Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A8W0z8BjdHTo6Lnok_XADOt_ryM.roa
File: A8W0z8BjdHTo6Lnok_XADOt_ryM.roa (raw, json)
Hash identifier: uLNkBl2tPt/B7M3SweuYOyWMneKljzuNH2WsQE3GSiI=
Subject key identifier: 03:C5:B4:CF:C0:63:74:74:E8:E8:B9:E8:93:F5:C0:0C:EB:7F:AF:23
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01837669CD08EEDD29B9CD216F2D1E5F0373
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A8W0z8BjdHTo6Lnok_XADOt_ryM.roa
Signing time: Sun 25 Sep 2022 20:49:48 +0000
ROA not before: Sun 25 Sep 2022 20:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 163.5.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:76:69:cd:08:ee:dd:29:b9:cd:21:6f:2d:1e:5f:03:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 25 20:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03c5b4cfc0637474e8e8b9e893f5c00ceb7faf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:bd:51:db:c7:6d:75:76:36:e3:a6:ff:e7:
51:7a:46:33:1e:2c:8a:6a:30:62:60:ee:52:14:70:
9d:15:70:af:4e:a4:db:06:1f:a0:1f:ab:52:15:06:
82:7f:e3:87:d6:2c:ce:37:1a:f8:4d:d9:c5:90:70:
39:9a:96:67:73:c1:a9:7a:b8:1a:0b:f6:a5:2c:40:
b2:c1:fd:f8:03:7d:8c:77:f9:49:57:a4:40:ba:47:
75:dc:e0:96:b7:99:52:db:89:bf:e3:75:81:7e:aa:
90:55:4e:88:61:35:ec:a7:8f:32:99:1e:67:e8:6e:
94:26:e0:63:4d:3c:b8:08:fa:8a:67:93:8c:6a:7e:
a8:27:53:13:9e:c1:82:84:fe:b7:63:de:b2:cf:ba:
07:c1:d4:c4:d8:f4:d3:71:e3:19:4f:20:f3:93:bf:
9c:59:4a:82:8a:fb:33:a2:1c:cf:a3:c2:dc:b9:da:
ca:c0:8f:17:ac:6a:a4:35:32:d5:ad:b1:eb:6a:f6:
5f:b4:e6:59:b2:20:48:09:36:e5:3b:53:00:e9:7a:
04:45:87:2f:df:b5:fd:1c:32:05:84:2c:46:29:89:
71:9a:a3:8b:15:36:c9:f1:e4:3b:5e:c4:3f:b0:b5:
1a:fb:bd:54:c4:36:47:fd:36:ef:99:20:71:d6:7e:
a2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C5:B4:CF:C0:63:74:74:E8:E8:B9:E8:93:F5:C0:0C:EB:7F:AF:23
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/A8W0z8BjdHTo6Lnok_XADOt_ryM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.217.0/24
Signature Algorithm: sha256WithRSAEncryption
19:50:30:6d:38:e8:3d:4c:90:5a:a2:54:14:5e:d1:c3:d9:ac:
24:8f:b2:38:5a:81:de:e2:bc:39:09:6a:b7:95:87:30:8e:55:
fc:15:9e:a0:15:c3:6c:45:76:2a:d6:f7:30:12:63:66:e4:b7:
fe:bb:fc:03:5c:73:11:c9:f6:96:4d:3f:c5:59:7b:d9:52:12:
8e:92:1a:54:9f:f6:92:0f:c4:eb:62:f5:64:07:14:ac:62:63:
ae:99:91:a4:bc:67:73:59:34:b2:01:62:bb:46:d4:2f:d7:ee:
93:8b:86:f6:56:32:1e:2e:3a:a1:f2:f4:e5:da:90:3e:b3:7a:
b2:11:6d:1b:6c:23:67:6b:bb:93:3f:ca:a0:2f:57:08:e7:eb:
4e:06:b5:5b:4b:fe:5a:4d:66:cc:90:c8:3d:5b:eb:55:82:8c:
46:a1:6f:76:62:da:82:e4:2f:c6:4a:ed:32:c2:f6:23:bc:77:
9d:bc:c4:c6:da:00:79:03:79:ec:d7:77:3a:b7:89:3b:de:56:
46:8d:88:aa:56:90:23:3b:ca:d6:bb:1c:ec:2e:71:11:67:3e:
b5:f3:65:8f:4f:08:cf:1b:ed:d7:7b:2c:cc:c5:b8:82:09:6d:
40:04:3a:48:47:41:98:cf:e2:eb:ac:50:cb:99:a6:98:a0:0d:
44:02:64:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN2ac0I7t0puc0hby0eXwNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIwOTI1MjA0OTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2M1YjRjZmMwNjM3NDc0ZThlOGI5ZTg5M2Y1YzAwY2ViN2ZhZjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9a9UdvHbXV2NuOm/+dRekYzHiyK
ajBiYO5SFHCdFXCvTqTbBh+gH6tSFQaCf+OH1izONxr4TdnFkHA5mpZnc8Gperga
C/alLECywf34A32Md/lJV6RAukd13OCWt5lS24m/43WBfqqQVU6IYTXsp48ymR5n
6G6UJuBjTTy4CPqKZ5OMan6oJ1MTnsGChP63Y96yz7oHwdTE2PTTceMZTyDzk7+c
WUqCivszohzPo8LcudrKwI8XrGqkNTLVrbHravZftOZZsiBICTblO1MA6XoERYcv
37X9HDIFhCxGKYlxmqOLFTbJ8eQ7XsQ/sLUa+71UxDZH/TbvmSBx1n6iYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAPFtM/AY3R06Oi56JP1wAzrf68jMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvQThXMHo4QmpkSFRvNkxub2tfWEFET3RfcnlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowXZMA0G
CSqGSIb3DQEBCwUAA4IBAQAZUDBtOOg9TJBaolQUXtHD2awkj7I4WoHe4rw5CWq3
lYcwjlX8FZ6gFcNsRXYq1vcwEmNm5Lf+u/wDXHMRyfaWTT/FWXvZUhKOkhpUn/aS
D8TrYvVkBxSsYmOumZGkvGdzWTSyAWK7RtQv1+6Ti4b2VjIeLjqh8vTl2pA+s3qy
EW0bbCNna7uTP8qgL1cI5+tOBrVbS/5aTWbMkMg9W+tVgoxGoW92YtqC5C/GSu0y
wvYjvHedvMTG2gB5A3ns13c6t4k73lZGjYiqVpAjO8rWuxzsLnERZz6182WPTwjP
G+3XeyzMxbiCCW1ABDpIR0GYz+LrrFDLmaaYoA1EAmT9
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org