Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/740447oRY3NprKreP9Gd5UUekMw.roa
File: 740447oRY3NprKreP9Gd5UUekMw.roa (raw, json)
Hash identifier: i3kWFemkIM1SFN76NB1RXgUk92CWv5nGHnlpEbieaAA=
Subject key identifier: EF:8D:38:E3:BA:11:63:73:69:AC:AA:DE:3F:D1:9D:E5:45:1E:90:CC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184396555016694A9FEEB175037A2433BE4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/740447oRY3NprKreP9Gd5UUekMw.roa
Signing time: Wed 02 Nov 2022 17:30:52 +0000
ROA not before: Wed 02 Nov 2022 17:30:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 163.5.121.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:65:55:01:66:94:a9:fe:eb:17:50:37:a2:43:3b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 2 17:30:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef8d38e3ba11637369acaade3fd19de5451e90cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d1:e1:ff:ea:0b:33:ae:c1:18:48:c4:95:75:
fa:70:bc:b8:e5:88:e2:93:d3:36:29:09:cc:81:e1:
bb:03:0a:95:cc:9e:af:b2:07:ff:67:52:0c:79:17:
da:ad:f9:51:91:df:60:c1:17:f3:70:f0:d7:2e:37:
38:ca:c4:6b:37:a6:c4:06:d0:21:5a:a8:8e:9a:1a:
d1:15:8a:d8:4d:f8:9d:0b:6a:57:65:09:e5:0a:08:
32:ba:55:61:6f:df:79:32:41:c8:0a:31:97:f1:10:
62:62:59:9a:30:34:c7:c7:59:73:fd:00:31:76:53:
d2:61:a5:3c:f6:00:b6:f0:66:b9:71:00:7b:b0:16:
f5:b2:fb:c3:ea:f4:0d:a3:e5:5f:90:77:3c:a0:78:
2e:a2:43:ba:62:b6:f2:cb:5e:35:c5:7c:48:d8:7b:
1b:94:12:70:34:1e:1f:e4:04:63:9c:49:f9:77:03:
71:1b:01:18:61:5b:08:2e:72:3f:32:39:ab:7e:cb:
69:ff:2a:56:49:48:ea:7c:ee:a1:15:5d:af:bc:e6:
72:f2:89:ea:04:24:15:4a:7c:b0:17:b3:31:45:14:
9f:52:7b:4d:60:c3:4a:77:e1:51:a2:f0:9a:c1:3f:
d2:7d:1a:81:ac:89:2f:47:76:79:33:be:b0:f6:a9:
e3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8D:38:E3:BA:11:63:73:69:AC:AA:DE:3F:D1:9D:E5:45:1E:90:CC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/740447oRY3NprKreP9Gd5UUekMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.121.0/24
163.5.144.0/24
163.5.168.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:69:61:e7:53:21:cb:b1:9c:89:da:d2:3e:0c:cc:85:c9:58:
16:74:33:43:b0:58:01:a3:5a:92:cf:d1:2e:62:21:91:6d:96:
5a:36:ff:aa:26:cd:e3:a8:7f:66:78:52:64:0f:cf:9d:58:e1:
c1:91:e2:96:74:28:07:9a:17:db:bb:bf:87:03:49:0b:9a:fb:
cc:0c:ef:6d:10:e7:04:dc:bf:3a:9c:be:9c:05:8e:51:2d:14:
cc:b8:5d:ab:71:3d:fa:36:19:bf:f8:d5:f1:b7:62:23:9f:26:
9d:fc:a1:83:94:07:ca:60:b9:b7:b4:d1:b2:1f:68:5d:f7:47:
65:a7:cf:0a:ce:c3:e0:54:b5:bc:a0:6f:50:91:66:21:c9:b1:
f5:6b:b1:61:e0:b4:28:77:30:cb:1f:f3:cf:9e:8b:13:09:1c:
a9:3e:47:5f:93:db:36:2b:ec:d8:f6:76:cf:5a:d7:f0:42:54:
b6:20:6b:36:c4:c1:fc:ac:b9:ea:97:40:ef:f6:47:43:76:61:
10:16:35:76:fb:bd:ab:a8:45:d4:4c:eb:ee:22:e4:4d:26:91:
cf:12:32:89:d6:41:0e:97:2a:50:af:3d:0b:42:4a:47:b6:cc:
05:d3:8b:16:e3:2e:68:04:af:2a:20:46:7e:88:fe:00:ec:a8:
10:95:78:92
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYQ5ZVUBZpSp/usXUDeiQzvkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMTAyMTczMDUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjhkMzhlM2JhMTE2MzczNjlhY2FhZGUzZmQxOWRlNTQ1MWU5MGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9Hh/+oLM67BGEjElXX6cLy45Yji
k9M2KQnMgeG7AwqVzJ6vsgf/Z1IMeRfarflRkd9gwRfzcPDXLjc4ysRrN6bEBtAh
WqiOmhrRFYrYTfidC2pXZQnlCggyulVhb995MkHICjGX8RBiYlmaMDTHx1lz/QAx
dlPSYaU89gC28Ga5cQB7sBb1svvD6vQNo+VfkHc8oHguokO6Yrbyy141xXxI2Hsb
lBJwNB4f5ARjnEn5dwNxGwEYYVsILnI/Mjmrfstp/ypWSUjqfO6hFV2vvOZy8onq
BCQVSnywF7MxRRSfUntNYMNKd+FRovCawT/SfRqBrIkvR3Z5M76w9qnjUwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO+NOOO6EWNzaayq3j/RneVFHpDMMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvNzQwNDQ3b1JZM05wcktyZVA5R2Q1VVVla013LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAowV5AwQA
owWQAwQAowWoMA0GCSqGSIb3DQEBCwUAA4IBAQCzaWHnUyHLsZyJ2tI+DMyFyVgW
dDNDsFgBo1qSz9EuYiGRbZZaNv+qJs3jqH9meFJkD8+dWOHBkeKWdCgHmhfbu7+H
A0kLmvvMDO9tEOcE3L86nL6cBY5RLRTMuF2rcT36Nhm/+NXxt2Ijnyad/KGDlAfK
YLm3tNGyH2hd90dlp88KzsPgVLW8oG9QkWYhybH1a7Fh4LQodzDLH/PPnosTCRyp
Pkdfk9s2K+zY9nbPWtfwQlS2IGs2xMH8rLnql0Dv9kdDdmEQFjV2+72rqEXUTOvu
IuRNJpHPEjKJ1kEOlypQrz0LQkpHtswF04sW4y5oBK8qIEZ+iP4A7KgQlXiS
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org