Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0bt7VRZqEqmWxCa8aieefXbVYeI.roa
File: 0bt7VRZqEqmWxCa8aieefXbVYeI.roa (raw, json)
Hash identifier: sTmuitlcOM2/mzM79r2MqPH4wpUZbO+sdYSkdvKv0b4=
Subject key identifier: D1:BB:7B:55:16:6A:12:A9:96:C4:26:BC:6A:27:9E:7D:76:D5:61:E2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184E26267C6E628337F8DD7663C42215812
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0bt7VRZqEqmWxCa8aieefXbVYeI.roa
Signing time: Mon 05 Dec 2022 13:03:30 +0000
ROA not before: Mon 05 Dec 2022 13:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 163.5.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:62:67:c6:e6:28:33:7f:8d:d7:66:3c:42:21:58:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 5 13:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1bb7b55166a12a996c426bc6a279e7d76d561e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:bf:47:4e:17:d7:81:d1:86:29:e7:54:b3:
74:44:1a:5e:eb:c4:58:7c:44:3d:ec:f4:6f:df:11:
e1:88:fa:4c:51:45:c9:84:c1:0f:cc:69:68:28:17:
ea:15:95:c2:c1:b1:9d:1e:86:62:6c:6c:95:09:f6:
bd:4d:b7:4d:cc:9d:71:fe:18:6b:80:d5:b7:7f:18:
c6:fa:09:04:47:a6:07:1a:6c:d5:79:fd:2a:31:3e:
df:39:0f:f0:48:cf:b6:23:a6:a9:24:d4:97:15:98:
2d:a6:79:cc:f4:97:8c:60:e1:d4:0a:7c:f5:3a:27:
6f:ee:47:92:d5:bc:08:cf:70:a5:20:2a:21:02:8a:
30:0c:a9:24:3d:c6:9a:95:ee:e4:ff:a8:61:ed:dc:
04:16:4a:d8:5e:ff:07:af:4f:88:3d:46:06:8a:14:
f3:bc:97:b3:e7:93:42:f8:bc:ad:6b:fe:0e:54:0c:
14:57:b2:48:61:b9:d9:aa:ff:3f:39:ce:52:71:a5:
e4:52:ec:8c:60:60:db:47:b1:02:5f:38:04:11:f9:
b0:3f:b3:b7:8d:3c:38:d3:e9:2f:24:63:13:f6:57:
7a:b2:b3:44:c5:51:16:ec:8c:a1:ce:4b:24:b2:94:
ce:df:b8:ff:61:64:bb:46:19:5d:0a:86:88:6a:1a:
9f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BB:7B:55:16:6A:12:A9:96:C4:26:BC:6A:27:9E:7D:76:D5:61:E2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0bt7VRZqEqmWxCa8aieefXbVYeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.218.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:75:66:0e:69:ea:e1:b8:26:ba:fa:61:f9:e3:0a:df:49:66:
2a:1a:42:02:b0:fe:f0:0b:fb:0a:8c:25:e5:b6:1b:4b:65:61:
08:f4:be:a2:cf:d3:1b:dc:bb:16:1d:b2:6b:b0:2e:52:83:29:
63:cf:af:63:b8:1d:06:71:83:fb:d0:72:26:08:01:ef:03:07:
dd:6c:9c:86:73:5d:a5:da:2d:fd:cd:14:13:ba:5c:aa:ff:72:
34:f9:b2:1a:20:a6:53:f7:1d:85:e9:2c:c0:9e:cc:3d:43:72:
f6:ab:aa:da:ae:87:12:54:a9:5c:f3:ee:4b:26:36:9b:7a:85:
15:12:f0:10:ae:bf:53:01:17:f4:99:d3:2f:67:e4:99:a3:eb:
f7:f1:3b:e2:05:12:82:9c:c0:2f:4e:b8:bc:fe:c8:41:b5:05:
8f:ac:47:b2:7a:54:d5:8d:f1:36:81:33:d1:5c:c3:a1:cb:59:
83:3c:5e:b8:6c:d8:fc:fe:38:a7:eb:eb:bf:6c:44:9c:1d:83:
51:5e:a1:60:27:69:7b:4c:97:cd:08:3d:f7:32:29:3b:2e:14:
06:55:7f:d8:32:5d:5c:1e:73:7b:80:99:e6:1d:97:44:93:68:
b6:d3:5b:29:f6:fe:2f:65:76:d2:3f:c0:bd:46:8e:ea:6d:4b:
fd:eb:6b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org