Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dnIJ63pueNaxxA3tFxZEtUhpalA.roa
File: dnIJ63pueNaxxA3tFxZEtUhpalA.roa (raw, json)
Hash identifier: R5vc94onOvi2tXgqE+sgSTkAVdYUChmVeGhHwc4P0FI=
Subject key identifier: 76:72:09:EB:7A:6E:78:D6:B1:C4:0D:ED:17:16:44:B5:48:69:6A:50
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018262EF41EEDD29197FAB78256C1F54CA7C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dnIJ63pueNaxxA3tFxZEtUhpalA.roa
Signing time: Wed 03 Aug 2022 09:00:23 +0000
ROA not before: Wed 03 Aug 2022 09:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43431
IP address blocks: 163.5.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:62:ef:41:ee:dd:29:19:7f:ab:78:25:6c:1f:54:ca:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 3 09:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=767209eb7a6e78d6b1c40ded171644b548696a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:0a:b7:5f:40:cb:98:73:73:07:8f:8b:ab:
05:9d:cc:88:6f:09:dc:31:91:dd:dd:19:65:72:23:
b6:ee:13:a5:89:99:6e:c2:cd:f4:c3:a0:32:28:61:
c7:8c:9a:2c:84:2f:67:f1:94:95:eb:ea:e8:e1:eb:
ae:2c:64:99:4b:7b:26:fb:0a:82:5e:d8:b9:39:4f:
23:c6:da:8f:94:67:92:34:c7:7f:8b:ea:b8:c8:31:
a6:ac:ba:e2:83:b4:8b:da:c9:8f:43:07:37:12:a4:
89:7b:d0:08:27:f8:cf:e0:62:50:9b:79:96:97:2a:
ee:87:a8:82:97:93:90:09:24:ba:b7:88:f3:73:f0:
33:68:74:45:14:28:2a:2f:42:4c:48:96:0c:60:a0:
22:36:0b:59:d3:b3:95:99:06:9e:d9:ca:db:9f:cb:
ac:51:f4:27:85:67:73:2f:3f:0f:3b:70:17:82:38:
7e:73:12:eb:b2:95:eb:aa:18:8c:2d:52:b6:0f:d6:
81:7c:e3:91:1b:e7:c8:9a:88:30:45:ed:91:9c:61:
65:4a:60:30:4b:13:e7:2d:80:fe:05:fe:68:99:23:
d1:51:92:7e:4b:50:a8:f3:f7:3e:2e:69:bb:9f:bc:
e9:db:d3:4a:dd:a2:fe:05:7a:33:94:03:bc:49:c9:
d0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:72:09:EB:7A:6E:78:D6:B1:C4:0D:ED:17:16:44:B5:48:69:6A:50
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/dnIJ63pueNaxxA3tFxZEtUhpalA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.193.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8b:59:19:23:f4:39:53:23:e5:bb:87:98:a4:fe:50:7b:af:
09:c1:f2:eb:0a:d8:ab:a1:90:c0:a3:4c:88:38:7d:21:03:49:
21:56:14:a1:24:f0:35:24:f1:4f:42:31:5f:de:92:75:ae:83:
61:06:1b:de:91:1b:b7:07:47:85:99:6b:d1:ad:80:b4:3b:23:
f9:11:5f:98:24:00:ee:7c:af:db:a8:dd:d6:33:88:b7:81:3f:
2f:46:8a:da:70:c7:76:3a:b5:d7:91:51:eb:d7:44:92:c3:4d:
1f:2e:ee:cd:ba:63:fb:16:fd:04:9c:e4:0f:54:ad:46:71:a9:
12:b7:c3:e3:e3:05:07:8c:c6:f4:7a:71:0e:d9:6d:d7:84:41:
cf:5e:4a:e4:35:b7:76:1a:b4:53:ee:14:7b:7b:01:60:27:4c:
4c:bd:0a:81:d5:43:d5:54:cd:66:d9:28:4d:5d:41:09:1a:ca:
b6:b9:a8:90:de:fd:56:5e:77:eb:d1:e9:49:5a:70:ca:29:95:
06:81:c6:81:41:e3:90:35:a8:75:df:31:22:c9:ea:80:f2:15:
b5:42:ca:06:2f:cd:e8:da:ab:32:62:5f:e9:bf:f6:47:d0:34:
61:aa:92:5b:69:5b:3e:8f:8b:41:c4:c9:9d:64:9e:58:0b:7c:
e9:4e:a8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org