Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4Jb0J_Rwapf8brNmVrfB98Ygrso.roa
File: 4Jb0J_Rwapf8brNmVrfB98Ygrso.roa (raw, json)
Hash identifier: VGqc3Z7tgHrBsNyAWMdfE0SmWxgbRow2njDcVzuau5s=
Subject key identifier: E0:96:F4:27:F4:70:6A:97:FC:6E:B3:66:56:B7:C1:F7:C6:20:AE:CA
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183AED2CB95D36260150F11629205696898
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4Jb0J_Rwapf8brNmVrfB98Ygrso.roa
Signing time: Thu 06 Oct 2022 19:43:13 +0000
ROA not before: Thu 06 Oct 2022 19:43:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 163.5.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ae:d2:cb:95:d3:62:60:15:0f:11:62:92:05:69:68:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 6 19:43:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e096f427f4706a97fc6eb36656b7c1f7c620aeca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f3:f6:9a:44:30:8d:e2:de:f3:4f:12:04:f3:
09:43:d4:1f:87:e7:8d:ff:83:f6:4c:c0:c7:d9:6e:
3f:92:96:15:92:66:53:2d:67:82:5c:62:1a:95:ea:
14:94:d2:26:e1:43:7d:bc:cf:43:94:03:f0:ed:1c:
32:e3:7f:d2:d4:1c:cd:b4:c0:3a:98:e5:23:fc:4e:
88:68:c5:8b:1c:d7:e1:21:95:7a:a1:fa:4f:61:3e:
21:7c:04:71:46:60:d4:03:20:5f:58:38:4e:2b:59:
fc:bf:dc:0c:97:fd:48:de:e3:51:59:c5:de:a2:98:
cc:f0:3d:10:e5:1c:9e:6d:8d:cd:1e:35:73:fb:7a:
d9:34:3f:a4:65:57:58:ed:a3:d1:84:59:d4:da:00:
1d:44:10:79:f4:4c:13:f2:b9:15:21:4a:c3:e5:66:
8d:04:68:1d:37:dd:9e:0f:25:2d:d8:27:fc:65:ab:
5f:32:5d:76:d0:a5:26:40:1f:42:43:10:b7:7c:b5:
b9:69:0b:c4:73:ae:fe:f6:cd:aa:30:ee:24:9f:45:
60:f9:0b:3f:6c:72:0b:4a:9e:b2:d8:7d:e9:db:7a:
e9:a3:7e:40:6b:70:c7:06:92:6d:19:b8:40:a5:34:
11:22:6c:9e:38:72:fc:00:37:9f:6a:40:3d:c8:da:
6d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:96:F4:27:F4:70:6A:97:FC:6E:B3:66:56:B7:C1:F7:C6:20:AE:CA
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/4Jb0J_Rwapf8brNmVrfB98Ygrso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.36.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:fb:d8:72:4a:1e:d3:b6:3a:2c:c6:de:39:e2:47:da:02:b9:
6f:c0:57:0f:18:70:91:ac:28:e0:18:68:7c:96:0c:29:89:03:
b2:03:87:b6:81:e1:13:95:bd:f9:1a:ef:65:02:e1:b2:9f:09:
33:38:82:70:bf:db:47:6d:c4:19:91:21:9f:04:2a:bf:d1:1f:
50:5b:e3:40:e4:6d:66:83:8e:60:8d:92:19:ec:18:bb:b4:96:
76:9d:02:7a:db:02:ef:18:a7:1d:8a:30:d4:19:92:a3:4a:8a:
4f:48:6a:a6:31:65:63:69:b3:09:8d:51:04:00:41:d8:9f:15:
52:58:91:7f:83:a1:18:18:3a:8e:7e:f2:b2:ef:3a:e9:bc:85:
50:f6:78:cd:9b:77:48:7d:79:86:79:cc:40:10:fe:fa:eb:60:
2a:fe:51:89:e6:ba:90:20:cc:0f:8c:4d:8c:c8:bf:00:47:e1:
8c:c2:bc:c7:52:b5:72:1f:35:75:d4:e1:f5:d1:69:5c:3a:5a:
b9:88:c2:15:6c:cf:a8:05:66:b1:be:a4:79:40:fd:bc:10:44:
3b:dd:ba:28:e4:8c:d0:26:be:bd:e5:7a:71:4f:44:ff:77:5d:
a1:18:1b:55:c3:bc:d9:74:40:b5:9c:39:3e:18:30:ac:45:fc:
91:e3:68:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org