Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bqqFe0oQa1dbn1-JaAfDGB86pig.roa
File: bqqFe0oQa1dbn1-JaAfDGB86pig.roa (raw, json)
Hash identifier: hcXA4+0nEE83ODxtHgTIqhxXQ03dvh08dR3V0WCJnq8=
Subject key identifier: 6E:AA:85:7B:4A:10:6B:57:5B:9F:5F:89:68:07:C3:18:1F:3A:A6:28
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018418C705774547572054D7CCFE5B29E350
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bqqFe0oQa1dbn1-JaAfDGB86pig.roa
Signing time: Thu 27 Oct 2022 09:30:06 +0000
ROA not before: Thu 27 Oct 2022 09:30:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 163.5.192.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:c7:05:77:45:47:57:20:54:d7:cc:fe:5b:29:e3:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 27 09:30:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eaa857b4a106b575b9f5f896807c3181f3aa628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5e:2f:ba:1c:54:5d:2a:36:81:ae:76:9b:1b:
2a:1c:36:35:c5:8f:61:0b:ed:c9:16:cc:7c:2a:1f:
5b:a5:9c:d1:5e:78:e6:db:41:7f:65:be:05:45:cc:
6f:5c:c0:a7:d2:ae:88:e5:f9:97:68:1b:ee:17:c4:
23:cc:84:3d:cd:8b:e4:7b:18:bb:31:d3:5b:36:b7:
e6:11:e6:7e:40:bf:ef:25:87:13:cb:dd:d2:b4:5d:
7a:71:6c:0a:e8:c6:b7:40:24:8a:1d:0d:60:0d:e8:
b9:d4:d1:11:ae:7e:05:d3:7d:b3:3f:32:9f:d4:0a:
c5:74:e1:dd:1d:f5:f0:59:87:fc:75:21:d4:22:0b:
d4:d2:49:8b:ba:03:ae:55:c2:e7:0c:0d:db:d8:3d:
f3:2e:ff:a3:0d:60:d1:1b:75:60:4d:88:1e:02:98:
5c:f9:e9:50:c5:cf:e0:40:fd:86:c9:ff:1e:5d:7a:
81:e1:b9:e6:94:a0:79:72:52:98:83:88:bb:49:57:
46:3d:32:15:07:10:d3:bb:39:8d:73:cc:c1:3a:6c:
37:4f:6c:c1:47:89:79:15:07:1d:3b:fb:c7:f2:c0:
b9:f8:5e:e7:4a:c5:07:23:bb:69:fa:ac:b8:40:42:
02:10:46:9d:0e:69:2b:ad:bc:fa:4f:7e:50:01:10:
52:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AA:85:7B:4A:10:6B:57:5B:9F:5F:89:68:07:C3:18:1F:3A:A6:28
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/bqqFe0oQa1dbn1-JaAfDGB86pig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.120.0/24
163.5.192.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:9d:22:81:45:0c:5a:c6:35:95:f8:fd:f4:9b:94:1c:66:b4:
51:46:cf:f8:b6:aa:78:3e:d0:c1:8c:44:57:3f:48:1f:27:9c:
09:4a:e2:34:09:00:f3:9f:07:74:2b:a9:3d:22:f3:84:4c:3a:
20:c5:8a:ee:09:19:43:4b:47:4a:55:de:f1:a3:b4:b8:95:59:
b4:99:0c:98:44:b2:f0:08:40:33:cf:ac:1d:29:46:9e:d0:dd:
56:f2:93:0b:c5:2b:58:12:51:1a:b7:86:51:8d:b3:f1:e0:6f:
cf:3e:e1:b8:b7:24:5d:2c:16:fb:71:0d:3b:c4:04:a5:b5:75:
05:ad:71:e9:65:59:61:b6:0a:4c:4a:c8:ba:fa:56:51:8f:d8:
17:b4:5c:79:0b:d4:d1:48:f3:60:28:95:3b:7d:c8:28:04:5c:
06:9f:fd:6e:a8:86:87:3f:7d:d5:35:3b:94:d6:10:18:d2:08:
8f:56:3d:74:87:99:b3:82:3a:99:50:1c:a3:6c:8f:07:e9:b6:
d7:c6:bf:49:e2:99:c7:16:80:3e:b9:4a:41:e0:c6:07:d4:d1:
0f:99:04:92:87:46:b7:fe:b8:07:7e:6c:f0:ac:7a:0b:30:d3:
47:e0:24:58:26:5d:f9:d2:28:89:fb:78:ef:73:1b:2a:bf:71:
67:eb:80:4e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYQYxwV3RUdXIFTXzP5bKeNQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMDI3MDkzMDA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWFhODU3YjRhMTA2YjU3NWI5ZjVmODk2ODA3YzMxODFmM2FhNjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl14vuhxUXSo2ga52mxsqHDY1xY9h
C+3JFsx8Kh9bpZzRXnjm20F/Zb4FRcxvXMCn0q6I5fmXaBvuF8QjzIQ9zYvkexi7
MdNbNrfmEeZ+QL/vJYcTy93StF16cWwK6Ma3QCSKHQ1gDei51NERrn4F032zPzKf
1ArFdOHdHfXwWYf8dSHUIgvU0kmLugOuVcLnDA3b2D3zLv+jDWDRG3VgTYgeAphc
+elQxc/gQP2Gyf8eXXqB4bnmlKB5clKYg4i7SVdGPTIVBxDTuzmNc8zBOmw3T2zB
R4l5FQcdO/vH8sC5+F7nSsUHI7tp+qy4QEICEEadDmkrrbz6T35QARBS8QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFG6qhXtKEGtXW59fiWgHwxgfOqYoMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvYnFxRmUwb1FhMWRibjEtSmFBZkRHQjg2cGlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowV4AwQA
owXAMA0GCSqGSIb3DQEBCwUAA4IBAQBrnSKBRQxaxjWV+P30m5QcZrRRRs/4tqp4
PtDBjERXP0gfJ5wJSuI0CQDznwd0K6k9IvOETDogxYruCRlDS0dKVd7xo7S4lVm0
mQyYRLLwCEAzz6wdKUae0N1W8pMLxStYElEat4ZRjbPx4G/PPuG4tyRdLBb7cQ07
xASltXUFrXHpZVlhtgpMSsi6+lZRj9gXtFx5C9TRSPNgKJU7fcgoBFwGn/1uqIaH
P33VNTuU1hAY0giPVj10h5mzgjqZUByjbI8H6bbXxr9J4pnHFoA+uUpB4MYH1NEP
mQSSh0a3/rgHfmzwrHoLMNNH4CRYJl350iiJ+3jvcxsqv3Fn64BO
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org