Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_Jkec3_utUCZFH9Re8v4HacbB3g.roa
File: _Jkec3_utUCZFH9Re8v4HacbB3g.roa (raw, json)
Hash identifier: A4TDiZHBiZJkvsZdnrXytEkM9Nt6i45CJCI5Vx0dQzU=
Subject key identifier: FC:99:1E:73:7F:EE:B5:40:99:14:7F:51:7B:CB:F8:1D:A7:1B:07:78
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01838CC031E253FB55F98ECAAE9D5B064587
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_Jkec3_utUCZFH9Re8v4HacbB3g.roa
Signing time: Fri 30 Sep 2022 04:55:49 +0000
ROA not before: Fri 30 Sep 2022 04:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 163.5.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8c:c0:31:e2:53:fb:55:f9:8e:ca:ae:9d:5b:06:45:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 30 04:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc991e737feeb54099147f517bcbf81da71b0778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:51:7e:e9:e0:d8:07:35:9f:ba:c7:63:23:7a:
d8:8a:3b:af:5f:c2:38:51:db:35:ea:a3:94:64:18:
df:89:f2:24:76:ad:ed:88:9f:9b:f0:bf:26:ad:54:
cc:f9:bc:a4:f1:3e:80:7d:d2:e1:bc:80:75:fc:b5:
87:02:0c:21:cc:94:77:19:75:6b:67:a4:b5:06:f7:
b2:99:53:35:c5:2a:74:50:a4:73:04:e5:76:0a:59:
ff:08:37:99:a7:8a:92:3d:3e:45:54:53:aa:41:7a:
0b:c6:ed:c5:6b:d0:0d:cc:9e:8e:11:6b:7c:8c:c2:
ab:6c:c2:d0:1e:66:86:15:2a:35:9b:d9:27:69:22:
4a:6b:97:9f:78:6b:2e:cc:a7:93:7d:47:87:68:cf:
56:21:b7:cc:d3:78:a3:4e:46:49:86:af:2d:c9:8d:
f0:28:0c:11:59:3a:83:31:f3:2d:7f:e1:5f:5f:7f:
d1:21:c2:da:8c:4f:93:5d:02:73:4c:83:b2:6a:1d:
3a:c5:c5:8c:84:d1:eb:98:6e:69:5b:3a:50:17:34:
75:25:81:3e:64:45:40:38:69:86:93:6c:6f:41:3a:
4b:86:56:0d:5d:cf:79:f1:1c:89:5d:9d:cc:4f:16:
57:38:b2:89:e6:47:d3:3e:9f:b8:31:96:ab:e6:f3:
f6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:99:1E:73:7F:EE:B5:40:99:14:7F:51:7B:CB:F8:1D:A7:1B:07:78
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/_Jkec3_utUCZFH9Re8v4HacbB3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.235.0/24
Signature Algorithm: sha256WithRSAEncryption
91:17:a4:ba:54:86:e5:3b:5f:af:87:48:1c:2f:68:65:a2:f4:
1a:01:d9:8c:dd:93:1f:8c:06:fa:06:52:36:d0:57:b6:62:6f:
ee:f8:ab:8c:3b:d2:8c:2d:55:97:6c:ae:cd:1b:61:13:5a:ea:
f4:b1:3c:18:6f:ba:61:8f:d7:47:f7:08:d1:f6:82:12:01:3a:
7d:ab:63:1d:78:7f:fe:3c:01:08:a0:9c:0a:29:88:db:26:d3:
94:a3:b3:b9:81:15:aa:d3:69:5e:6c:ef:d2:4a:d8:f9:34:67:
9c:39:8c:9c:ae:14:56:35:d4:33:db:80:0b:40:49:78:91:ac:
9a:94:68:a5:19:f7:00:b0:8a:97:2e:fe:cf:97:f7:23:85:6f:
22:fc:b7:45:9f:2d:54:d7:6a:1d:ae:91:a5:59:6d:48:67:5c:
b6:da:22:52:8e:6a:35:c4:0f:2f:e4:c8:42:8f:db:a0:e3:fa:
cc:a8:55:b2:e8:61:55:7e:60:55:67:71:c9:68:d3:5e:80:c8:
1e:f3:f6:84:72:81:03:a0:2a:b8:8a:ff:64:2c:22:18:04:ef:
8d:8e:1c:d1:1b:c7:e3:2f:08:2f:fc:87:76:c1:9c:c7:9b:d0:
73:75:56:3a:44:73:dc:b4:6f:b3:9d:e3:0d:39:51:16:f3:c9:
14:e1:27:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org