Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/J0quue5rxtWC1tFRO6ojukLcOVE.roa
File: J0quue5rxtWC1tFRO6ojukLcOVE.roa (raw, json)
Hash identifier: 5c1S7wq+S22P5ieuon8q+gVsbJRl8qXkhypennysnzM=
Subject key identifier: 27:4A:AE:B9:EE:6B:C6:D5:82:D6:D1:51:3B:AA:23:BA:42:DC:39:51
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183766AB9D3E654D31F4E3C71E6DD0D5E48
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/J0quue5rxtWC1tFRO6ojukLcOVE.roa
Signing time: Sun 25 Sep 2022 20:50:49 +0000
ROA not before: Sun 25 Sep 2022 20:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 163.5.219.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:76:6a:b9:d3:e6:54:d3:1f:4e:3c:71:e6:dd:0d:5e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 25 20:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=274aaeb9ee6bc6d582d6d1513baa23ba42dc3951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:20:ef:68:6e:ba:38:d0:16:a9:28:91:50:85:
c1:9c:39:b2:57:ba:0b:42:fa:50:62:fa:7a:d9:9e:
53:31:2a:16:10:af:4f:5c:5c:3a:57:92:5b:95:23:
60:89:0a:09:09:bd:83:46:33:11:09:d9:6d:fb:26:
db:eb:86:ce:a3:78:e7:0c:71:ee:91:e8:52:63:aa:
95:1b:98:dd:db:bd:02:e9:c6:a7:3c:de:ff:b2:f3:
e1:36:fb:6b:1e:e0:30:4d:da:4a:fb:af:6b:5c:80:
f9:54:60:06:93:4b:c5:cc:fa:26:c6:66:d3:2d:18:
90:03:b6:6a:fc:1a:3e:25:42:96:12:d5:f4:89:63:
d8:3e:56:be:ee:85:bd:ee:b9:90:73:50:1d:f3:97:
eb:9c:ea:13:fb:a4:02:8a:28:20:0d:31:50:c1:cf:
50:0a:6f:5a:66:d3:18:82:7c:b4:d1:25:0d:10:a6:
37:ce:62:bf:55:f2:cf:96:c8:5c:78:c1:02:20:3c:
82:6e:87:44:6f:3f:72:34:77:e4:da:58:e9:9b:2c:
1f:19:e1:03:8b:67:46:04:b2:8b:e1:6b:7c:4f:6b:
c6:b6:60:79:de:6a:c2:28:47:41:2e:8d:51:bf:02:
dd:3f:7b:98:54:b8:1d:a2:2a:5f:27:51:f1:f4:44:
cf:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4A:AE:B9:EE:6B:C6:D5:82:D6:D1:51:3B:AA:23:BA:42:DC:39:51
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/J0quue5rxtWC1tFRO6ojukLcOVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.219.0/24
163.5.224.0/24
163.5.251.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:6c:25:7e:6f:d2:fd:35:60:30:92:84:37:2c:d0:25:54:ea:
42:f7:2c:aa:b5:09:37:67:f6:14:60:d3:7e:6f:0f:4d:7a:77:
e0:5b:9f:ac:fd:dc:fa:87:5f:28:dd:69:e2:f7:87:cc:47:73:
65:e2:ed:ed:26:fb:ee:2f:79:0c:39:9c:1e:1f:b3:d5:e5:f0:
7e:d8:52:ba:12:42:8f:d2:03:1d:5b:28:10:89:25:92:04:00:
ab:6b:0c:70:a8:29:83:05:e5:b1:35:a3:4f:aa:c1:d3:6c:9f:
fa:9a:de:21:3c:60:b2:a5:52:7f:f7:b0:ea:2d:c8:99:6f:6f:
5c:5c:18:b7:e9:1c:19:7b:57:3e:c5:84:02:c6:99:b4:75:1e:
7a:a7:6c:5e:f5:46:ac:a1:c8:9e:3b:a4:1b:f2:89:b1:34:f9:
aa:d1:8a:03:ca:d7:1d:19:fb:d0:9d:cc:9d:c0:e9:81:da:f7:
3d:a7:48:d0:d4:13:94:c7:8f:64:dd:c9:d6:60:d9:37:24:3c:
ef:11:90:0c:3a:7d:e7:f3:1e:00:7b:a4:36:d2:bf:23:f6:2c:
30:4a:f2:09:95:46:af:54:cd:34:a5:23:17:63:87:2c:26:21:
10:f3:c3:84:59:0a:e5:83:4e:6c:84:21:39:86:2f:2d:d3:23:
e8:13:f2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:30 2024 by rpki-client on console-ams.rpki-client.org