Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wgg97McztM95IXSdGeQOLk2YrEE.roa
File: Wgg97McztM95IXSdGeQOLk2YrEE.roa (raw, json)
Hash identifier: JxVWjzU+wHcWGFvgyJVFR0LnA8NhdRxEW2drgDi5qyU=
Subject key identifier: 5A:08:3D:EC:C7:33:B4:CF:79:21:74:9D:19:E4:0E:2E:4D:98:AC:41
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182D396407E5F12DA42C02E715E704BCD8B
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wgg97McztM95IXSdGeQOLk2YrEE.roa
Signing time: Thu 25 Aug 2022 06:00:15 +0000
ROA not before: Thu 25 Aug 2022 06:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 163.5.232.0/24 maxlen: 24
163.5.231.0/24 maxlen: 24
163.5.234.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d3:96:40:7e:5f:12:da:42:c0:2e:71:5e:70:4b:cd:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 25 06:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a083decc733b4cf7921749d19e40e2e4d98ac41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:15:f4:9d:e7:97:54:d3:45:03:c1:3f:93:1d:
17:28:3c:50:67:84:8b:df:93:53:73:ef:24:f0:44:
24:90:d4:ce:52:40:04:6c:d5:cb:33:52:57:df:72:
e7:44:0b:03:3e:15:85:58:e2:58:7c:76:47:a1:09:
9b:d8:90:b3:e1:73:e9:8a:9a:62:17:e5:a9:88:61:
1d:0d:30:13:26:df:a4:96:1f:f9:d3:f6:a9:80:27:
07:24:c1:b1:49:f5:6d:c7:1b:b1:69:0e:df:86:de:
48:db:56:44:c1:db:a3:8c:e7:a2:ad:6a:e4:41:24:
e2:95:ca:25:82:cd:ed:c5:2b:89:25:d4:25:f2:45:
98:5a:77:09:00:0f:58:8f:80:90:9b:0a:c6:82:c1:
05:38:41:c6:9d:2d:0b:6a:4b:bc:b2:2a:18:2a:01:
37:04:90:b1:63:82:0e:8a:8a:74:be:5d:64:f5:d1:
71:d6:71:a3:48:05:b5:2f:bc:08:1c:c7:f6:72:84:
01:7b:c9:22:51:f2:bc:98:eb:96:94:0c:b9:96:1a:
f6:85:77:92:6f:45:f5:2f:0a:86:98:da:4b:98:20:
8a:7b:80:30:d2:a4:a3:ce:7c:0a:ac:a1:fd:7a:2f:
ab:4a:3e:40:66:14:9f:21:26:12:3b:17:8c:81:b3:
6e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:08:3D:EC:C7:33:B4:CF:79:21:74:9D:19:E4:0E:2E:4D:98:AC:41
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Wgg97McztM95IXSdGeQOLk2YrEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.165.0/24
163.5.231.0-163.5.232.255
163.5.234.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:67:47:c2:f5:07:d6:12:cf:3e:b6:ef:3f:08:84:e4:9a:e0:
f9:68:41:bb:07:d0:78:16:dc:4e:61:96:f7:06:8b:db:28:8c:
1b:fd:59:7c:ba:47:1f:28:9d:e8:56:b1:1f:07:25:db:c5:51:
30:bd:32:a6:4b:f6:d7:d4:9e:0f:ef:d5:98:83:04:63:ad:bf:
9d:03:93:5b:9a:8b:5e:cf:9c:00:02:f6:2f:8e:45:58:86:a1:
32:bd:c8:b7:02:40:2b:d8:1f:c0:ac:e1:fb:a8:bc:b5:39:45:
f8:e8:1c:b5:d0:f1:5d:ed:48:89:6c:9b:87:86:f8:4a:9e:b4:
09:6f:e9:ef:a4:71:63:9a:32:62:55:29:4d:07:9b:68:85:da:
f0:94:15:54:0e:3c:3e:21:f0:e9:61:d7:ed:52:08:ba:e8:26:
05:28:db:b7:4f:65:67:a4:94:c2:17:67:3a:51:a2:72:f3:7e:
91:f2:ac:04:0f:94:49:56:2c:87:2c:99:15:3f:c6:d9:0e:17:
94:de:78:4f:af:2c:2d:ab:0b:3c:ee:b2:50:d4:62:a7:6f:5c:
dc:de:b2:b2:4f:60:ec:34:b2:8b:ef:1c:e0:ea:ff:b2:04:00:
9c:f7:25:84:b2:a1:3b:ad:35:b8:8e:58:c4:1a:02:34:43:87:
7f:4b:ea:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org