Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7WlaFcnyDCxLD9wfkIZ9oGVqXVU.roa
File: 7WlaFcnyDCxLD9wfkIZ9oGVqXVU.roa (raw, json)
Hash identifier: jerVi+2l/9EUQ1o+bkVZdgqD88A4A7vOgqJqBRocstY=
Subject key identifier: ED:69:5A:15:C9:F2:0C:2C:4B:0F:DC:1F:90:86:7D:A0:65:6A:5D:55
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01844C849D47A7F6914FB5DA1FA0948EFD51
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7WlaFcnyDCxLD9wfkIZ9oGVqXVU.roa
Signing time: Sun 06 Nov 2022 10:37:50 +0000
ROA not before: Sun 06 Nov 2022 10:37:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 163.5.109.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4c:84:9d:47:a7:f6:91:4f:b5:da:1f:a0:94:8e:fd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 6 10:37:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed695a15c9f20c2c4b0fdc1f90867da0656a5d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:ad:2c:f4:45:58:9b:b6:38:a0:33:94:42:
ca:70:dc:ad:58:bd:73:e6:8d:c3:10:a1:d9:bb:b0:
7a:41:90:2c:3c:b6:50:06:fd:67:c2:05:cd:5e:fe:
28:53:1d:ec:9a:52:0e:15:c8:f4:c8:a7:b6:1e:87:
14:db:e4:92:8a:4f:33:43:5c:ca:f4:20:35:df:01:
e5:db:b7:60:74:5b:8f:9e:26:dc:98:f3:c0:67:4a:
ac:77:7f:cb:11:a1:9a:b9:11:f8:1c:74:f6:76:95:
11:f9:e9:6e:6f:f7:91:6a:0b:2a:49:0a:4e:d9:2e:
46:22:34:93:c8:2f:c1:b4:ff:49:32:42:9f:ce:15:
78:cf:7f:fe:c4:93:e9:d2:e8:79:80:41:45:fb:74:
06:96:48:9f:74:65:09:c2:c6:36:69:81:a8:63:c7:
0d:da:84:15:82:16:aa:ca:65:05:0d:a3:47:4d:1d:
e6:40:49:fa:ff:6d:de:6f:b9:28:34:e8:e7:a4:df:
e0:d0:43:cc:5e:47:d9:95:a3:c1:69:aa:44:01:92:
90:e1:cc:d5:9a:db:f1:8f:12:84:e4:59:37:65:02:
ff:4a:bb:e5:ef:95:4e:8c:54:9e:4f:eb:00:5a:ce:
a1:94:b5:b8:1e:e6:eb:e6:82:79:14:84:d7:c5:1c:
80:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:69:5A:15:C9:F2:0C:2C:4B:0F:DC:1F:90:86:7D:A0:65:6A:5D:55
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7WlaFcnyDCxLD9wfkIZ9oGVqXVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.109.0/24
163.5.218.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:11:ec:18:46:7d:9e:39:35:3b:ca:e2:ce:a0:6c:53:52:df:
40:52:c1:02:b2:4c:bb:49:ac:d7:aa:ad:de:7c:57:1f:7d:fe:
da:28:67:33:5f:01:51:d4:e4:d7:c8:e4:66:31:62:2a:1c:39:
04:2b:e9:29:8c:c0:13:3e:06:db:f0:40:26:cf:f4:46:44:f4:
80:09:67:06:09:86:82:e4:8a:46:90:4f:27:b8:68:97:d9:9a:
ae:1a:0a:55:7b:a1:6a:41:ab:86:1c:41:cd:d9:f0:38:1c:20:
31:34:63:48:8b:be:1e:b1:09:13:19:07:8f:eb:b8:e9:b2:aa:
c0:aa:0a:d0:52:b7:46:7e:c3:ce:7f:6a:61:4d:7b:2d:b6:be:
f9:2b:29:0d:f1:87:7c:1e:e8:0c:eb:4d:4e:8e:76:2e:ea:17:
5d:3e:d3:b8:e3:34:aa:1e:ee:dd:3e:80:84:52:c4:10:30:4e:
42:44:c6:c9:9e:3f:04:9e:90:1f:d9:14:a1:31:66:9b:24:76:
26:2d:d5:d4:0a:58:5e:a0:ab:88:ab:4d:a9:fd:69:e9:eb:8a:
3b:4f:9c:fe:2e:9c:c3:24:f4:ca:f8:42:90:41:55:a8:1a:d8:
aa:fa:c3:a1:a6:20:0c:31:5f:5b:50:5f:46:66:76:89:82:49:
93:17:b3:ca
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYRMhJ1Hp/aRT7XaH6CUjv1RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMTA2MTAzNzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDY5NWExNWM5ZjIwYzJjNGIwZmRjMWY5MDg2N2RhMDY1NmE1ZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth+tLPRFWJu2OKAzlELKcNytWL1z
5o3DEKHZu7B6QZAsPLZQBv1nwgXNXv4oUx3smlIOFcj0yKe2HocU2+SSik8zQ1zK
9CA13wHl27dgdFuPnibcmPPAZ0qsd3/LEaGauRH4HHT2dpUR+elub/eRagsqSQpO
2S5GIjSTyC/BtP9JMkKfzhV4z3/+xJPp0uh5gEFF+3QGlkifdGUJwsY2aYGoY8cN
2oQVghaqymUFDaNHTR3mQEn6/23eb7koNOjnpN/g0EPMXkfZlaPBaapEAZKQ4czV
mtvxjxKE5Fk3ZQL/Srvl75VOjFSeT+sAWs6hlLW4Hubr5oJ5FITXxRyAPwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFO1pWhXJ8gwsSw/cH5CGfaBlal1VMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvN1dsYUZjbnlEQ3hMRDl3ZmtJWjlvR1ZxWFZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowVtAwQA
owXaMA0GCSqGSIb3DQEBCwUAA4IBAQAKEewYRn2eOTU7yuLOoGxTUt9AUsECsky7
SazXqq3efFcfff7aKGczXwFR1OTXyORmMWIqHDkEK+kpjMATPgbb8EAmz/RGRPSA
CWcGCYaC5IpGkE8nuGiX2ZquGgpVe6FqQauGHEHN2fA4HCAxNGNIi74esQkTGQeP
67jpsqrAqgrQUrdGfsPOf2phTXsttr75KykN8Yd8HugM601OjnYu6hddPtO44zSq
Hu7dPoCEUsQQME5CRMbJnj8EnpAf2RShMWabJHYmLdXUClheoKuIq02p/Wnp64o7
T5z+LpzDJPTK+EKQQVWoGtiq+sOhpiAMMV9bUF9GZnaJgkmTF7PK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:03 2024 by rpki-client on console-fra.rpki-client.org