Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/T2wdIvre__lFJ-Xm4v6MjYpIAVY.roa
File: T2wdIvre__lFJ-Xm4v6MjYpIAVY.roa (raw, json)
Hash identifier: 1tGZQ9jkUJqiGwjYbZ7RRC2WT+fibDRR/7SYAx1ymFI=
Subject key identifier: 4F:6C:1D:22:FA:DE:FF:F9:45:27:E5:E6:E2:FE:8C:8D:8A:48:01:56
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0185250AFC880BF338D8F00B94DB689998A3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/T2wdIvre__lFJ-Xm4v6MjYpIAVY.roa
Signing time: Sun 18 Dec 2022 11:42:35 +0000
ROA not before: Sun 18 Dec 2022 11:42:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43043
IP address blocks: 163.5.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:25:0a:fc:88:0b:f3:38:d8:f0:0b:94:db:68:99:98:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 18 11:42:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f6c1d22fadefff94527e5e6e2fe8c8d8a480156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:35:c7:88:42:37:65:ac:37:ef:3b:10:8f:20:
c2:59:ac:d0:f6:93:71:d2:e6:d4:9a:e3:ec:bd:ef:
df:be:b4:d4:fa:d6:46:25:07:6f:e6:51:f5:54:45:
60:d6:9c:e4:5c:32:da:97:29:b9:ea:29:d3:d2:50:
2b:6d:d3:92:db:a3:6a:0b:85:6b:b9:17:a1:a5:d9:
80:b5:da:60:28:00:09:a4:77:28:11:b1:bf:c6:95:
6b:3f:e9:b0:9e:f1:31:0c:0f:78:f8:98:1d:eb:4c:
9c:22:c6:b2:c8:86:3e:0b:e0:c5:dd:69:e1:2a:08:
f7:b5:ae:54:a1:ac:cf:c7:4c:17:e7:5a:7c:6e:36:
69:09:bc:74:23:59:ef:e5:00:f5:d7:a2:29:34:f0:
c0:9c:04:c5:c7:85:59:dd:b5:d8:c6:dd:42:89:ed:
3d:d7:d7:a9:82:b9:26:60:91:7c:f7:45:57:0e:cc:
93:42:5b:86:11:34:a0:c0:27:aa:76:3f:2f:23:00:
6a:21:50:2a:58:65:1a:51:3f:fd:9c:88:69:69:3a:
6d:03:a8:72:ef:c9:ae:10:6f:76:3f:c8:e1:50:27:
a7:ea:92:1a:41:44:30:25:15:5b:79:38:22:50:2f:
52:ff:95:4f:07:12:b6:6d:10:c8:cc:be:c9:14:d8:
d7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6C:1D:22:FA:DE:FF:F9:45:27:E5:E6:E2:FE:8C:8D:8A:48:01:56
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/T2wdIvre__lFJ-Xm4v6MjYpIAVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:af:85:eb:ca:63:e5:c7:25:91:dd:fa:4a:48:be:a9:bb:a3:
29:51:62:43:ff:17:2f:91:47:51:d5:ce:8f:a7:f2:42:ce:df:
53:00:e0:32:10:39:ee:ad:90:f7:d7:c8:24:7e:41:c9:ed:3a:
86:ae:50:af:22:e5:b6:7d:cb:71:bc:aa:57:6a:bc:67:dc:3b:
73:88:1f:d9:d5:b7:f0:88:cc:2c:b4:83:be:45:e8:e9:6e:1e:
f0:79:c3:1c:ad:33:3c:f1:5a:5d:5c:51:68:20:60:e0:2d:18:
62:de:b5:ea:12:3d:b2:05:da:26:76:12:00:2d:92:f1:af:ce:
19:22:2b:f6:e2:9c:7e:47:09:50:dd:a5:a0:76:32:b7:df:04:
0c:f9:20:de:22:4c:64:87:25:ab:a5:90:ef:a8:b7:3f:da:15:
69:6d:99:a3:5d:eb:34:4c:9b:61:b1:33:4d:e2:16:fe:97:19:
86:89:9d:8a:03:55:0d:30:f1:24:6e:13:1d:01:f8:8d:38:22:
e9:dc:07:d6:92:f5:c6:d3:fd:b6:37:d0:2b:d6:1f:26:20:48:
0c:ea:b6:c4:97:9f:2e:6a:86:c1:93:4a:38:d7:3e:93:fe:a3:
3e:58:e0:05:e6:02:88:ce:32:2f:a1:bc:bf:59:aa:19:37:51:
88:ca:e4:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUlCvyIC/M42PALlNtomZijMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMjE4MTE0MjM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjZjMWQyMmZhZGVmZmY5NDUyN2U1ZTZlMmZlOGM4ZDhhNDgwMTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljXHiEI3Zaw37zsQjyDCWazQ9pNx
0ubUmuPsve/fvrTU+tZGJQdv5lH1VEVg1pzkXDLalym56inT0lArbdOS26NqC4Vr
uRehpdmAtdpgKAAJpHcoEbG/xpVrP+mwnvExDA94+Jgd60ycIsayyIY+C+DF3Wnh
Kgj3ta5UoazPx0wX51p8bjZpCbx0I1nv5QD116IpNPDAnATFx4VZ3bXYxt1Cie09
19epgrkmYJF890VXDsyTQluGETSgwCeqdj8vIwBqIVAqWGUaUT/9nIhpaTptA6hy
78muEG92P8jhUCen6pIaQUQwJRVbeTgiUC9S/5VPBxK2bRDIzL7JFNjXTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE9sHSL63v/5RSfl5uL+jI2KSAFWMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvVDJ3ZEl2cmVfX2xGSi1YbTR2Nk1qWXBJQVZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWJMA0G
CSqGSIb3DQEBCwUAA4IBAQAOr4XrymPlxyWR3fpKSL6pu6MpUWJD/xcvkUdR1c6P
p/JCzt9TAOAyEDnurZD318gkfkHJ7TqGrlCvIuW2fctxvKpXarxn3DtziB/Z1bfw
iMwstIO+Rejpbh7wecMcrTM88VpdXFFoIGDgLRhi3rXqEj2yBdomdhIALZLxr84Z
Iiv24px+RwlQ3aWgdjK33wQM+SDeIkxkhyWrpZDvqLc/2hVpbZmjXes0TJthsTNN
4hb+lxmGiZ2KA1UNMPEkbhMdAfiNOCLp3AfWkvXG0/22N9Ar1h8mIEgM6rbEl58u
aobBk0o41z6T/qM+WOAF5gKIzjIvoby/WaoZN1GIyuRK
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org