Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wVVFtXqs9-uB4T64HfXNbWz8Jw.roa
File: 6wVVFtXqs9-uB4T64HfXNbWz8Jw.roa (raw, json)
Hash identifier: gqe9zaFY1TG/sgARx6DdIZOfTx7lM+ksSp91ZVufoCk=
Subject key identifier: EB:05:55:16:D5:EA:B3:DF:AE:07:84:FA:E0:77:D7:35:B5:B3:F0:9C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0181DAB32FBF2DA1562F2C3CBEC08D3FB2FF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wVVFtXqs9-uB4T64HfXNbWz8Jw.roa
Signing time: Thu 07 Jul 2022 22:06:25 +0000
ROA not before: Thu 07 Jul 2022 22:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 163.5.125.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:da:b3:2f:bf:2d:a1:56:2f:2c:3c:be:c0:8d:3f:b2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 7 22:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb055516d5eab3dfae0784fae077d735b5b3f09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b5:74:b3:00:3b:e9:0c:82:36:6d:82:89:89:
0e:6f:9a:27:98:84:12:8e:ad:62:8d:c6:96:ff:36:
8b:30:09:63:57:03:88:21:76:1d:ef:1b:ed:6a:40:
0d:5c:fc:2c:b2:75:bf:8e:dc:e0:db:30:29:bf:54:
b8:96:80:03:7e:8e:cf:a2:e2:18:d0:46:73:a0:6d:
2f:59:3b:4b:ff:38:84:1d:c9:8e:df:94:f2:93:b1:
c0:57:ec:5f:5c:84:72:76:c8:5c:6a:5f:8c:40:c9:
fe:9a:14:f3:dd:79:38:07:de:dc:75:31:4f:d7:2d:
d0:40:2e:6b:41:57:39:b3:ae:21:dd:24:b0:d8:36:
04:af:9a:95:77:01:2e:bb:24:e5:26:95:c5:ac:62:
d2:3f:0a:76:42:cf:ed:4b:8c:16:13:2b:c9:84:37:
d5:d9:41:f6:f5:f4:fd:c0:bb:af:93:97:eb:20:39:
3a:a2:54:63:ee:5f:69:45:fd:45:5c:40:80:18:28:
88:9e:c0:1f:5f:9b:90:d0:40:13:1c:f8:a7:38:c1:
e4:c1:9b:db:4b:88:d0:f7:fc:0f:42:df:2a:8a:5b:
32:32:4f:99:8e:a2:0b:0d:19:c0:ea:34:6f:41:83:
9a:9e:22:53:60:22:d0:97:eb:05:ae:56:ed:3c:d8:
03:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:05:55:16:D5:EA:B3:DF:AE:07:84:FA:E0:77:D7:35:B5:B3:F0:9C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wVVFtXqs9-uB4T64HfXNbWz8Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.125.0/24
163.5.147.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a9:7d:3b:a1:e7:eb:4b:84:09:22:7e:78:35:cb:8e:ee:17:
55:b1:6d:27:0b:52:e1:ed:9f:3d:90:46:34:0e:fb:ad:e0:27:
7b:d7:75:a0:8b:6a:8f:64:dd:4d:57:24:b1:14:9a:f8:06:b6:
1c:51:d5:13:f7:89:33:eb:24:42:60:17:24:69:77:d9:4c:18:
78:d0:7c:de:fc:dc:6b:7c:35:b6:16:67:c5:11:a2:da:e9:ee:
ec:98:08:34:72:d6:ea:11:0b:c2:66:35:08:36:26:a7:c9:38:
80:9a:92:b2:65:59:0e:06:43:ee:f6:86:98:8a:8b:69:ee:78:
48:ee:32:cc:0b:8f:0a:72:9e:73:63:f1:b6:d0:f2:a7:ce:59:
db:f8:16:38:47:62:5a:13:f6:1a:40:1a:00:c9:cd:59:cf:e8:
39:20:78:87:11:4a:28:8e:55:49:1d:c1:42:33:34:2b:4a:67:
89:fc:1b:9c:92:58:27:7a:9b:2d:7c:bb:cb:5a:48:e3:92:c6:
84:33:a2:75:d9:74:ef:d2:39:d9:59:45:e0:4c:c8:52:89:89:
f8:a5:06:03:9e:c8:32:73:d3:1b:ee:2c:6a:f4:16:2a:cb:31:
e9:3f:89:3a:43:9c:51:95:a1:f2:2e:58:b2:91:2a:3f:4a:d7:
60:ce:16:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org