Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A4sUErV0vy1mICcgql-2IBU4qaQ.roa
File: A4sUErV0vy1mICcgql-2IBU4qaQ.roa (raw, json)
Hash identifier: L2Ztm3Q5yULE0CV0x64tjo73UYw7YF9EBaxoNhlnNCc=
Subject key identifier: 03:8B:14:12:B5:74:BF:2D:66:20:27:20:AA:5F:B6:20:15:38:A9:A4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182394471E6B5F41BDB7B59F30990F6BFA8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A4sUErV0vy1mICcgql-2IBU4qaQ.roa
Signing time: Tue 26 Jul 2022 06:49:23 +0000
ROA not before: Tue 26 Jul 2022 06:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 163.5.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:39:44:71:e6:b5:f4:1b:db:7b:59:f3:09:90:f6:bf:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 26 06:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=038b1412b574bf2d66202720aa5fb6201538a9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:45:e4:2c:c8:29:28:b9:f3:3d:5e:c0:e0:37:
3d:c6:e7:31:45:1d:93:41:16:29:29:9d:1f:0b:41:
b9:01:99:a5:cd:72:70:60:f4:1c:c9:e2:94:45:cd:
cd:1c:c7:47:f1:9a:9e:d5:3d:79:9f:f4:d1:bb:90:
74:fd:b7:0f:55:1d:cf:76:01:ea:c1:22:06:f4:9f:
03:50:49:9f:15:54:8a:55:83:cf:4c:e8:f6:8c:f3:
84:05:ef:d3:48:0c:b9:c0:55:06:d7:44:11:97:8a:
6d:9d:8a:a1:36:a9:54:4c:8c:b6:00:e6:c8:9c:5b:
2d:ba:2d:32:28:f6:f1:e9:d3:79:3a:52:59:c5:e4:
59:89:66:fd:7b:d8:e3:22:f8:0a:39:6e:f4:f9:40:
39:cb:b9:0b:c7:ed:25:da:4d:1c:38:07:33:5c:58:
d0:12:fc:d4:17:3c:c6:fe:6f:2b:86:08:d1:7c:c1:
a0:ea:29:1f:3d:8c:86:0f:e1:0d:a7:b0:5c:d2:66:
69:d1:66:da:1b:c8:24:34:00:f2:83:23:73:53:25:
82:93:c0:79:c3:6a:42:f9:b1:db:b3:d9:d6:23:05:
45:de:9b:53:f5:11:ae:ad:71:d5:cd:d0:ae:16:7f:
a0:1f:25:7b:a8:1d:8b:ef:0d:7d:6a:f1:09:5a:fd:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8B:14:12:B5:74:BF:2D:66:20:27:20:AA:5F:B6:20:15:38:A9:A4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A4sUErV0vy1mICcgql-2IBU4qaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.169.0/24
Signature Algorithm: sha256WithRSAEncryption
88:eb:90:64:95:93:40:ce:47:4c:f9:ed:b0:04:9c:c9:55:58:
19:6a:6d:20:82:20:90:04:c8:42:6a:d5:f4:cf:f8:3f:42:15:
83:33:67:63:c9:39:4a:99:56:e8:c1:1f:69:60:64:c8:86:e1:
bc:0b:83:f7:e5:c7:fc:6b:37:12:8c:e4:29:6d:7e:b3:bd:3e:
1c:ef:23:4d:c5:6b:10:32:f2:ad:be:03:98:83:0f:c1:97:e4:
fc:0b:d1:9a:c5:b0:79:39:45:73:7c:11:7f:c3:46:b1:c1:a0:
33:bf:6e:eb:1d:7c:2d:3b:cb:9c:91:67:91:d1:ea:20:6d:8d:
68:29:2e:68:5f:ca:87:32:da:0f:92:73:63:f3:f4:72:22:8e:
98:02:17:b5:b9:a0:75:45:52:48:f6:04:80:13:e3:2c:7c:d6:
ac:56:bc:c4:fc:c0:b5:c2:6b:0b:67:50:e2:e0:ba:64:e1:88:
54:b6:49:2a:66:fc:90:f4:0d:b7:53:71:9d:9e:1d:6d:56:e4:
81:86:2c:22:4f:cb:22:40:fa:88:d4:67:d5:5f:c7:6f:24:b1:
0a:41:ed:c9:9f:53:a9:7e:c0:96:46:3f:9f:05:d7:bb:62:b9:
1c:af:71:eb:db:28:b7:af:a5:15:58:a7:f5:ae:01:aa:19:b4:
54:14:76:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org