Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SHxY3fyuTeB07W0jmR5QSr68R50.roa
File: SHxY3fyuTeB07W0jmR5QSr68R50.roa (raw, json)
Hash identifier: beFb1xlimsom4DUn2GIZQyANDoNbfI0FudZdT/2TEYk=
Subject key identifier: 48:7C:58:DD:FC:AE:4D:E0:74:ED:6D:23:99:1E:50:4A:BE:BC:47:9D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184D29A90FE4E39FC08AFFCA39E730C4DCC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SHxY3fyuTeB07W0jmR5QSr68R50.roa
Signing time: Fri 02 Dec 2022 11:30:55 +0000
ROA not before: Fri 02 Dec 2022 11:30:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 163.5.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:9a:90:fe:4e:39:fc:08:af:fc:a3:9e:73:0c:4d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 2 11:30:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=487c58ddfcae4de074ed6d23991e504abebc479d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2f:13:ee:63:14:3b:61:38:1e:fe:33:17:4b:
d3:ae:a6:64:66:b0:a4:af:61:b2:09:eb:34:77:36:
ec:7c:5f:82:9b:be:b0:e9:d2:28:3b:33:99:ca:8d:
61:b1:3e:b8:09:c9:ab:fd:24:3e:1b:ba:64:3f:8e:
c0:9c:07:99:35:6b:44:81:12:7b:8c:3d:34:04:6a:
b0:28:e7:f2:3c:ea:f5:93:be:a8:22:c5:10:cf:48:
83:1b:4e:89:c1:f9:cb:54:21:d7:c4:76:b2:40:fc:
d4:3b:6b:69:fa:77:f4:70:99:60:3c:91:d8:a8:3f:
b8:a8:14:3e:78:d2:d0:f7:a6:ab:d1:bc:dc:07:9b:
f2:37:ad:38:1e:57:4b:b2:6b:ca:af:51:cb:1c:c1:
04:17:a0:5f:75:f9:b6:7c:0f:1b:75:2d:bc:fa:22:
a4:61:99:aa:8b:a2:fb:23:3e:bb:77:ad:e9:b5:cc:
9b:1f:da:e4:5b:c0:f0:99:79:60:32:99:16:57:83:
ca:c8:cd:59:f0:35:d6:ee:2f:db:76:b5:e9:ef:3d:
28:0f:b6:fb:f8:f8:05:17:50:68:73:55:47:76:7e:
ae:23:ff:29:0f:35:1f:84:39:97:c6:6e:a6:9a:24:
cc:51:83:9c:94:f2:78:5c:a4:4b:a5:98:c0:33:34:
3b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7C:58:DD:FC:AE:4D:E0:74:ED:6D:23:99:1E:50:4A:BE:BC:47:9D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/SHxY3fyuTeB07W0jmR5QSr68R50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.99.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:fd:0e:71:b4:cc:0d:e6:38:12:ea:d1:27:aa:62:03:40:40:
04:bb:e0:9d:7f:0a:05:e1:9c:a4:6f:5a:36:f5:20:9c:24:e7:
0b:17:3c:b9:49:1f:21:89:96:2e:d6:7f:f5:fa:9b:21:a7:d0:
22:cb:d5:11:56:ec:96:30:b4:c5:c7:93:17:6a:58:ed:4e:b3:
cd:33:c7:bc:c4:9a:8f:91:d1:df:e3:fd:a9:16:84:58:3b:d2:
c6:04:38:50:18:d6:23:07:00:c1:b2:d4:9d:81:74:55:02:85:
fe:47:91:2a:cc:1b:75:b1:b1:45:05:cb:77:e9:b1:a0:74:06:
a5:a5:b1:26:1f:61:57:93:34:6e:84:b0:25:ac:8a:5f:7a:61:
57:f4:f3:14:4b:68:f9:24:e6:d9:7d:62:ac:27:ea:c1:d8:4a:
69:e1:f4:0b:22:af:b4:f5:dc:5a:57:cf:da:1c:b1:11:6b:e7:
09:fd:aa:ef:c4:90:bb:e0:9f:43:53:ec:16:84:18:2e:86:f2:
26:8a:40:74:72:31:04:9a:4e:ed:3e:6e:b2:e3:2e:16:aa:08:
6c:9e:7e:e1:1e:35:ff:94:ed:19:c5:b5:be:25:66:d6:14:fd:
a0:aa:49:5d:a9:a1:35:00:ad:f6:98:9e:5f:67:89:07:b2:af:
70:a1:ac:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:05 2024 by rpki-client on console-fra.rpki-client.org