Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZUQmaqUfGDzSLalJ8jwIxaZwuN4.roa
File: ZUQmaqUfGDzSLalJ8jwIxaZwuN4.roa (raw, json)
Hash identifier: 1ZQwgTO3opyPqti+yA0FfHMBIsQXsWRniuzK2hxYbTQ=
Subject key identifier: 65:44:26:6A:A5:1F:18:3C:D2:2D:A9:49:F2:3C:08:C5:A6:70:B8:DE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01821EB214BECE920D22FDBA9150986DF80F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZUQmaqUfGDzSLalJ8jwIxaZwuN4.roa
Signing time: Thu 21 Jul 2022 02:59:23 +0000
ROA not before: Thu 21 Jul 2022 02:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 163.5.127.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1e:b2:14:be:ce:92:0d:22:fd:ba:91:50:98:6d:f8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 21 02:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6544266aa51f183cd22da949f23c08c5a670b8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:88:af:77:4e:1c:b8:74:b4:0c:f7:15:5a:
e0:b0:18:c9:84:80:8f:fd:d2:90:67:77:48:7e:3e:
7b:b9:97:32:03:7a:c8:80:a0:f1:a4:16:d8:96:0a:
84:9b:7a:37:db:62:a2:17:f8:ec:7b:67:55:2a:9c:
35:b2:a3:e7:eb:b3:64:82:a9:19:44:45:61:7d:4a:
4c:16:14:36:5f:9e:6e:44:ce:8f:4c:30:21:99:78:
14:34:64:b4:c8:7c:7f:63:96:fd:a3:fc:0b:65:09:
02:0c:29:ef:69:6a:9b:2c:c7:d0:d7:aa:d2:f1:9c:
eb:a3:b1:71:b6:53:50:22:08:1b:a7:6c:95:3d:f1:
90:75:a4:97:8f:5a:3c:e0:af:a2:59:e6:74:47:c9:
82:de:07:cb:3f:e5:a2:cc:26:5c:23:49:16:ea:e5:
cb:aa:2e:58:fa:3c:07:b2:7e:64:c0:ea:ca:da:76:
0b:36:c8:00:02:a0:81:2f:0d:cb:f6:02:3d:af:a8:
bc:7e:48:8e:f8:83:ef:3c:4a:9d:c1:54:91:30:f8:
e2:1b:ff:de:02:ea:cf:ba:91:17:e2:9e:67:3a:8e:
7f:ce:81:de:20:e3:93:9e:34:e4:41:8d:09:7a:ab:
b0:df:cb:c7:86:eb:e2:b3:6f:8d:23:ba:c2:48:c6:
1a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:44:26:6A:A5:1F:18:3C:D2:2D:A9:49:F2:3C:08:C5:A6:70:B8:DE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZUQmaqUfGDzSLalJ8jwIxaZwuN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.127.0/24
163.5.132.0/23
Signature Algorithm: sha256WithRSAEncryption
98:d3:9f:e2:32:76:d7:59:c8:06:65:d8:27:9f:bb:82:cb:5f:
b9:3c:fa:a7:e3:c2:54:80:a2:c6:1d:24:ce:2d:ac:00:9a:f4:
6b:06:ae:8a:73:52:87:48:05:9f:67:b3:a1:fe:3f:b8:d5:6b:
b0:9e:26:26:37:73:b9:e8:12:f1:b1:61:16:63:e5:00:89:41:
a4:c4:be:fa:74:b3:69:5d:fc:09:46:d4:2d:bf:b9:0b:17:13:
c0:b9:88:82:67:ff:8d:2c:75:e6:c8:68:2d:72:94:45:dc:e7:
e9:8f:a9:88:cb:2f:4c:5c:6a:74:20:c1:9b:d7:34:50:2c:42:
78:8a:b8:79:08:38:d2:9f:f5:ee:55:72:71:1a:cd:be:f8:e0:
52:55:e4:fb:e7:27:2d:95:c5:70:24:7c:50:68:7c:59:a5:60:
e1:68:d0:99:03:27:6c:a4:42:72:41:e4:ca:2f:6e:ba:bd:00:
2a:97:77:95:fe:7c:9a:fa:b3:c1:54:d9:8f:c0:b3:63:74:2b:
a1:c4:cb:eb:d1:a2:9e:c1:a2:a0:b7:d8:cf:ed:b9:60:ee:ca:
84:62:be:ff:cb:f4:59:a3:13:54:06:64:67:37:10:39:3c:aa:
72:37:7e:e6:20:f1:d2:bb:23:e7:46:ac:b4:64:d4:6d:47:5f:
1e:20:b9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:06 2024 by rpki-client on console-fra.rpki-client.org