Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gVfyVKHCe_-jY_EV26HD8KW9F3A.roa
File: gVfyVKHCe_-jY_EV26HD8KW9F3A.roa (raw, json)
Hash identifier: PaSTwaLKKMCnk308gTqDOvi85j/8sZ8VtLXTzi/YqFo=
Subject key identifier: 81:57:F2:54:A1:C2:7B:FF:A3:63:F1:15:DB:A1:C3:F0:A5:BD:17:70
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01836A15F820FBA00F448793770B9CA549C1
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gVfyVKHCe_-jY_EV26HD8KW9F3A.roa
Signing time: Fri 23 Sep 2022 11:22:48 +0000
ROA not before: Fri 23 Sep 2022 11:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 384
IP address blocks: 163.5.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:15:f8:20:fb:a0:0f:44:87:93:77:0b:9c:a5:49:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 23 11:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8157f254a1c27bffa363f115dba1c3f0a5bd1770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:35:5c:d0:6c:96:01:54:cb:e0:a4:10:9d:02:
15:01:db:6b:b2:e8:c2:99:90:26:da:09:d6:a5:b9:
ee:e9:f2:9c:13:b3:99:1d:40:b4:61:8f:9f:8a:60:
e7:05:03:e0:ec:d5:d1:2e:90:ad:36:5b:b5:9a:19:
8c:14:a6:35:f9:ef:0e:4e:2c:fb:0b:f8:88:a1:ec:
73:5d:01:ff:1f:68:6c:cc:20:57:22:b3:f5:40:7c:
97:94:3c:fd:8d:66:07:fd:80:55:95:9e:bd:ab:77:
49:39:98:8b:eb:ec:49:ce:d6:42:26:96:89:d4:39:
12:33:5e:30:25:5f:b2:91:4c:d4:cb:c1:c3:8f:42:
c4:47:26:31:0b:76:41:3d:6e:7a:35:5c:f1:81:e0:
a4:69:21:fc:88:8c:a4:33:59:82:1c:55:49:c7:45:
4f:2f:9f:40:15:50:3f:1f:f2:97:f5:dc:40:f0:ee:
ab:76:6a:30:60:17:3a:da:c8:b0:4e:d8:c8:0b:5a:
60:14:82:42:da:90:d1:3f:b4:39:af:6d:bf:9e:e8:
9e:30:e8:32:22:63:53:56:9e:d0:1a:10:43:8e:db:
99:7d:c9:4d:a5:e8:ad:5a:29:b7:cc:6f:83:34:7a:
7d:58:57:e4:7d:86:af:56:3a:2c:cb:0c:d5:a8:ce:
e6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:57:F2:54:A1:C2:7B:FF:A3:63:F1:15:DB:A1:C3:F0:A5:BD:17:70
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gVfyVKHCe_-jY_EV26HD8KW9F3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.90.0/24
Signature Algorithm: sha256WithRSAEncryption
34:39:0c:2e:e4:fa:1b:93:28:2b:2b:ab:5e:9f:33:52:37:23:
49:85:3f:d8:9b:d7:c2:ad:9c:8c:38:10:1c:11:fb:9d:41:6e:
15:df:29:08:f9:cf:8c:d7:00:d9:06:7e:d8:d6:3f:41:ac:69:
ab:4d:fe:92:4e:a6:7e:3a:a0:ef:e0:7c:31:52:b0:7e:71:e3:
2f:0e:a2:9f:06:f6:ae:11:ef:ac:26:ba:0e:94:3e:64:d9:a3:
b6:91:9a:7e:7a:ad:91:60:a1:f9:90:10:0c:89:60:5a:66:31:
f2:dc:82:fe:58:e1:10:4e:57:65:49:2a:f1:93:4d:a6:ed:c2:
ee:a8:a0:f8:e6:2d:f0:ca:d9:44:30:94:9e:16:39:44:15:78:
93:0c:2b:65:0f:bd:59:bb:6a:a0:7a:02:a6:20:18:92:83:26:
03:a3:fb:80:67:f9:5b:07:9e:cc:73:68:9c:6e:ad:da:ff:7b:
9f:a4:cb:ea:29:e5:34:aa:d9:bf:8a:fd:4a:df:23:88:1f:29:
30:c8:6e:7c:66:a6:9e:53:5d:57:f3:92:42:cb:2c:51:9c:73:
e1:eb:e2:dc:50:30:a3:fe:5a:bc:7f:c6:00:37:52:ac:2a:c3:
5d:fe:96:0b:e4:a5:5f:76:7e:88:f4:eb:ee:20:af:66:9b:8b:
cb:2f:c1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org