Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6OjJVPlogLR7w7jYa40SK37ht8I.roa
File: 6OjJVPlogLR7w7jYa40SK37ht8I.roa (raw, json)
Hash identifier: L6+rUPfRVJM0v2Cyxk9u4xzFXrgsFH9FVHgvg5krhYE=
Subject key identifier: E8:E8:C9:54:F9:68:80:B4:7B:C3:B8:D8:6B:8D:12:2B:7E:E1:B7:C2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01855E8BDDE0360A3D12E79332731A88374D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6OjJVPlogLR7w7jYa40SK37ht8I.roa
Signing time: Thu 29 Dec 2022 15:41:42 +0000
ROA not before: Thu 29 Dec 2022 15:41:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 163.5.79.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5e:8b:dd:e0:36:0a:3d:12:e7:93:32:73:1a:88:37:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 29 15:41:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8e8c954f96880b47bc3b8d86b8d122b7ee1b7c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:52:a6:2b:60:35:68:64:25:35:18:c1:c6:
6e:5a:23:f4:3a:84:27:16:dc:34:ce:ef:49:55:d0:
c7:ba:86:5d:db:bc:c4:90:37:1d:1b:4b:af:0c:2c:
8f:20:46:8d:df:30:72:f0:1c:43:18:bc:92:20:c0:
26:db:15:ce:e2:fd:41:32:88:c6:37:4c:b6:1b:7f:
f1:c7:ae:d0:a2:bd:da:a5:78:c7:6d:18:ff:9a:03:
98:22:93:f7:34:b7:ec:ea:76:42:e3:f7:d3:ec:39:
7e:5b:2a:98:8f:2e:76:9b:77:d7:42:00:af:62:98:
b9:f3:07:0d:10:c5:90:07:02:ad:bf:42:f8:ba:63:
76:f5:69:de:10:b4:50:25:1a:d7:c1:af:4d:52:a2:
57:0b:86:05:ab:6d:a4:fc:5b:cf:38:1c:93:62:e4:
23:52:44:56:45:61:ac:36:90:af:70:28:e4:69:31:
6e:d2:6f:76:53:74:85:1a:91:d0:fe:f7:45:90:e3:
8e:5b:8a:76:12:cd:d9:bc:f8:1b:b5:05:58:bd:06:
37:2f:fb:e3:b7:f5:3f:98:62:a3:fa:fb:27:9e:cc:
4e:f7:66:a1:38:38:dc:a1:09:b7:ea:5d:56:c7:bd:
5b:08:8c:ea:4f:64:0b:71:16:ae:73:66:3f:d0:d6:
c6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E8:C9:54:F9:68:80:B4:7B:C3:B8:D8:6B:8D:12:2B:7E:E1:B7:C2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6OjJVPlogLR7w7jYa40SK37ht8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.79.0/24
163.5.134.0/24
163.5.223.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ad:fb:75:49:7e:54:4b:3c:04:b0:ef:cc:88:13:85:02:e8:
9f:bf:3e:f7:fa:72:4f:e0:cc:f7:a0:e5:58:b7:b1:ab:99:35:
97:98:0a:ae:e6:ed:60:da:6d:ca:b4:f6:4f:7c:6f:b0:ff:86:
2a:56:54:1b:4a:59:c0:d2:ae:f1:57:e8:ad:61:d9:0c:f7:4b:
fa:57:f1:d9:43:86:88:07:59:8d:4d:0d:ab:26:bc:b3:38:cb:
dc:15:cd:32:7c:8e:cc:c8:90:e7:c2:e2:76:e6:09:4e:7b:5e:
7f:62:08:b1:86:2a:28:0b:84:a8:69:13:da:76:27:27:60:ce:
56:71:68:b5:f4:07:a3:a2:62:34:cb:a9:a4:92:c9:3d:f5:41:
49:0e:1d:e0:1b:07:6d:e0:8f:dd:aa:3c:12:49:0b:30:9a:3d:
90:42:46:62:51:49:32:4c:8a:76:09:a1:88:1d:53:f9:a0:f5:
b2:18:77:ca:0e:14:29:10:d5:3f:ec:1f:be:c3:cf:49:bd:f5:
59:ca:36:4c:d3:d4:e9:0f:bf:08:01:46:47:10:cf:68:3a:ec:
3e:00:7b:a9:83:41:14:df:f1:c4:e3:86:df:fa:ba:2c:51:a5:
bc:91:1c:22:07:99:35:6d:6c:b2:8e:1e:aa:56:49:4f:0f:08:
8d:aa:02:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:03 2024 by rpki-client on console-fra.rpki-client.org