Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HDzoQuLG9HzIpa0GSkVCYaNYoTA.roa
File: HDzoQuLG9HzIpa0GSkVCYaNYoTA.roa (raw, json)
Hash identifier: Qt71Ey8mxMwiceiBmxIf/qajsLKB2nUG/Vcd6K1b5WE=
Subject key identifier: 1C:3C:E8:42:E2:C6:F4:7C:C8:A5:AD:06:4A:45:42:61:A3:58:A1:30
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183C7FCCD672BA84DA3F7439DEBCF9BCBEF
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HDzoQuLG9HzIpa0GSkVCYaNYoTA.roa
Signing time: Tue 11 Oct 2022 16:59:36 +0000
ROA not before: Tue 11 Oct 2022 16:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 163.5.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:fc:cd:67:2b:a8:4d:a3:f7:43:9d:eb:cf:9b:cb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 11 16:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c3ce842e2c6f47cc8a5ad064a454261a358a130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4a:b7:e2:35:ff:23:df:e8:5d:ef:b6:f0:dd:
25:dc:d7:6d:3e:1d:9f:9c:37:d4:35:20:b0:87:b2:
49:2f:fa:ed:df:35:93:46:bc:45:3e:3c:f1:f7:f0:
a4:2b:b5:52:e3:71:71:ca:96:d2:2e:86:a8:98:85:
5f:e9:d3:5c:ef:ab:f0:ca:df:6e:07:f5:76:21:d9:
8b:05:07:ec:61:8b:5a:d3:e4:70:cc:ba:2b:1f:3a:
28:9c:af:8a:99:1d:db:fa:2e:23:49:01:df:19:d4:
63:0f:2b:4f:a4:1f:0c:c3:d6:fe:29:49:80:f1:39:
fa:55:f7:47:83:f9:fa:bd:a5:70:8f:53:b5:7f:2b:
4f:40:bd:1e:0d:70:a0:3e:0c:3d:63:79:40:a6:3d:
e2:57:86:79:38:39:9f:2d:aa:73:01:50:30:0a:d5:
b4:d2:a4:0f:7f:46:8e:b9:6c:b4:62:07:f5:3c:1d:
70:77:8f:c4:cd:dd:db:6a:31:ff:67:32:11:e5:0b:
fa:b4:e3:dc:40:2c:c6:73:05:09:c2:cb:07:85:89:
47:18:29:1c:27:b8:36:62:6f:b7:65:8a:e6:f4:d7:
a9:6e:94:40:24:2f:7e:49:f4:da:c0:59:da:58:e3:
2a:73:ad:69:42:61:d6:7b:93:82:8c:20:51:e4:6b:
b1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3C:E8:42:E2:C6:F4:7C:C8:A5:AD:06:4A:45:42:61:A3:58:A1:30
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HDzoQuLG9HzIpa0GSkVCYaNYoTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.174.0/24
Signature Algorithm: sha256WithRSAEncryption
06:90:03:b3:17:bf:18:c0:13:e7:dd:35:a3:a9:a6:e6:3c:e8:
2b:7c:cd:a5:62:08:91:db:28:5c:c9:27:5e:fb:37:aa:ac:90:
0b:4d:c8:19:b9:75:6c:19:d3:ae:f8:73:61:49:73:ef:e7:29:
48:b5:44:e4:a6:41:d1:6c:7c:f8:e0:19:72:47:75:40:4e:72:
66:76:a1:83:dd:ad:4d:2b:ec:df:ec:18:16:36:34:ed:d9:e6:
d3:c5:17:b7:b4:03:5b:ff:e3:25:96:03:31:92:be:ef:09:aa:
1d:17:a3:ec:80:20:de:1a:01:2d:fd:af:66:0f:ae:77:df:b2:
67:a6:40:3a:ef:9e:3d:63:bf:00:43:87:10:9f:94:37:81:cf:
c2:dc:27:84:d6:0c:86:7f:68:9c:e4:cd:da:73:d5:05:40:78:
14:0f:fd:03:ee:89:f7:5d:42:43:0f:1b:15:16:60:ac:37:6a:
bb:f6:52:34:cf:a6:98:b3:a6:51:fa:85:a9:ce:da:00:ab:4a:
b5:3e:75:53:77:36:ee:4c:a3:f6:62:01:8f:43:f2:9a:c1:44:
db:49:bb:6f:e3:68:9e:30:f6:38:9f:8a:fe:d4:2e:3c:0b:58:
7e:eb:3b:b2:bb:da:2c:5a:5b:56:6f:81:6c:67:8f:85:09:bf:
cd:72:81:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-ams.rpki-client.org