Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VE-vTWnq94ZsNHEqEIxwfYtq0kA.roa
File: VE-vTWnq94ZsNHEqEIxwfYtq0kA.roa (raw, json)
Hash identifier: HzbOU+7/K1sDcgKkKqmNMkIvexYh/y0Wb/GD6TNytTY=
Subject key identifier: 54:4F:AF:4D:69:EA:F7:86:6C:34:71:2A:10:8C:70:7D:8B:6A:D2:40
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184CD4F5EBAAC5885C39E1D1B4CAD99276C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VE-vTWnq94ZsNHEqEIxwfYtq0kA.roa
Signing time: Thu 01 Dec 2022 10:50:41 +0000
ROA not before: Thu 01 Dec 2022 10:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 163.5.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cd:4f:5e:ba:ac:58:85:c3:9e:1d:1b:4c:ad:99:27:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 1 10:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=544faf4d69eaf7866c34712a108c707d8b6ad240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:77:72:02:27:a2:fe:b1:c4:c2:04:50:93:c9:
41:35:71:21:62:ea:7d:fa:aa:3d:15:05:cc:76:f5:
1e:29:51:47:eb:0b:76:45:22:dd:cc:39:7c:2f:51:
fa:d7:c0:d4:9a:83:7b:8f:e1:39:3b:08:7c:d8:26:
59:59:b4:d1:82:47:d8:db:02:17:b5:9b:56:86:05:
22:23:5a:6b:98:0c:2d:52:a2:87:2c:77:ce:ff:30:
86:1a:1f:0e:59:3e:79:7b:b5:98:ab:63:c2:69:16:
d2:80:4d:b7:20:7e:b9:29:d2:2f:d9:e9:f9:e9:6a:
3f:58:4d:db:19:81:2c:ff:2a:cf:1d:da:7d:65:aa:
33:67:ee:f6:74:2c:63:c1:8f:41:8d:ca:c1:13:28:
6b:62:44:26:9e:6c:3d:e5:8d:c3:9c:6d:d2:a3:b0:
5f:13:10:5c:dd:9d:2c:f5:83:f1:a2:32:ac:ae:22:
3d:d8:c1:d9:26:7f:12:89:29:67:82:f7:f4:ab:64:
b2:56:a3:ae:dd:a0:bf:1d:65:c5:0d:f3:06:e1:6b:
86:fd:5b:8b:c1:3a:b1:b2:74:64:87:bc:be:1c:7b:
2f:5a:eb:98:3c:0c:a3:43:b8:d5:dc:0c:d3:89:df:
76:6c:59:5a:d5:74:28:56:6c:ce:33:16:fe:17:d9:
c6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4F:AF:4D:69:EA:F7:86:6C:34:71:2A:10:8C:70:7D:8B:6A:D2:40
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/VE-vTWnq94ZsNHEqEIxwfYtq0kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.163.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:64:40:0f:6f:bb:5c:86:41:57:6e:80:0e:b4:3b:d8:18:80:
ee:64:54:39:74:9e:f1:69:3c:31:45:65:5b:da:4f:98:17:4f:
e7:bb:bf:f4:0f:4d:86:88:60:3d:8a:47:2a:2f:00:8c:cf:52:
97:d9:2c:28:db:cc:0c:30:de:4b:63:80:7b:39:e3:6b:3b:f4:
99:38:73:87:b9:5a:c7:d6:c6:46:32:a6:a8:83:06:56:4e:9c:
a0:30:8a:c3:90:60:2c:be:21:dd:33:f1:db:bf:5a:84:3b:48:
59:bd:3c:d3:cc:e8:56:45:c8:55:76:09:c6:dc:6f:44:51:a2:
66:4c:6b:ff:f6:c4:f1:f3:ee:42:a3:81:f8:5e:0a:df:7e:82:
d7:4c:d4:3a:56:28:c4:2e:65:d0:42:34:97:2c:d4:4c:18:db:
ff:f7:29:37:d2:9c:80:36:9e:c6:90:6e:f3:ba:c6:5e:6e:76:
c0:bd:2d:ab:3f:d0:f1:9f:35:ba:bc:36:54:23:93:1e:c5:89:
c1:a8:67:30:c9:18:28:20:41:8d:3e:ee:b7:d1:38:55:f5:22:
cc:b3:64:46:b7:e6:02:27:1e:7b:07:e2:a2:e7:80:e8:b6:39:
27:fb:1e:49:24:da:a3:1a:ad:ca:09:22:8e:08:eb:50:62:cf:
12:a6:bc:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org