d:93:41:3a:45:d5:a0:48:72:d8:
13:70:14:42:30:1d:1c:44:94:3f:84:15:06:a1:57:
bb:88:f6:5b:e7:2f:9b:44:d4:5b:da:1e:35:0a:a7:
a8:53:c2:f8:7e:8b:b8:7b:23:54:f0:5b:6e:46:de:
3b:82:e9:64:c6:e2:b5:09:8d:1c:57:88:5b:ec:b1:
df:55:3e:74:8e:f2:07:e7:ec:a4:e1:49:83:fb:05:
3c:9c:40:1d:d2:67:75:9b:d8:3d:c1:e2:71:e8:3e:
06:14:6e:f1:5f:b2:24:82:eb:e3:5d:2d:79:30:86:
48:91:e3:65:71:86:1c:0a:1c:f0:31:bd:65:ad:d6:
de:96:c6:7d:02:b5:7f:69:16:5f:20:93:95:78:c1:
b1:1f:82:c3:08:1c:4b:13:78:06:38:eb:54:3f:1f:
f7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DD:8E:CE:28:B3:6D:EB:55:62:0E:A2:93:A0:47:BB:49:CF:A1:A6
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/A92OziizbetVYg6ik6BHu0nPoaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.157.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:f0:be:26:03:80:cc:83:20:95:86:bb:33:5c:80:dd:e9:ea:
05:76:36:1b:d3:ef:8e:be:8f:bc:19:cb:98:8e:db:ef:30:58:
a1:13:c8:67:45:6a:71:7e:e1:36:0c:aa:b3:86:0a:e0:45:64:
c5:f4:33:9b:df:1b:04:ca:2c:28:40:34:23:27:ad:6f:7a:c6:
bb:2c:70:ce:5e:0d:58:b8:ea:81:70:ae:ac:f4:b5:dc:f0:63:
59:da:3d:5c:1b:14:4b:69:52:1e:1c:8f:3f:60:75:62:a7:3b:
46:90:53:e4:fe:66:fb:2a:ea:16:a8:0d:3f:8e:1e:b8:3c:98:
cf:72:b6:cc:8d:71:3e:b2:89:2f:31:1c:8a:9f:76:c1:64:c0:
83:a5:ed:57:67:0a:85:b5:52:50:9c:2b:0f:e9:21:13:72:90:
6d:a7:d7:90:eb:fd:02:ba:82:fb:9f:63:33:10:b5:6f:bd:4d:
81:0f:cf:c3:86:a1:24:92:34:4a:31:24:42:aa:4c:f2:2e:f3:
26:e1:41:48:b5:e3:91:e2:eb:e2:0e:49:96:fc:a9:ca:2a:b8:
1a:e8:3b:bf:3c:24:8b:6d:7c:88:16:9b:9e:b1:fc:db:fd:37:
46:22:4e:9c:03:cf:47:48:7a:46:3b:f6:ee:85:c3:7d:43:4f:
95:e5:42:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOnZA6TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTE1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDNkZDhlY2UyOGIz
NmRlYjU1NjIwZWEyOTNhMDQ3YmI0OWNmYTFhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDEJs4CaLNKzBGdgFGjfurhSChzMQS50aDRkmT4UOIeohHk
v+zx+fSxNPPUHbgS7KXpPSC9SAkrLwaB0KoLcpdOiHlhwvCmOWGG7PLjtY7y6i+g
rd46J8QJUdtHzAg9k0E6RdWgSHLYE3AUQjAdHESUP4QVBqFXu4j2W+cvm0TUW9oe
NQqnqFPC+H6LuHsjVPBbbkbeO4LpZMbitQmNHFeIW+yx31U+dI7yB+fspOFJg/sF
PJxAHdJndZvYPcHiceg+BhRu8V+yJILr410teTCGSJHjZXGGHAoc8DG9Za3W3pbG
fQK1f2kWXyCTlXjBsR+CwwgcSxN4BjjrVD8f9ycCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQD3Y7OKLNt61ViDqKToEe7Sc+hpjAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
L0E5Mk96aWl6YmV0VllnNmlrNkJIdTBuUG9hWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEPnTANBgkqhkiG9w0BAQsFAAOC
AQEAWvC+JgOAzIMglYa7M1yA3enqBXY2G9Pvjr6PvBnLmI7b7zBYoRPIZ0VqcX7h
Ngyqs4YK4EVkxfQzm98bBMosKEA0Iyetb3rGuyxwzl4NWLjqgXCurPS13PBjWdo9
XBsUS2lSHhyPP2B1Yqc7RpBT5P5m+yrqFqgNP44euDyYz3K2zI1xPrKJLzEcip92
wWTAg6XtV2cKhbVSUJwrD+khE3KQbafXkOv9ArqC+59jMxC1b71NgQ/Pw4ahJJI0
SjEkQqpM8i7zJuFBSLXjkeLr4g5Jlvypyiq4Gug7vzwki218iBabnrH82/03RiJO
nAPPR0h6Rjv27oXDfUNPleVCMw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org