Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-dYe1ghKKJThHARmrVfEknbq0PY.roa
File: 1-dYe1ghKKJThHARmrVfEknbq0PY.roa (raw, json)
Hash identifier: XyUiLK6p/lRs9yJZAeT1zIRr7BHI459ZWN6sWqFXvfA=
Subject key identifier: F9:D6:1E:D6:08:4A:28:94:E1:1C:04:66:AD:57:C4:92:76:EA:D0:F6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01841D820594B91F5CA65493586F7DABF8E7
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-dYe1ghKKJThHARmrVfEknbq0PY.roa
Signing time: Fri 28 Oct 2022 07:32:51 +0000
ROA not before: Fri 28 Oct 2022 07:32:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43043
IP address blocks: 163.5.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:82:05:94:b9:1f:5c:a6:54:93:58:6f:7d:ab:f8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 28 07:32:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9d61ed6084a2894e11c0466ad57c49276ead0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:90:d4:52:83:47:53:80:2b:46:b4:9d:71:19:
df:75:15:cf:64:fe:16:5a:74:37:41:f2:a0:59:97:
5b:a4:6c:ce:9c:5b:0c:90:0d:90:b5:af:ba:6c:7c:
3f:16:39:d9:bc:5d:6f:d4:dc:74:d0:54:53:b7:30:
e4:47:18:fb:de:d3:96:3f:7f:f7:9b:fd:1c:0e:02:
9e:6d:72:83:df:ad:ae:ed:98:54:96:4d:76:09:39:
08:36:7e:49:de:b0:9e:ac:31:5e:09:04:43:ae:be:
5b:9e:bf:61:60:63:95:d8:a4:94:0d:dd:03:5f:9f:
83:e3:6c:48:32:7a:43:a0:c9:ce:04:26:60:7f:f2:
42:c6:69:15:f9:98:ff:0b:5a:3e:78:b6:f2:6b:ba:
ac:e1:37:c2:14:ea:c5:71:9f:0a:af:8e:00:5d:5e:
02:2c:fb:4d:c1:25:3e:22:25:7f:58:76:d7:5a:6f:
c8:29:ae:8d:4a:be:86:c5:79:62:6a:e4:58:1b:8c:
a1:8f:50:c7:40:0c:bd:3b:bd:73:38:e4:a8:f7:1e:
0c:a9:11:cc:4e:4c:64:a0:ba:36:61:71:c2:83:fe:
1f:57:11:4a:f3:31:74:a7:b8:2a:f1:e2:c8:60:70:
1b:24:f0:fc:5e:64:ad:d7:13:71:e5:a6:b9:56:64:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D6:1E:D6:08:4A:28:94:E1:1C:04:66:AD:57:C4:92:76:EA:D0:F6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/1-dYe1ghKKJThHARmrVfEknbq0PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:10:86:d4:e9:66:d2:c2:54:9e:a0:1d:05:c2:d2:d3:25:3f:
56:e6:4e:e7:3c:32:22:dc:e7:7c:a5:7c:f1:8e:21:7e:79:06:
45:ce:15:be:27:06:ad:53:6d:9e:02:82:6f:2c:97:c4:98:9f:
3a:67:19:a4:17:97:b5:17:27:9e:b6:4c:f2:de:f5:31:a8:67:
f7:3a:d3:d8:36:ce:36:ad:f4:28:12:c9:3a:1c:88:d8:e5:96:
9d:3b:fc:0b:e9:2d:25:18:9f:4a:1d:1e:3f:02:d9:18:d0:f0:
08:32:b4:d1:06:34:dd:9a:27:0b:82:74:50:6a:aa:00:cf:5b:
99:fb:3c:38:55:14:7d:b2:ef:5f:0b:6f:e9:4c:cf:2d:9f:44:
7c:26:9f:4c:95:39:8e:01:64:1c:a8:49:83:92:91:f3:b3:04:
34:c8:04:63:94:5a:69:8d:c4:92:2c:1c:03:ea:7d:37:fe:7b:
f8:03:0d:2c:f9:4a:e5:14:f8:bc:6a:57:8b:d2:65:f9:1c:88:
87:bc:a1:06:f9:59:80:df:13:b5:d3:de:17:4c:46:27:87:85:
2f:59:57:87:8b:5b:ab:d1:d3:4a:b4:6d:7f:18:49:ba:79:27:
61:dc:b3:d4:cb:b6:db:fa:e1:c4:ec:05:45:11:37:63:61:ab:
73:00:a3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org