Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dY1YK1SrUJz35XAMEf77MPU1dg4.roa
File: dY1YK1SrUJz35XAMEf77MPU1dg4.roa (raw, json)
Hash identifier: cyusZYbVd3QHT+HbGgyBGN1iAkdQ94M9x4xhI3Ca3nA=
Subject key identifier: 75:8D:58:2B:54:AB:50:9C:F7:E5:70:0C:11:FE:FB:30:F5:35:76:0E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184A43FD186788592A4AACC8D07AD3D820A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dY1YK1SrUJz35XAMEf77MPU1dg4.roa
Signing time: Wed 23 Nov 2022 11:29:16 +0000
ROA not before: Wed 23 Nov 2022 11:29:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 163.5.101.0/24 maxlen: 24
163.5.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:3f:d1:86:78:85:92:a4:aa:cc:8d:07:ad:3d:82:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 23 11:29:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=758d582b54ab509cf7e5700c11fefb30f535760e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b2:c7:26:94:e4:bb:00:8a:f5:55:e9:fb:42:
f4:83:42:d4:b9:42:37:5b:ca:e8:1a:60:8e:83:2e:
36:1c:93:9d:e6:7e:7f:15:5a:b6:61:22:fe:ac:12:
f9:cb:33:8c:74:d3:3a:4c:34:50:69:3e:25:b4:76:
3d:2e:b0:81:69:c2:81:c8:2c:29:12:8d:6c:42:22:
36:b2:93:da:63:8a:fd:03:23:0a:1d:63:6a:b3:8f:
09:10:0a:68:6b:50:fb:5c:8e:8f:2b:04:1a:49:3e:
a7:45:38:75:e6:ed:52:06:d6:36:1c:7c:b4:5f:2d:
d1:1b:8e:ac:56:81:7d:a2:05:f4:e5:b7:74:c8:aa:
bd:eb:1f:ce:bc:13:2d:2a:e0:0b:cd:94:56:d6:2e:
29:9f:55:fd:1f:58:13:db:49:1a:c9:99:a8:1a:21:
92:9f:5f:47:6e:54:9d:6e:6e:82:ca:9d:11:73:ac:
da:b5:9a:64:ed:9f:63:aa:f4:f1:e7:c0:c0:f4:2b:
97:c1:60:5a:0b:2d:68:03:03:c9:6b:ee:95:5c:1d:
d9:32:ea:8b:cb:0d:7b:99:77:5a:54:35:1e:ba:df:
a5:ae:5d:fa:e5:67:97:f3:43:ad:53:86:5c:ca:fa:
51:7c:e7:b2:87:0b:a2:3a:dd:44:e1:e4:6d:49:8f:
0d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8D:58:2B:54:AB:50:9C:F7:E5:70:0C:11:FE:FB:30:F5:35:76:0E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dY1YK1SrUJz35XAMEf77MPU1dg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.101.0/24
163.5.215.0/24
Signature Algorithm: sha256WithRSAEncryption
34:aa:81:32:14:bc:62:b1:8a:5b:1d:de:5b:ca:5c:10:05:c0:
ab:0f:1b:72:05:a4:53:c2:18:44:17:37:40:b2:63:f8:3a:d7:
63:4c:e5:5c:80:d1:d9:60:8a:d7:f2:db:44:64:3d:6e:99:0f:
e3:49:ed:28:33:6c:e7:aa:11:6f:c9:07:7c:46:f3:5b:0b:a0:
71:7a:e8:c8:aa:82:ed:57:ac:05:5d:0b:82:94:84:2f:a4:e5:
d3:10:f7:f4:e5:f2:13:66:36:f9:bc:37:a9:34:ea:6c:9d:07:
01:59:45:15:8b:37:1a:8c:b8:a5:fc:4c:4e:23:6b:81:86:e4:
9d:f8:df:e0:ec:cb:44:6f:1d:e7:bb:aa:62:fb:98:a2:7a:f6:
a8:4b:dd:19:d7:66:53:a5:26:10:28:7a:66:9d:36:29:0c:c4:
68:8f:23:c9:3b:ed:d5:17:63:fb:21:f5:28:17:cf:21:35:dc:
ec:01:af:47:15:c9:5e:50:f3:6e:dd:22:af:91:f4:26:ca:a0:
11:61:ed:2f:0a:dd:9e:1e:b5:92:7a:46:f7:7c:13:f3:d9:a8:
4f:bf:0f:a0:90:37:63:c2:f0:cd:61:18:9a:54:47:45:a6:b2:
ba:6f:8c:bc:6c:13:53:96:e9:2d:7c:3c:97:60:6b:db:48:7d:
40:51:3d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:07 2024 by rpki-client on console-fra.rpki-client.org