Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9v3GSqv1HtoBIKTUj7cWz1gOKsU.roa
File: 9v3GSqv1HtoBIKTUj7cWz1gOKsU.roa (raw, json)
Hash identifier: jaMMi+cOgeABNQaqiNw5/jI96nPBSqWj0tktAZtjUNE=
Subject key identifier: F6:FD:C6:4A:AB:F5:1E:DA:01:20:A4:D4:8F:B7:16:CF:58:0E:2A:C5
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183C7F1D295A259F41BFF4B53DD47E59D74
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9v3GSqv1HtoBIKTUj7cWz1gOKsU.roa
Signing time: Tue 11 Oct 2022 16:47:37 +0000
ROA not before: Tue 11 Oct 2022 16:47:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 163.5.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:f1:d2:95:a2:59:f4:1b:ff:4b:53:dd:47:e5:9d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 11 16:47:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6fdc64aabf51eda0120a4d48fb716cf580e2ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:01:45:ea:c6:2b:da:46:17:89:d2:ab:60:11:
40:20:c7:9d:04:56:77:68:fd:15:71:3f:c0:8b:64:
9c:86:2e:98:12:1e:c3:0a:06:db:5a:28:60:d3:3d:
aa:46:52:69:76:16:0a:02:1b:6c:77:a5:c7:6a:97:
51:22:f2:4e:c5:1d:55:c4:3f:12:de:d2:ac:24:fb:
44:f8:94:b4:e6:e9:09:d3:42:41:81:30:2f:e4:74:
64:2b:8c:b1:28:3f:61:05:d4:72:59:58:8d:ba:69:
32:71:26:56:9c:79:5c:7c:ed:d7:7c:d1:48:40:00:
30:b8:80:36:d5:e4:1f:16:74:dc:dd:20:93:da:f4:
10:ac:4e:1d:1c:27:a2:50:85:c1:46:d3:a8:ea:f2:
ec:18:f4:f4:6d:1a:45:6a:3e:57:0c:84:d8:ae:ef:
2f:fc:b3:76:ca:3a:c3:ce:57:4a:fc:5f:a1:cd:e0:
c1:22:72:d7:9a:7d:6e:1b:5d:47:2c:07:2b:89:cf:
73:86:05:ad:fa:96:1d:8e:e8:d0:bd:c4:20:eb:93:
ff:d3:cb:59:71:f3:2e:37:ff:9f:12:be:33:a4:34:
05:0c:74:7e:b9:3a:c4:ff:45:8b:c9:ea:29:78:12:
fa:33:b5:7f:cb:b5:8e:e7:cb:c3:88:d5:34:a1:be:
d1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FD:C6:4A:AB:F5:1E:DA:01:20:A4:D4:8F:B7:16:CF:58:0E:2A:C5
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/9v3GSqv1HtoBIKTUj7cWz1gOKsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.79.0/24
Signature Algorithm: sha256WithRSAEncryption
40:09:ec:df:b7:dd:93:68:f0:35:e7:f6:7f:91:fd:ba:2a:10:
13:83:56:0f:be:37:5f:bd:ec:98:1f:b0:70:ca:e9:c5:ce:a0:
f8:11:46:8a:0b:25:6c:a6:10:42:87:15:b1:0b:9b:25:ec:8d:
6f:73:93:1f:5b:51:a0:dc:f8:4e:31:f3:3b:d0:59:90:0d:e8:
29:22:a9:b0:da:64:9e:9a:5f:d1:88:c3:e6:b2:6d:36:86:2f:
52:97:86:be:6b:da:07:35:67:20:3e:e5:d5:ea:82:70:7e:28:
a1:28:53:83:07:10:64:e1:c9:93:9e:b7:96:5b:27:8f:94:94:
9d:e2:a0:28:3d:bc:bb:cb:08:4c:16:de:91:4a:4c:43:c3:d6:
fe:4f:14:53:10:16:9b:11:3c:ca:a3:21:c2:1d:af:ae:7c:07:
53:a1:46:0a:5d:e0:77:03:24:05:d2:b6:f7:4a:aa:14:8e:8a:
7f:61:99:3d:d3:fb:89:f9:51:4c:88:05:46:b7:15:b5:f5:85:
b2:70:da:32:34:9d:99:f8:e5:a7:d1:63:1e:fa:d0:f9:61:38:
7b:dd:31:5c:f7:e5:e7:1a:d7:7d:a4:b7:2e:8f:60:80:0c:12:
98:60:e5:28:00:fa:75:ab:39:34:e7:33:9d:02:c4:b4:99:7a:
db:f3:c2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:29 2024 by rpki-client on console-ams.rpki-client.org