Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XOrfu3WxQ1fEnFcovHGcvoEr2mI.roa
File: XOrfu3WxQ1fEnFcovHGcvoEr2mI.roa (raw, json)
Hash identifier: R0xzvpK4El3sUD+k1vQzYwohfSR1lNB7sKfgNQ+1pv0=
Subject key identifier: 5C:EA:DF:BB:75:B1:43:57:C4:9C:57:28:BC:71:9C:BE:81:2B:DA:62
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01825861889A706FE873A07732958B04B016
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XOrfu3WxQ1fEnFcovHGcvoEr2mI.roa
Signing time: Mon 01 Aug 2022 07:49:23 +0000
ROA not before: Mon 01 Aug 2022 07:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 163.5.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:61:88:9a:70:6f:e8:73:a0:77:32:95:8b:04:b0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 1 07:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ceadfbb75b14357c49c5728bc719cbe812bda62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:29:71:9a:f5:63:6a:dc:07:4e:3b:cc:c2:2a:
6a:ff:66:fd:09:af:20:e7:44:e6:be:5f:28:97:65:
b5:b1:9c:47:29:cd:85:ff:61:99:c5:2d:e3:4a:af:
f4:c6:54:cc:6d:05:3a:56:35:5d:7e:93:84:12:3e:
73:ba:e0:54:5e:4e:bd:a4:d8:16:e7:65:29:22:2c:
90:b5:41:e5:8a:ed:7d:e4:56:f9:c4:7b:b0:60:74:
5e:9e:46:98:c6:e9:d0:43:d0:fa:38:35:e4:98:d9:
9b:b2:cd:30:ed:b6:9d:f3:7d:00:ca:a3:9b:8b:ca:
26:cf:3d:8d:75:30:e6:1d:98:ea:6d:10:27:5e:8c:
fb:f0:1d:92:f1:a9:1d:c9:c5:20:a0:3b:01:be:73:
bc:8e:55:60:90:c5:64:f0:1d:a0:4b:a4:9e:d4:c5:
bd:4e:c8:87:56:b3:7a:62:b6:f9:c4:c4:86:46:33:
5f:c1:d4:e7:82:5a:95:17:9f:87:01:fb:64:68:a0:
83:1b:48:fe:00:d9:dd:18:00:e0:66:97:db:47:af:
26:a0:67:98:75:96:f8:ef:27:83:5e:b3:90:cd:8c:
2a:6b:e5:d7:66:6e:26:c6:59:7b:41:72:e5:44:c4:
b5:d0:82:a5:65:3a:c4:53:4b:02:c0:89:45:f9:3e:
04:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EA:DF:BB:75:B1:43:57:C4:9C:57:28:BC:71:9C:BE:81:2B:DA:62
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/XOrfu3WxQ1fEnFcovHGcvoEr2mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.167.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e2:ab:d2:cd:6d:7d:2c:a5:25:22:4d:c1:e3:94:95:5a:00:
f3:34:05:52:4f:3e:36:d3:dc:b5:68:db:72:6b:ec:c1:3d:ed:
0e:2c:1e:cc:ea:e6:03:aa:41:1b:17:5c:8d:40:9b:ea:aa:bc:
2a:ff:de:f1:0f:d4:94:e9:91:f5:92:61:98:4d:db:e3:6a:b4:
81:b5:df:23:d1:5f:bb:71:76:1b:fe:68:a7:e3:ba:e2:cf:e2:
0f:ef:93:7e:91:30:12:6e:39:88:8e:27:e5:a6:e4:0c:9d:03:
20:09:6e:5a:89:6b:79:7c:dc:54:d3:b8:b2:03:95:fc:fa:19:
ab:b9:f7:58:e8:91:17:a7:8f:4b:15:5d:c3:ef:e6:e4:7a:00:
f9:f8:2e:67:2c:52:81:f9:d4:c1:52:1a:75:4c:0d:05:97:7b:
55:9c:32:28:74:c7:81:cb:dc:61:dd:a8:8a:fe:07:df:65:aa:
fa:40:31:35:ac:5e:1c:78:f5:49:9b:92:80:74:b0:aa:6c:30:
8b:1a:ea:5c:6a:89:15:24:2f:d9:11:fb:4d:6b:ad:33:91:f3:
4c:7b:6b:9b:cb:c1:ef:84:e9:39:09:cb:f0:58:88:85:42:07:
fa:ce:e0:b4:04:68:95:2f:42:d1:a6:18:18:22:39:a0:c1:c5:
3b:a9:70:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org