Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KWgd6HBOSmq7IewDWn3mSy-LKCk.roa
File: KWgd6HBOSmq7IewDWn3mSy-LKCk.roa (raw, json)
Hash identifier: EEPQUbN07MXzZ/+FRJDaYet2tExX46ZruefgTP5wjlU=
Subject key identifier: 29:68:1D:E8:70:4E:4A:6A:BB:21:EC:03:5A:7D:E6:4B:2F:8B:28:29
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01853EEE9838930089C0FF305FA8E16BE72A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KWgd6HBOSmq7IewDWn3mSy-LKCk.roa
Signing time: Fri 23 Dec 2022 12:21:41 +0000
ROA not before: Fri 23 Dec 2022 12:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 163.5.199.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:ee:98:38:93:00:89:c0:ff:30:5f:a8:e1:6b:e7:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 23 12:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29681de8704e4a6abb21ec035a7de64b2f8b2829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:37:55:e9:b5:72:c5:51:40:ad:cc:c9:92:0e:
26:a1:3e:e3:f8:a4:b9:cd:ad:bd:00:e4:ab:68:2a:
ee:a7:2d:30:ab:c9:79:24:18:30:8f:52:1e:d2:8c:
69:f7:11:35:c2:97:44:49:92:ef:a9:3a:57:df:1b:
73:4f:7a:8f:dc:c1:de:fa:6a:87:80:e0:bd:b9:1f:
a1:60:1d:a9:85:3b:46:da:34:85:68:7d:68:7d:c3:
53:ae:1f:e3:5c:3f:b6:e7:a9:8a:3c:5a:1e:de:fe:
02:11:bf:4e:f6:b9:c3:07:37:9d:24:c8:be:79:f4:
a9:5f:3c:ed:32:88:1a:b2:cb:b5:40:f0:d5:9d:d2:
86:41:73:22:b8:c6:6e:04:fd:ec:6f:a7:a8:ba:cc:
57:a2:79:a2:09:5d:ac:a0:74:b4:73:2c:98:4b:30:
c3:0d:ad:25:94:be:d6:aa:fd:cd:82:9a:7b:d0:8c:
25:aa:86:7e:e1:39:2d:94:0f:0e:d5:da:26:af:21:
99:fa:dc:72:46:14:36:6c:45:1e:4e:2f:40:e8:12:
16:e1:03:85:9a:27:17:26:d6:49:a3:eb:c6:59:c4:
ea:a8:15:2f:85:65:6f:55:85:42:f2:be:4e:e7:78:
b3:ba:0e:8d:78:9e:ca:2e:c0:30:06:91:e7:40:84:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:68:1D:E8:70:4E:4A:6A:BB:21:EC:03:5A:7D:E6:4B:2F:8B:28:29
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/KWgd6HBOSmq7IewDWn3mSy-LKCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.164.0/24
163.5.199.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d5:f6:76:d7:a8:24:bc:d6:ad:93:ba:44:c3:d8:1a:3a:64:
b8:dc:6a:84:e9:3c:ef:cf:a1:2f:fe:c2:f1:b1:7c:1e:f1:22:
8f:44:96:7d:8b:0b:74:e8:a3:6a:d1:69:3f:86:b7:6c:25:ac:
eb:47:69:4e:8a:4b:23:81:98:eb:f2:b8:6e:dc:3e:5f:9c:e4:
e7:93:99:03:7a:8c:f7:ff:c7:fc:c9:af:2d:a1:30:ed:97:5c:
2c:2d:41:95:82:b5:9b:e9:20:92:41:91:27:47:12:36:13:b2:
03:db:cc:e6:90:89:a1:cf:25:82:47:19:f4:ed:22:60:fc:66:
86:c6:3b:84:d7:04:f9:b8:2a:95:ac:00:57:f9:5b:04:b0:7a:
88:b6:3a:8d:24:d3:1a:8a:72:00:97:7a:2e:6b:19:ce:42:80:
e7:75:15:af:c3:1a:d2:be:df:ec:52:1c:6f:de:e5:a4:69:e7:
32:b5:5f:e6:3a:a7:91:e8:e0:0c:78:e9:1c:27:73:b9:d6:4d:
e4:7a:72:44:35:84:ad:74:5f:99:02:a6:80:15:c5:2d:62:9f:
d5:47:7a:fe:a5:8f:57:bb:06:c9:cc:64:66:6d:39:da:d8:76:
64:9b:2f:c3:8f:dc:0d:d7:20:66:aa:93:b6:0d:21:95:b5:8c:
b0:81:75:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org