Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TkXPwlje9kWD0apEaon3KsFK76E.roa
File: TkXPwlje9kWD0apEaon3KsFK76E.roa (raw, json)
Hash identifier: DMvKwQvb6t6kQG7H6YOF9HEhqsp73/vFqRASLVeIeRw=
Subject key identifier: 4E:45:CF:C2:58:DE:F6:45:83:D1:AA:44:6A:89:F7:2A:C1:4A:EF:A1
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0164F189
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TkXPwlje9kWD0apEaon3KsFK76E.roa
Signing time: Fri 01 Jul 2022 17:01:25 +0000
ROA not before: Fri 01 Jul 2022 17:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 163.5.131.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23392649 (0x164f189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 1 17:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e45cfc258def64583d1aa446a89f72ac14aefa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3f:a8:b9:0c:34:6a:a5:1b:62:43:8d:e5:a8:
0b:e6:ad:ab:e2:e6:eb:e1:10:43:85:60:56:ee:77:
6f:86:29:33:4d:ef:b7:57:a9:d7:55:ed:d5:16:fb:
aa:f2:5b:7f:68:e3:20:ec:06:12:93:dc:ba:34:1a:
da:5d:c9:29:bf:f3:da:85:03:29:1f:96:cd:63:3b:
87:d4:10:9b:02:d8:80:1c:43:92:5b:e7:9c:c8:57:
d0:3f:45:cb:38:e7:2c:47:01:82:3a:4a:ec:4c:d2:
fb:e4:0b:d6:11:75:7a:dc:87:b1:3c:e5:05:75:12:
f2:49:38:51:10:e8:14:49:00:57:c2:a4:db:39:bf:
58:43:6e:75:1b:8d:00:43:9a:77:4e:2d:00:8d:2b:
9f:b3:2c:20:73:a1:65:f2:d7:17:12:95:7a:e7:72:
29:bc:d5:60:40:06:2c:08:c9:ee:bd:9f:78:84:fb:
22:22:dc:68:6c:fe:a8:47:c0:a2:94:d4:3b:0c:d7:
82:1b:dc:74:86:6a:fe:dc:90:ae:45:8d:fb:4a:6b:
c6:8f:4f:9b:44:78:48:d1:20:f5:bb:b4:64:94:5e:
03:79:88:e2:20:06:1c:86:7d:7d:6f:40:36:38:f2:
b1:99:17:64:f5:0f:1e:ae:06:1f:82:4c:27:29:41:
68:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:45:CF:C2:58:DE:F6:45:83:D1:AA:44:6A:89:F7:2A:C1:4A:EF:A1
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/TkXPwlje9kWD0apEaon3KsFK76E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.131.0/24
163.5.134.0/24
Signature Algorithm: sha256WithRSAEncryption
04:91:0a:08:54:c3:6f:56:26:9f:df:7a:35:a9:ba:eb:ac:31:
21:ca:cc:db:d3:51:5f:0a:36:40:65:c0:19:07:4f:47:11:6b:
54:4b:1c:ef:2d:7b:e2:08:8a:24:09:3a:03:b1:80:af:73:f7:
d2:78:b4:1b:9a:a3:60:60:2d:9e:7d:b4:2c:85:4d:9a:50:0c:
56:aa:f4:85:1c:b2:9d:f4:73:2d:f7:29:18:3a:f1:4c:45:cd:
27:c2:49:5b:51:b1:3d:7d:0c:ad:09:bf:77:5d:6e:0c:75:03:
bd:58:fb:7e:2f:3f:cc:72:a7:ff:58:da:32:e7:67:84:f8:9b:
57:01:c3:af:50:6b:04:95:45:94:94:6e:10:63:1b:44:d7:66:
2c:8b:af:ce:13:70:d2:08:d5:72:b0:34:1d:2f:9f:d5:ac:81:
d2:61:46:b6:36:7b:d3:a9:a7:5d:14:81:fa:8f:23:f2:f4:dc:
1d:dd:2b:1a:8a:e2:67:1e:bb:a8:62:ce:42:13:d8:4a:f6:3b:
99:04:56:3b:b4:30:f1:66:2a:c4:5c:af:81:61:9a:5b:65:1d:
58:21:77:18:b9:b4:71:4a:26:86:a0:9a:1e:46:22:c4:2e:65:
55:9a:eb:5b:c8:71:72:04:a5:ff:59:b9:c4:a5:53:6a:63:d3:
6b:a8:d1:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org