Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fOlHOQAg6OJy193QAS954iLLV9c.roa
File: fOlHOQAg6OJy193QAS954iLLV9c.roa (raw, json)
Hash identifier: 6GGQ+awxPDq0qW4ZJ9R15Ia9oF/fcTPWmzHxGhGaMdY=
Subject key identifier: 7C:E9:47:39:00:20:E8:E2:72:D7:DD:D0:01:2F:79:E2:22:CB:57:D7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018404C900ED2E7AC33B0D5BF0A6AFB21379
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fOlHOQAg6OJy193QAS954iLLV9c.roa
Signing time: Sun 23 Oct 2022 12:19:52 +0000
ROA not before: Sun 23 Oct 2022 12:19:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138687
IP address blocks: 163.5.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:04:c9:00:ed:2e:7a:c3:3b:0d:5b:f0:a6:af:b2:13:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 23 12:19:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ce947390020e8e272d7ddd0012f79e222cb57d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cc:b4:da:80:c1:88:79:8b:92:b5:28:63:9e:
f4:a1:be:0b:61:ac:c7:76:ea:7d:7e:f1:b4:06:d8:
d9:a2:b9:f1:86:dc:9f:ae:e1:41:d7:d7:a6:58:4c:
c7:6b:b9:bd:8b:89:e2:c2:70:00:3b:bd:5c:ce:9d:
8b:30:ac:57:f0:7e:18:56:38:a4:5a:37:9c:23:1e:
f3:e2:9a:4f:c3:ec:9d:d0:b3:9a:75:81:fc:69:82:
c7:88:4e:f1:c5:15:0a:26:bc:fb:a7:ff:1c:05:23:
7b:bf:47:f7:9b:83:e7:8c:ba:56:67:b6:41:ab:5a:
bb:c3:ca:34:6c:1f:35:d1:b2:cc:52:83:78:7f:23:
fa:20:87:06:76:34:06:b4:14:66:82:31:42:51:70:
36:43:12:42:d3:9b:a0:83:20:48:3d:ee:e9:e5:07:
40:9e:00:a9:c7:4c:bf:3e:b3:04:37:6e:52:51:b2:
95:cc:a1:88:48:c9:88:cc:bf:f5:1c:d6:28:d3:93:
4d:f8:37:f1:59:1b:42:67:93:b0:4b:ad:e3:55:e0:
9a:9d:da:94:fd:4b:9b:a2:ff:c7:8e:34:4e:3b:ca:
a1:0e:00:1b:13:64:e4:7d:e3:13:ae:52:8a:33:d9:
4f:b8:f5:b4:38:ca:89:a7:23:f6:3e:2c:2e:18:ec:
3d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E9:47:39:00:20:E8:E2:72:D7:DD:D0:01:2F:79:E2:22:CB:57:D7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/fOlHOQAg6OJy193QAS954iLLV9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.237.0/24
Signature Algorithm: sha256WithRSAEncryption
37:cc:31:0d:46:94:1f:dd:9e:03:04:2c:89:5c:2f:75:db:5b:
46:90:88:60:f4:0a:12:da:93:7e:c1:c5:fb:5e:da:27:d0:b5:
c1:78:ba:37:32:27:00:bd:aa:b9:4a:62:c1:71:3b:de:87:25:
d2:3e:b8:34:98:ab:5b:e8:c9:a5:dd:26:eb:00:37:76:7a:04:
6b:26:4f:89:35:2c:c2:2c:3b:01:1e:74:e2:42:db:5e:01:b2:
31:8b:33:9e:81:77:ab:47:a0:e6:3e:49:57:43:5f:57:97:2b:
5b:15:e6:78:f6:8e:3c:ab:eb:d1:28:09:e9:b7:f0:c5:b6:72:
57:99:32:56:2e:7d:12:9c:8a:bb:8b:74:bb:c0:88:42:18:82:
86:80:af:d5:cf:fa:80:9e:6d:be:a8:71:9c:ea:84:52:cc:be:
5c:23:cc:6b:ba:15:5c:2e:0d:20:9e:74:dd:7d:51:14:37:41:
69:1c:c1:d2:35:4b:53:fc:5b:dc:85:0a:ca:75:48:b6:7e:f8:
9f:ae:3c:c6:4f:78:69:fd:4f:ad:7a:a2:09:2e:b0:a9:90:63:
7b:50:99:e6:49:0b:50:26:16:43:a3:18:6a:20:cc:b2:f8:70:
64:72:5e:54:84:d0:19:27:88:17:58:8c:1c:54:d5:c4:9e:cd:
80:bb:0c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org