Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/aFMDZ0nzpbdk9qedEvgzRtkVhyQ.roa
File: aFMDZ0nzpbdk9qedEvgzRtkVhyQ.roa (raw, json)
Hash identifier: MS6EWVjXYsO8n1sn4Gr2mikVJdQ6DZKSXOUc2E/ygWc=
Subject key identifier: 68:53:03:67:49:F3:A5:B7:64:F6:A7:9D:12:F8:33:46:D9:15:87:24
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018558F45958879A4699FF782DE802BE63C4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/aFMDZ0nzpbdk9qedEvgzRtkVhyQ.roa
Signing time: Wed 28 Dec 2022 13:38:06 +0000
ROA not before: Wed 28 Dec 2022 13:38:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 163.5.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:f4:59:58:87:9a:46:99:ff:78:2d:e8:02:be:63:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 28 13:38:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6853036749f3a5b764f6a79d12f83346d9158724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:11:b3:5b:07:0d:76:3a:1a:c0:15:62:d4:86:
0b:62:84:3a:0d:47:71:1f:bb:5d:5a:78:5b:cb:40:
92:df:a5:74:4b:4c:2b:b6:49:e3:9c:bb:77:61:ff:
e2:90:fa:09:33:b8:ad:36:3b:51:46:70:98:19:b1:
83:d2:18:40:56:e0:f7:a8:5f:f4:95:3b:bb:03:11:
17:f7:a9:ef:53:ea:c0:5e:1f:b1:10:9a:c1:9a:9e:
ab:40:fe:54:83:64:97:50:06:fb:bf:57:4c:bc:eb:
03:c4:54:d8:64:49:47:d9:19:b3:41:33:6d:dc:ed:
c5:7f:98:c6:e9:f3:8c:e7:cd:6e:4c:bf:12:28:ac:
bb:81:a9:c8:63:07:29:aa:34:ab:d1:1f:b1:0f:f2:
6b:83:9b:1e:e3:18:fa:54:77:8d:52:b3:76:93:cd:
44:3e:f6:2e:e3:0e:9c:70:f7:67:df:59:e2:37:a9:
0c:06:36:90:1c:16:b0:9c:72:65:72:9f:ad:6a:73:
f1:98:28:13:4e:e4:06:6a:2d:ff:b0:d5:7d:11:0f:
3a:26:97:0f:af:e9:b9:55:ee:96:cc:59:e7:b1:80:
ca:a7:cf:a2:a0:57:24:22:d2:e8:b0:4f:2d:3a:01:
21:f5:e5:0e:80:74:d6:34:65:9c:eb:84:e7:ed:9d:
6f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:53:03:67:49:F3:A5:B7:64:F6:A7:9D:12:F8:33:46:D9:15:87:24
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/aFMDZ0nzpbdk9qedEvgzRtkVhyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:c7:49:6a:94:5e:7c:91:ce:4e:77:41:84:61:34:73:40:79:
5a:53:70:23:c0:34:08:9b:7b:ef:f2:90:45:ea:50:57:bd:a5:
5a:31:e2:44:07:66:24:96:92:ed:07:9b:45:42:1a:62:2c:23:
02:92:50:63:a9:1a:fb:b7:fe:ad:fc:2c:a4:f8:79:67:f2:ab:
57:4a:87:2a:70:15:d1:d8:fa:a8:77:06:cb:97:80:d4:ae:76:
c8:43:9b:5c:0f:33:e0:1e:40:b5:0d:fd:66:52:0c:24:a8:f5:
87:64:f3:a5:57:22:e5:f7:e9:b3:d4:ee:bf:70:f9:06:2b:80:
e1:ce:e4:3b:d4:48:b8:3b:37:bf:8e:b5:5b:9c:9b:18:36:09:
e0:a3:42:a6:be:59:f8:a3:91:4d:90:f9:d5:b1:93:58:cb:04:
37:be:b7:08:bd:94:06:12:25:cb:b6:a8:b9:e2:c0:7c:a8:58:
0a:87:29:96:11:d0:21:e2:88:d0:2a:93:8e:83:a3:15:08:3a:
4a:c4:8e:aa:e8:4c:ab:dc:c5:a2:2e:cc:89:0e:a8:d8:4f:fa:
74:db:a6:3e:fb:6f:11:e1:88:d3:e1:89:4f:b5:20:46:88:d7:
6f:d3:6f:93:58:1b:0d:18:53:5e:44:7e:56:02:a6:3e:28:cc:
f5:33:f4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org