Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hGmRW0yhM1FnvEIrO7MRdodhXF4.roa
File: hGmRW0yhM1FnvEIrO7MRdodhXF4.roa (raw, json)
Hash identifier: 22C+IHPEhV5MXVooYkmD8T91d07id63+ktFJAS9gQvQ=
Subject key identifier: 84:69:91:5B:4C:A1:33:51:67:BC:42:2B:3B:B3:11:76:87:61:5C:5E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182376FB1C94DD3CD1B4DDB7BCF919AD16F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hGmRW0yhM1FnvEIrO7MRdodhXF4.roa
Signing time: Mon 25 Jul 2022 22:17:23 +0000
ROA not before: Mon 25 Jul 2022 22:17:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 163.5.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:6f:b1:c9:4d:d3:cd:1b:4d:db:7b:cf:91:9a:d1:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 25 22:17:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8469915b4ca1335167bc422b3bb3117687615c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:82:59:1f:d2:59:3f:bc:ef:1c:17:d8:60:8c:
77:2d:64:0d:da:7b:f2:af:de:7d:95:91:84:15:94:
8a:42:9a:9f:25:1b:24:7c:79:59:62:8b:5c:b5:8e:
c7:01:20:4f:c8:36:15:3a:6a:ea:71:eb:33:30:1a:
1c:4d:a9:58:09:3d:76:c7:93:38:cc:de:73:96:7b:
97:ac:b6:35:d8:9b:d3:83:f2:8d:d7:d5:9f:0f:59:
c3:fc:34:fc:87:72:89:37:34:60:6e:25:4f:53:62:
d5:5a:80:70:25:ec:8e:8b:e7:ce:4c:d3:3c:50:4f:
83:cb:f4:86:da:74:d7:58:14:7f:bf:66:6e:ad:e7:
9c:85:2a:84:a1:f5:62:53:09:83:4a:35:a5:32:8f:
85:5f:36:ff:10:11:71:fc:3a:22:77:87:fe:fb:12:
42:d1:89:63:fa:56:5a:f4:53:d9:8a:cb:73:1d:5e:
7d:17:0c:90:75:e6:a8:62:c7:bb:96:fe:71:06:3d:
a7:72:9c:ef:23:fe:3d:ff:e1:67:23:1d:16:45:39:
b2:ca:c3:eb:80:57:d7:e8:2c:9d:00:04:63:57:f0:
de:9e:84:49:7e:98:dd:3d:b2:85:d5:ae:69:03:b6:
ae:0a:2c:5e:69:d6:cf:48:66:4c:78:08:35:47:42:
88:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:69:91:5B:4C:A1:33:51:67:BC:42:2B:3B:B3:11:76:87:61:5C:5E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hGmRW0yhM1FnvEIrO7MRdodhXF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.160.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c4:13:b7:31:32:c4:78:b9:4c:96:10:09:a4:55:5f:02:f7:
cf:34:32:57:2c:e0:63:90:5c:13:e2:88:d8:8b:0c:54:35:ba:
20:c6:5b:ea:ec:99:5f:32:b0:12:3f:79:be:68:df:ac:73:7c:
1f:9f:2a:7a:d4:85:91:ae:5e:f7:03:8f:36:96:05:0b:39:b3:
83:99:88:8b:11:90:ee:23:1c:b7:76:5d:6c:8c:db:16:57:fc:
7e:de:04:ac:ba:81:ee:df:44:df:06:9c:08:77:c9:ed:dc:1f:
32:1e:e8:a8:09:8b:16:7a:71:c0:cc:80:9c:f3:80:fa:42:88:
2a:29:ad:00:28:95:1a:51:66:23:79:d0:df:ac:87:d7:a7:13:
8b:e4:37:24:94:f2:fa:e4:6b:20:ed:ad:b5:59:d0:5f:c7:64:
f9:25:06:5b:2c:1f:94:c0:8e:13:f6:80:d8:09:dd:54:13:09:
a7:12:01:14:3f:02:2f:20:68:5b:67:b6:38:64:fe:e1:e5:74:
f7:ef:2a:e9:68:2e:af:26:83:a6:70:79:fa:d4:b7:2d:91:02:
d4:9f:01:6e:b2:97:97:cf:52:e1:bc:b9:fe:8b:61:5d:6b:6d:
9e:18:d4:f6:c6:86:c8:c4:b6:25:0f:e4:51:89:1f:53:c1:ba:
17:82:64:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI3b7HJTdPNG03be8+RmtFvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIwNzI1MjIxNzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDY5OTE1YjRjYTEzMzUxNjdiYzQyMmIzYmIzMTE3Njg3NjE1YzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4JZH9JZP7zvHBfYYIx3LWQN2nvy
r959lZGEFZSKQpqfJRskfHlZYotctY7HASBPyDYVOmrqceszMBocTalYCT12x5M4
zN5zlnuXrLY12JvTg/KN19WfD1nD/DT8h3KJNzRgbiVPU2LVWoBwJeyOi+fOTNM8
UE+Dy/SG2nTXWBR/v2ZureechSqEofViUwmDSjWlMo+FXzb/EBFx/Doid4f++xJC
0Ylj+lZa9FPZistzHV59FwyQdeaoYse7lv5xBj2ncpzvI/49/+FnIx0WRTmyysPr
gFfX6CydAARjV/DenoRJfpjdPbKF1a5pA7auCixeadbPSGZMeAg1R0KIWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIRpkVtMoTNRZ7xCKzuzEXaHYVxeMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvaEdtUlcweWhNMUZudkVJck83TVJkb2RoWEY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWgMA0G
CSqGSIb3DQEBCwUAA4IBAQAzxBO3MTLEeLlMlhAJpFVfAvfPNDJXLOBjkFwT4ojY
iwxUNbogxlvq7JlfMrASP3m+aN+sc3wfnyp61IWRrl73A482lgULObODmYiLEZDu
Ixy3dl1sjNsWV/x+3gSsuoHu30TfBpwId8nt3B8yHuioCYsWenHAzICc84D6Qogq
Ka0AKJUaUWYjedDfrIfXpxOL5DcklPL65Gsg7a21WdBfx2T5JQZbLB+UwI4T9oDY
Cd1UEwmnEgEUPwIvIGhbZ7Y4ZP7h5XT37yrpaC6vJoOmcHn61LctkQLUnwFuspeX
z1LhvLn+i2Fda22eGNT2xobIxLYlD+RRiR9TwboXgmTi
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org