Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bfTUmZNXkoSc2SVZ9G9CAt9BKRA.roa
File: bfTUmZNXkoSc2SVZ9G9CAt9BKRA.roa (raw, json)
Hash identifier: 9miFUjSW3RLK4Gt5xKht04Tnfae7jFjj89DZ+DeDEGc=
Subject key identifier: 6D:F4:D4:99:93:57:92:84:9C:D9:25:59:F4:6F:42:02:DF:41:29:10
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184ECAD0BE13C98958587980360CED640C9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bfTUmZNXkoSc2SVZ9G9CAt9BKRA.roa
Signing time: Wed 07 Dec 2022 13:01:14 +0000
ROA not before: Wed 07 Dec 2022 13:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54252
IP address blocks: 163.5.179.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:ad:0b:e1:3c:98:95:85:87:98:03:60:ce:d6:40:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 7 13:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6df4d499935792849cd92559f46f4202df412910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f8:cb:3e:01:e5:9e:e5:b7:40:a0:fd:00:d3:
6a:dd:91:b1:85:02:85:19:64:12:16:30:95:f5:16:
f0:f4:a9:52:8a:30:5b:65:72:7f:dc:dd:7b:c6:0a:
92:24:c0:13:fd:9f:6c:e9:af:78:78:3b:ba:4e:ae:
52:48:60:af:36:0a:68:f7:d6:d8:8b:8f:f6:6a:c8:
7f:b3:7d:56:7b:d6:99:3e:b9:67:48:43:ca:a1:75:
13:ba:00:59:d9:34:c6:68:93:29:b4:76:8d:cc:3a:
95:61:3e:66:02:c1:8d:be:fe:85:2b:ef:55:d1:89:
99:84:86:0e:4f:47:6a:e1:b3:e6:bc:31:79:c9:1d:
43:24:de:7c:2e:82:8c:cd:44:40:98:0c:28:08:06:
84:33:ee:f7:4a:02:d9:f5:72:32:f4:8d:0f:22:35:
c1:c0:6f:f2:38:7f:1b:7a:97:9f:99:0d:10:b4:86:
35:22:1f:14:44:02:f2:7c:de:ce:9e:0d:f5:86:42:
3a:b0:c0:35:ef:f1:79:25:b7:f5:4c:1a:fa:18:31:
67:bc:fb:af:f7:a7:e1:3e:ac:36:65:fc:a6:7b:e4:
8c:d0:e8:44:43:78:36:07:9f:85:ea:25:28:33:5e:
90:72:21:c1:5e:32:f5:dc:28:e2:4a:df:72:b7:a1:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F4:D4:99:93:57:92:84:9C:D9:25:59:F4:6F:42:02:DF:41:29:10
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bfTUmZNXkoSc2SVZ9G9CAt9BKRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.125.0/24
163.5.179.0/24
Signature Algorithm: sha256WithRSAEncryption
17:82:88:c1:26:76:9f:31:8e:f3:49:c7:93:3e:df:99:fc:49:
7d:ba:02:2a:49:d2:69:a2:d1:bb:0c:c9:24:50:15:0f:80:2c:
8b:43:68:bc:b4:ef:61:e7:67:19:99:b0:71:e2:28:f0:8b:f5:
90:01:e9:f6:e7:ef:e9:54:a6:36:b8:21:36:0f:6b:25:91:29:
ea:a4:dc:5e:11:bb:c9:83:14:b6:ed:03:d9:a4:e4:3e:1d:b0:
a8:5a:02:11:02:26:36:be:4f:5a:ba:08:17:23:ed:33:48:59:
84:ae:55:c3:21:ee:0e:55:b4:81:49:85:c2:0e:44:27:90:7d:
92:6f:0a:23:43:26:d7:5d:34:cd:5e:87:f7:92:fc:8c:b3:fb:
90:53:b6:cd:82:55:f4:80:54:c0:63:c7:b5:66:61:32:6b:04:
b7:93:db:27:5f:31:4f:77:c9:89:c8:ac:01:8e:2c:3d:84:f6:
93:c9:6a:f2:0c:a8:6c:e2:f1:84:da:10:14:75:86:f4:8f:8d:
5d:3e:96:41:7b:42:df:5a:6b:77:67:04:dc:44:01:a3:36:f0:
54:7a:26:00:89:35:dd:63:f4:ec:fe:a7:06:79:cf:af:15:0b:
16:f1:32:34:a6:b1:12:7d:67:51:9c:40:29:62:d8:5b:a2:8a:
69:11:2d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org