Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h2GdwVqNQ9FgLo2lT0YNpLOSb9U.roa
File: h2GdwVqNQ9FgLo2lT0YNpLOSb9U.roa (raw, json)
Hash identifier: 1TcT8DPpXV432MwpNhHYXDRXExzEkDX3H8OnrHmtPss=
Subject key identifier: 87:61:9D:C1:5A:8D:43:D1:60:2E:8D:A5:4F:46:0D:A4:B3:92:6F:D5
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01827E6062B2FB88BAF9FD34CD2D13A25E2D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h2GdwVqNQ9FgLo2lT0YNpLOSb9U.roa
Signing time: Mon 08 Aug 2022 16:53:42 +0000
ROA not before: Mon 08 Aug 2022 16:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 163.5.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7e:60:62:b2:fb:88:ba:f9:fd:34:cd:2d:13:a2:5e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 8 16:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87619dc15a8d43d1602e8da54f460da4b3926fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:43:e8:70:f7:fa:f9:ec:43:88:ad:27:4c:aa:
65:86:92:63:d6:96:6d:de:0a:a9:22:c8:d2:c9:5b:
ad:79:f6:e5:ba:e8:77:37:12:90:b0:a3:c1:0a:23:
36:e3:ce:21:6e:7d:3d:82:ca:45:23:3c:24:d0:00:
39:71:0e:fb:a2:3f:02:3f:58:95:9d:62:61:48:b2:
41:d8:6d:86:be:77:23:22:c8:c5:cc:fc:2b:e0:82:
c3:ae:1b:f5:52:e9:67:90:09:30:7a:05:50:a4:ac:
15:3e:97:4f:bf:6e:99:d3:4d:ea:75:4f:b8:9c:48:
26:4d:c7:3f:4c:17:bc:83:5c:a1:0e:00:63:78:39:
21:6b:5f:18:2d:e1:21:d8:3a:d4:95:6d:32:7a:f8:
2f:b3:a4:81:ee:18:11:f8:dc:2b:61:06:83:af:aa:
2d:dd:c6:83:29:da:3c:c2:92:d0:04:2d:c6:4f:af:
d2:23:30:3c:ab:c3:bd:a6:41:b6:e3:a6:74:23:80:
ee:39:5b:1e:95:ed:28:16:8b:0e:8d:68:1d:e4:66:
f5:10:9c:45:21:41:ea:37:1f:c7:80:13:5e:86:d8:
a6:40:76:6a:9d:70:28:56:85:d7:08:8d:0a:78:6a:
f0:0a:09:be:36:f3:cc:74:4a:23:d8:d2:83:e8:a0:
93:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:61:9D:C1:5A:8D:43:D1:60:2E:8D:A5:4F:46:0D:A4:B3:92:6F:D5
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h2GdwVqNQ9FgLo2lT0YNpLOSb9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.190.0/24
Signature Algorithm: sha256WithRSAEncryption
23:06:5d:e1:03:20:23:ca:ac:de:e0:5b:66:6d:ac:f5:94:0e:
d3:42:63:f7:ff:26:d0:b2:34:d3:14:ca:ae:02:19:d8:0f:9a:
94:3e:96:9c:78:f7:49:36:59:bf:fe:66:cf:cb:9d:e8:0d:49:
25:c7:fb:8a:70:07:fb:bd:82:4c:7b:81:a3:7c:b3:79:be:32:
cf:da:e7:d0:27:14:f4:3c:3b:9b:49:f1:0d:cb:8d:4f:ab:fa:
65:e0:cc:20:bf:68:a6:3c:8a:e9:ea:50:4b:47:46:2b:19:95:
90:1d:59:40:c6:20:33:0d:9f:e6:4f:fc:90:97:61:6f:e0:a5:
14:33:50:0c:58:e7:f0:fd:4f:b5:2b:29:b0:24:3d:85:b8:4a:
20:f4:e7:74:7e:cf:08:a7:0d:dc:23:b5:fd:04:05:5a:c2:c7:
42:50:f6:bd:26:bb:52:68:61:d5:92:8e:5c:ab:44:96:4b:7c:
b0:a8:c3:10:58:80:1c:1c:30:35:cb:b8:90:a8:df:9e:19:be:
ab:ae:cd:78:46:0b:e3:ab:56:37:44:12:5d:c0:b8:2f:bc:30:
ea:d8:52:9c:05:80:c3:0e:e7:2a:2d:10:ae:35:73:16:a8:9a:
ad:e1:af:51:2c:7a:e1:95:ab:63:e6:88:8a:33:79:16:06:83:
c4:e2:f7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org