Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0_8XK1Vc9cmVsQzDsho8d1Ix5DY.roa
File: 0_8XK1Vc9cmVsQzDsho8d1Ix5DY.roa (raw, json)
Hash identifier: 3NamM+U8T50PNlOZP6nYfnZRKvN54PHBrtTQd4fHUvg=
Subject key identifier: D3:FF:17:2B:55:5C:F5:C9:95:B1:0C:C3:B2:1A:3C:77:52:31:E4:36
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018288736C8AEE727FAD01E8AF8E930BC8A7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0_8XK1Vc9cmVsQzDsho8d1Ix5DY.roa
Signing time: Wed 10 Aug 2022 15:50:41 +0000
ROA not before: Wed 10 Aug 2022 15:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 163.5.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:73:6c:8a:ee:72:7f:ad:01:e8:af:8e:93:0b:c8:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 10 15:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3ff172b555cf5c995b10cc3b21a3c775231e436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:a3:8c:9f:0f:97:29:fc:87:08:0a:f8:96:
ea:33:59:3e:b1:c0:6c:2a:14:00:4e:fa:b6:b0:ab:
71:b6:e9:aa:b9:a2:4a:2c:47:26:81:dd:08:15:7a:
3c:23:0a:c2:aa:65:97:6b:06:8c:79:b9:89:a7:df:
c6:b5:de:7b:12:a9:23:d3:33:5e:78:25:84:c7:a8:
6d:2a:3c:2c:d3:48:e1:89:ba:44:c3:66:37:85:62:
f6:61:72:78:b9:03:d5:ef:45:d5:bd:a1:51:93:33:
09:fd:c8:96:af:d3:cf:f2:ba:47:4f:3f:3d:66:00:
03:8c:e6:cc:6e:05:59:6a:3d:a9:d0:78:97:d0:2d:
bb:0e:03:74:cd:4c:70:57:31:1d:54:f7:15:1d:92:
c4:2e:b7:5a:99:c3:cd:ec:f9:db:4f:72:7a:67:98:
03:49:f0:3b:44:e6:e7:6b:cb:a8:39:8f:93:01:71:
42:5d:43:b3:b3:bd:ba:36:6d:18:35:7a:f3:55:f3:
5e:e2:26:d9:02:c2:2b:36:54:12:db:7b:96:47:25:
f4:e4:b1:80:18:6c:ea:27:74:9b:7c:c2:4a:30:f5:
87:09:72:a3:40:d6:21:73:30:3d:78:85:09:54:04:
ec:37:50:ad:32:df:7a:9a:82:10:d5:72:22:90:ae:
cf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FF:17:2B:55:5C:F5:C9:95:B1:0C:C3:B2:1A:3C:77:52:31:E4:36
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0_8XK1Vc9cmVsQzDsho8d1Ix5DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b4:cd:9b:ee:12:cb:b9:d6:91:c1:4e:16:8f:16:05:a8:87:
ae:40:00:68:98:33:02:71:7b:70:3b:5d:07:ca:95:0e:9b:61:
66:27:75:18:2c:4f:23:15:8b:9e:e5:b3:ef:07:6e:07:13:71:
b9:7e:12:1d:d0:67:ab:77:fd:bc:8a:c6:00:a5:36:56:00:f1:
8b:6f:49:7c:d8:a1:b0:d6:d4:37:59:a4:6a:8e:9e:84:e0:03:
f0:35:59:f4:09:24:08:5f:26:88:93:d8:07:33:ab:30:4f:08:
74:1c:bc:33:e0:86:73:a0:fc:54:c9:05:7e:ff:2d:5a:66:11:
3d:22:5c:c1:0d:4f:d6:c7:d7:3e:0f:63:f8:e3:bb:7a:c3:10:
39:f4:cf:f6:16:f5:13:79:fd:14:d2:91:b3:4d:d5:23:a3:4b:
59:cf:ec:7c:18:c6:d1:f7:49:ce:f8:6f:52:09:7a:67:13:a8:
4d:a7:6f:6a:a1:db:26:73:d4:28:cc:99:13:d6:75:4a:b9:3d:
da:17:8c:79:ea:b4:a0:01:47:08:92:32:57:8d:b9:2e:8f:cc:
af:e2:63:f3:99:6e:d7:2e:dd:c5:4d:0e:10:9b:a4:c3:cf:cc:
58:4b:c1:7c:6e:cc:ff:11:ea:4b:80:e8:f6:95:89:c9:64:df:
4b:f7:9a:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKIc2yK7nJ/rQHor46TC8inMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIwODEwMTU1MDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2ZmMTcyYjU1NWNmNWM5OTViMTBjYzNiMjFhM2M3NzUyMzFlNDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvISjjJ8Plyn8hwgK+JbqM1k+scBs
KhQATvq2sKtxtumquaJKLEcmgd0IFXo8IwrCqmWXawaMebmJp9/Gtd57Eqkj0zNe
eCWEx6htKjws00jhibpEw2Y3hWL2YXJ4uQPV70XVvaFRkzMJ/ciWr9PP8rpHTz89
ZgADjObMbgVZaj2p0HiX0C27DgN0zUxwVzEdVPcVHZLELrdamcPN7PnbT3J6Z5gD
SfA7RObna8uoOY+TAXFCXUOzs726Nm0YNXrzVfNe4ibZAsIrNlQS23uWRyX05LGA
GGzqJ3SbfMJKMPWHCXKjQNYhczA9eIUJVATsN1CtMt96moIQ1XIikK7PBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNP/FytVXPXJlbEMw7IaPHdSMeQ2MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMF84WEsxVmM5Y21Wc1F6RHNobzhkMUl4NURZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXaMA0G
CSqGSIb3DQEBCwUAA4IBAQCptM2b7hLLudaRwU4WjxYFqIeuQABomDMCcXtwO10H
ypUOm2FmJ3UYLE8jFYue5bPvB24HE3G5fhId0Gerd/28isYApTZWAPGLb0l82KGw
1tQ3WaRqjp6E4APwNVn0CSQIXyaIk9gHM6swTwh0HLwz4IZzoPxUyQV+/y1aZhE9
IlzBDU/Wx9c+D2P447t6wxA59M/2FvUTef0U0pGzTdUjo0tZz+x8GMbR90nO+G9S
CXpnE6hNp29qodsmc9QozJkT1nVKuT3aF4x56rSgAUcIkjJXjbkuj8yv4mPzmW7X
Lt3FTQ4Qm6TDz8xYS8F8bsz/EepLgOj2lYnJZN9L95p5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org