Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GhEDwugQejezZuJhF7d6Iob6CQs.roa
File: GhEDwugQejezZuJhF7d6Iob6CQs.roa (raw, json)
Hash identifier: 4pxVelpLtWDzcbWVXp6+UyHeQRA8QvrinoU5T7FribY=
Subject key identifier: 1A:11:03:C2:E8:10:7A:37:B3:66:E2:61:17:B7:7A:22:86:FA:09:0B
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018495049B7A60A8B65B85FAEF8A188EB2DC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GhEDwugQejezZuJhF7d6Iob6CQs.roa
Signing time: Sun 20 Nov 2022 12:30:17 +0000
ROA not before: Sun 20 Nov 2022 12:30:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 163.5.174.0/24 maxlen: 24
163.5.185.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.115.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:95:04:9b:7a:60:a8:b6:5b:85:fa:ef:8a:18:8e:b2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 20 12:30:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a1103c2e8107a37b366e26117b77a2286fa090b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ff:ac:6a:d4:d5:9e:eb:70:46:e6:54:37:33:
d9:3a:f0:28:1c:7f:2d:64:7c:62:5b:d5:38:c8:4b:
90:52:6b:5f:55:75:4d:83:40:e6:95:5d:bd:cf:a2:
bf:58:6f:37:45:6b:fb:0e:c1:dc:bf:52:1c:06:10:
fa:c2:df:7b:97:ea:5e:d0:d8:bb:25:e3:79:eb:87:
a3:69:9e:b4:8c:9f:46:08:a5:fe:96:2a:84:e7:e3:
26:4d:6c:d8:a8:32:df:2e:4e:f7:e1:1e:4d:59:b6:
fe:e6:fb:e1:86:14:04:8c:e3:6c:6e:a8:18:1f:cc:
c5:9d:60:c3:64:ed:0f:9e:53:9f:91:c7:ac:4e:68:
8f:05:e2:9b:61:ba:44:71:a8:28:ff:e0:93:7a:a3:
74:48:9a:5e:2f:a3:06:c9:b3:bc:a5:2d:08:f2:78:
f3:25:37:c5:50:71:72:c7:9c:98:df:26:e6:c3:33:
e3:d2:cb:33:c9:bf:85:cd:8c:72:b4:c5:72:1e:fa:
22:db:3f:ea:c0:54:9b:09:25:2e:ab:bc:2c:f3:a8:
23:fb:c4:56:ff:d4:3e:a4:92:1a:81:57:75:78:29:
57:62:4b:f7:eb:cf:0c:30:e8:d3:94:59:83:05:55:
56:f9:3f:2e:f7:16:d1:c5:ba:e8:49:34:bf:40:f2:
7f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:11:03:C2:E8:10:7A:37:B3:66:E2:61:17:B7:7A:22:86:FA:09:0B
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/GhEDwugQejezZuJhF7d6Iob6CQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.115.0/24
163.5.171.0-163.5.172.255
163.5.174.0/24
163.5.185.0/24
163.5.198.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2a:07:59:b5:d6:e3:9b:0b:8e:cc:66:cf:09:e8:9a:6b:ec:
82:6c:64:bd:c1:96:65:d0:2b:a5:3a:66:b2:63:df:5c:64:85:
95:8d:ab:5a:83:9d:0b:1c:4f:eb:26:f2:2c:72:78:09:e5:45:
29:cc:1f:a2:e3:30:ba:47:30:c8:10:02:fc:7d:13:b3:01:35:
ed:09:ab:f2:ef:01:27:f8:d5:5f:dd:98:0e:46:c6:0a:a1:c8:
40:d3:6d:3e:14:21:03:4b:dd:63:39:51:19:ff:1d:5d:68:5d:
f6:9c:f4:d0:47:43:82:d3:bc:ff:ee:39:6f:fe:bc:64:d8:23:
a9:bf:73:59:07:54:fd:a6:92:19:02:68:c0:04:0d:b6:42:cd:
09:c4:30:32:f8:2f:9d:27:a2:fd:d3:05:d5:34:37:33:51:5e:
99:9f:84:c5:b3:42:81:6d:f8:ec:8e:f2:4d:11:44:e6:6b:54:
04:3f:3d:3b:ea:9d:13:bd:5b:9f:d2:b8:1b:17:af:8d:1d:db:
69:cb:4c:67:f5:54:f7:dd:84:a2:4c:67:4a:88:20:7e:98:06:
a2:4a:65:4b:63:c7:76:92:18:12:94:06:d7:98:3f:7d:88:3d:
6d:7d:5e:0a:99:91:8f:83:98:6d:40:b6:c8:36:88:29:5e:f7:
56:9c:25:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org