Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WPPNDzNehRKyt0SS0cYdsCm95Rk.roa
File: WPPNDzNehRKyt0SS0cYdsCm95Rk.roa (raw, json)
Hash identifier: fhE/5Awbbj5PXI/qkK6Vhq3u+Og2zK3vPXOVRx/YuiM=
Subject key identifier: 58:F3:CD:0F:33:5E:85:12:B2:B7:44:92:D1:C6:1D:B0:29:BD:E5:19
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01825B6E7A6812A70C4255774702C595817E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WPPNDzNehRKyt0SS0cYdsCm95Rk.roa
Signing time: Mon 01 Aug 2022 22:02:23 +0000
ROA not before: Mon 01 Aug 2022 22:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7118
IP address blocks: 163.5.176.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5b:6e:7a:68:12:a7:0c:42:55:77:47:02:c5:95:81:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 1 22:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58f3cd0f335e8512b2b74492d1c61db029bde519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:fa:ee:9f:37:b1:c9:53:a3:aa:48:6c:77:
c0:39:8f:88:22:5f:d9:4d:f4:1c:e0:f6:9f:b8:07:
aa:4d:0e:c7:c7:83:34:83:2f:3f:ad:40:15:8c:0a:
5b:0e:4c:26:26:a1:e8:2c:26:ad:df:69:1c:be:6d:
07:f2:a3:cc:0b:9d:ab:7b:26:55:96:e3:8e:37:df:
04:58:63:b7:7e:fc:36:8e:6c:3e:e7:20:84:a9:b6:
47:9f:c8:88:59:89:cc:1f:2f:cd:43:30:ec:2c:0f:
f9:78:ea:f4:9c:de:ce:72:44:63:24:dc:3b:51:a4:
09:7f:19:ed:38:5b:8d:7e:ae:2a:7c:eb:ba:ff:de:
86:b3:32:5f:f9:a9:4f:1e:d4:54:fd:d0:f3:da:01:
38:c5:78:27:43:ab:67:aa:0a:eb:b5:e4:92:01:99:
a4:94:2e:d0:b6:2b:5a:70:69:74:e9:49:48:64:c7:
b4:1a:69:55:a3:86:91:be:6f:ca:8a:d2:d8:5b:b8:
fc:63:42:8e:45:f4:bb:d7:2e:e5:9b:8e:8b:3b:fe:
15:63:73:5a:c5:29:92:1e:d0:a7:3c:0f:6b:33:45:
50:db:9d:90:7d:de:23:e4:11:a5:3e:8d:5b:37:39:
0f:75:33:71:ce:21:c7:20:96:19:05:aa:9d:67:83:
5b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F3:CD:0F:33:5E:85:12:B2:B7:44:92:D1:C6:1D:B0:29:BD:E5:19
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/WPPNDzNehRKyt0SS0cYdsCm95Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.174.0-163.5.178.255
163.5.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:77:b8:56:e4:5d:c7:62:71:f1:a6:6e:52:e2:04:ef:d6:dd:
45:89:fe:2f:2a:49:29:c1:ac:f0:e0:4c:4a:1f:4e:50:ed:da:
11:79:e8:69:14:ac:e8:ce:e0:c2:5f:d1:0c:e8:1e:6d:e0:8a:
70:5e:c5:2e:32:fe:38:7a:01:9e:55:db:20:98:42:7d:5e:e4:
dd:1d:ce:b9:8f:b4:18:b0:7a:88:49:55:c5:71:de:c3:f1:d3:
c1:cd:f2:6c:48:00:c1:40:8b:b8:13:87:aa:5f:c9:e6:ec:e1:
1e:ec:d1:ba:14:cf:98:be:5b:52:bc:d2:ac:76:03:87:bb:cb:
1d:be:b3:35:db:b1:5b:c0:1d:fd:fa:a5:06:92:35:4b:55:86:
44:26:90:af:dd:6a:de:0f:83:04:48:90:f6:59:48:ff:33:61:
9a:55:dc:fd:77:ac:96:24:ad:3e:cf:5e:2e:06:52:52:0e:45:
fd:08:8f:2b:b2:3a:47:c1:38:fb:dc:bc:91:94:5e:78:80:19:
0e:5b:a0:a9:cc:d3:bd:85:92:d9:94:04:16:47:6b:ae:96:e8:
1a:de:30:3f:46:ee:c4:21:9b:e7:b8:50:6e:ff:ba:1b:8e:39:
a9:7b:5a:66:95:61:a7:a5:ab:0b:10:58:e9:ff:72:b6:7d:47:
29:63:1a:7f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org