Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fCkh3gxM2On0a67FMvRcA2ztYww.roa
File: fCkh3gxM2On0a67FMvRcA2ztYww.roa (raw, json)
Hash identifier: bpHTDPoahoZFh+nobibUXJaQKkA2Ofl2pGX+4hhs84w=
Subject key identifier: 7C:29:21:DE:0C:4C:D8:E9:F4:6B:AE:C5:32:F4:5C:03:6C:ED:63:0C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018500EBA40BBB82590194614413AAFE2E89
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fCkh3gxM2On0a67FMvRcA2ztYww.roa
Signing time: Sun 11 Dec 2022 11:22:00 +0000
ROA not before: Sun 11 Dec 2022 11:22:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 163.5.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:00:eb:a4:0b:bb:82:59:01:94:61:44:13:aa:fe:2e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 11 11:22:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c2921de0c4cd8e9f46baec532f45c036ced630c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:06:95:ab:e2:6a:3c:f5:59:71:35:0a:b2:
78:61:62:60:b2:6c:09:60:b1:60:fe:7f:4f:7e:08:
72:2e:6a:e0:58:39:fd:f5:d6:63:fd:4f:53:a0:8f:
d4:eb:90:f9:65:be:cf:ad:0c:9c:9c:f5:98:7f:85:
37:c6:08:86:3e:8d:58:3b:1e:19:6d:f8:58:a7:60:
2c:7d:8b:c1:e3:d4:ba:4b:e5:eb:31:60:7e:1b:e7:
a6:ed:ba:a1:0a:2f:2e:4f:64:b4:f7:c1:d5:a5:76:
3f:d9:90:43:d0:60:a5:7c:7d:ba:a3:dd:8c:d3:c2:
f9:0e:70:97:41:66:fa:cf:75:81:87:44:1d:4f:d4:
c3:62:f6:ec:91:3a:26:dc:c1:96:26:e5:0b:9a:a4:
22:0d:4f:f4:73:b3:c4:9c:9e:76:af:0d:27:27:12:
17:fd:80:d3:54:0c:a3:aa:3b:c6:41:a8:e4:6b:15:
32:b1:1a:a3:cf:fa:0e:48:fb:de:08:57:f7:22:b9:
d6:24:eb:58:d5:ef:dc:5f:0d:b0:15:c6:63:b9:50:
08:00:52:5d:31:06:88:2d:80:9c:60:e3:01:43:01:
82:ef:ee:84:86:01:bd:73:2d:0f:6a:73:da:84:b1:
b7:ee:0a:29:08:b2:da:8a:3f:94:9a:5d:5b:d3:36:
5a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:29:21:DE:0C:4C:D8:E9:F4:6B:AE:C5:32:F4:5C:03:6C:ED:63:0C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fCkh3gxM2On0a67FMvRcA2ztYww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5b:cf:ae:4c:69:be:fe:66:28:5c:a0:25:d8:fb:45:ef:0b:
ff:03:fb:f2:76:1c:00:3e:d4:aa:85:ea:7a:7a:0a:83:fa:f8:
3a:a1:ad:fb:0a:0d:af:c0:ed:d7:14:1c:50:f6:ef:69:77:c1:
af:a3:31:25:e2:97:bb:bd:99:34:db:05:f6:f1:8a:d6:36:81:
3a:18:f5:20:ad:47:04:54:b5:2d:7a:20:ee:db:ec:2d:b2:fb:
0e:25:33:61:24:3f:5c:97:3e:8b:50:32:58:4a:b9:55:6c:e1:
a6:84:a9:e6:bd:59:66:f8:f2:61:b5:ef:72:1b:56:cb:9f:49:
45:5c:23:03:0b:a0:17:1f:b0:47:cc:48:59:3c:b5:ab:38:c9:
48:dc:83:df:b2:11:a7:bc:e2:1e:91:5d:66:02:78:2b:f8:17:
5c:ae:65:21:98:a2:fb:a7:a7:a8:e9:f3:26:50:5d:57:ec:f3:
60:1f:4c:25:0b:8b:71:cf:ee:56:44:11:be:35:1d:5c:2c:01:
3d:39:19:fb:7c:f0:f8:2e:8a:25:4e:e0:18:54:0a:6c:11:dc:
77:da:c4:91:16:86:d4:27:bc:2c:e9:f0:c1:6e:e1:40:32:63:
0b:12:70:75:75:59:dd:f0:60:7a:61:b8:d4:d6:4b:24:e7:02:
86:7f:6d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org