Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KNbyk_NOvy98l5nfD0EyO-ITJ6Y.roa
File: KNbyk_NOvy98l5nfD0EyO-ITJ6Y.roa (raw, json)
Hash identifier: KDGWPJrjm3tbqd9sEq74Y6ZEoRLKaDbmqY7IBzUnvKA=
Subject key identifier: 28:D6:F2:93:F3:4E:BF:2F:7C:97:99:DF:0F:41:32:3B:E2:13:27:A6
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018404D5D0449E4DBE6B06DB54302A3734D4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KNbyk_NOvy98l5nfD0EyO-ITJ6Y.roa
Signing time: Sun 23 Oct 2022 12:33:52 +0000
ROA not before: Sun 23 Oct 2022 12:33:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64267
IP address blocks: 163.5.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:04:d5:d0:44:9e:4d:be:6b:06:db:54:30:2a:37:34:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 23 12:33:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28d6f293f34ebf2f7c9799df0f41323be21327a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:09:ff:e0:a8:e5:1f:b4:c7:3c:1c:ce:7b:21:
c5:7c:14:9d:01:70:dd:1e:07:4f:e7:4c:2c:7c:66:
e9:fa:98:23:78:12:0d:cc:59:17:5f:3c:36:07:d9:
9e:f4:05:d2:7c:b8:7e:0b:66:8a:34:7d:4a:1c:75:
3e:55:6e:6d:eb:0a:4f:79:2d:bd:97:6b:6e:92:55:
88:e5:80:af:80:fa:6a:2d:a0:88:6a:94:a3:41:79:
5f:3e:ad:20:f2:60:da:86:31:cd:3c:55:b1:54:e8:
4e:bd:b2:82:ab:e4:31:52:96:11:29:4d:80:e0:4a:
44:1c:3d:bf:90:42:91:e2:7a:4c:ad:bb:86:5f:a4:
70:38:ed:0f:0c:42:b5:16:0e:c6:ec:e9:d4:19:9b:
f2:d6:be:da:53:fc:6a:7b:62:7b:48:ae:d3:5c:cf:
23:f8:23:ac:e2:f2:29:23:da:de:74:bc:04:c2:e6:
5f:39:ef:81:43:f1:ce:19:8a:4e:72:6c:a7:97:c1:
30:80:a2:c5:b6:26:23:a0:f4:e2:13:86:77:5e:b6:
36:a1:6d:bb:57:e6:71:c5:f0:97:5b:17:83:25:50:
ed:d2:7f:d0:c4:f7:60:5b:f7:e6:58:54:95:4a:9b:
05:f5:52:6e:dc:1e:53:d3:72:3f:10:1f:fd:9a:8a:
9e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D6:F2:93:F3:4E:BF:2F:7C:97:99:DF:0F:41:32:3B:E2:13:27:A6
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KNbyk_NOvy98l5nfD0EyO-ITJ6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.129.0/24
Signature Algorithm: sha256WithRSAEncryption
89:be:7b:a6:cf:84:36:ac:f4:eb:e6:78:d1:b8:16:1a:d4:e5:
99:54:84:84:c1:2b:33:74:73:89:cc:5b:f6:d9:07:5e:6d:2f:
da:0f:29:c7:46:42:c1:af:09:02:de:08:c2:d9:42:48:19:3d:
bb:3b:14:fe:7d:d9:78:57:7c:c0:b1:7f:a2:a4:85:9b:4c:77:
fa:58:26:79:e4:6f:eb:d2:42:70:6c:2f:40:32:70:c1:b5:53:
91:b3:9c:19:43:15:eb:fc:cd:fb:d8:77:38:69:83:cc:d3:73:
ba:6c:7f:25:28:c0:99:49:f3:83:28:58:54:5f:2b:6a:0c:c8:
43:ab:ec:12:ec:63:07:bc:ea:9d:14:c6:c8:37:5e:1f:7f:60:
c2:87:c6:7f:eb:24:96:c0:32:71:f1:7e:d3:19:27:7b:15:82:
d1:61:19:99:cd:4b:28:be:64:dc:a3:93:ec:16:be:40:e2:e2:
71:2d:31:85:75:c6:7d:d2:d5:10:20:a0:ae:84:bd:29:ef:e7:
8e:e8:76:4b:58:ec:79:2d:6e:f7:66:b2:b4:bc:ed:5f:f1:0e:
b1:4e:1f:8e:bb:6f:17:b3:89:ef:50:13:f4:25:7e:78:bf:10:
c5:84:db:6b:7a:84:ee:24:e5:9f:53:2e:a6:ea:2c:c0:be:3b:
9e:b6:da:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org