Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hmiwdSTNgtVoTbv4668S13f-Rnw.roa
File: hmiwdSTNgtVoTbv4668S13f-Rnw.roa (raw, json)
Hash identifier: /tA4tTTEveC47YsH1KlAO2oidGejvZFxvyV3oQI5ATk=
Subject key identifier: 86:68:B0:75:24:CD:82:D5:68:4D:BB:F8:EB:AF:12:D7:77:FE:46:7C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184A4379379AD02AD1BEEF837EB479A3FF2
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hmiwdSTNgtVoTbv4668S13f-Rnw.roa
Signing time: Wed 23 Nov 2022 11:20:16 +0000
ROA not before: Wed 23 Nov 2022 11:20:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 163.5.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:37:93:79:ad:02:ad:1b:ee:f8:37:eb:47:9a:3f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 23 11:20:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8668b07524cd82d5684dbbf8ebaf12d777fe467c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5d:f8:7a:b4:f0:8c:c0:5c:8f:55:bb:40:55:
44:2a:d2:43:29:52:d2:e1:a2:c8:52:0c:bd:3a:a6:
7d:12:f1:af:00:e5:3e:68:81:44:36:27:94:57:40:
28:aa:54:8a:1d:41:d8:ba:2a:81:6d:8f:8a:f9:40:
18:7d:f4:e9:4b:bf:4b:4a:cc:fc:35:8c:32:5d:d2:
5a:6f:5c:25:90:8d:24:6f:bc:6f:d5:ad:7e:5a:8d:
90:87:a1:80:c5:63:06:2a:10:6a:2c:79:df:92:24:
35:2d:35:6e:af:9f:fe:ec:55:af:ea:9d:2f:d4:0d:
db:04:28:60:e3:c6:3e:13:9e:65:ee:9e:4e:e2:1c:
68:00:77:81:a8:a6:ac:a8:41:b9:70:e8:7a:54:1d:
57:9b:d0:bc:e6:3d:fe:0a:bc:42:14:d8:c4:5a:30:
fc:a5:a9:a4:5a:23:db:59:df:68:92:f5:b2:e7:36:
ba:65:f8:a8:85:3f:73:8b:2a:86:85:4d:e8:a7:7b:
1b:69:63:2f:3b:41:98:1f:bc:93:45:72:ff:a2:d5:
cc:1a:86:6d:49:9e:28:30:53:f1:bd:ce:e7:0b:a8:
ff:a9:82:ca:f8:61:23:38:7b:6b:a8:45:c3:e1:28:
fa:05:93:af:f7:eb:75:5b:0f:4f:ad:99:21:99:b7:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:68:B0:75:24:CD:82:D5:68:4D:BB:F8:EB:AF:12:D7:77:FE:46:7C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/hmiwdSTNgtVoTbv4668S13f-Rnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.225.0/24
Signature Algorithm: sha256WithRSAEncryption
10:75:7a:eb:38:ec:6d:cb:da:76:25:85:30:73:3a:5d:8a:16:
76:cf:d7:f0:4d:de:7c:09:0a:1d:97:2c:39:0d:42:bf:e2:36:
c6:24:0e:ce:e0:fa:78:33:bd:85:eb:af:33:75:9d:f5:9e:9a:
90:ba:8c:0c:2e:cb:11:c0:8b:c0:68:b7:3e:0a:cb:93:25:a9:
ee:a3:3b:f3:a4:aa:7b:db:3d:ef:3e:d8:01:94:e9:52:67:20:
3d:d3:92:40:28:00:af:24:42:bf:8e:88:22:4f:3e:18:e0:43:
e2:74:0d:1b:a7:b6:c2:9f:e3:f8:1d:36:37:4f:b8:01:e2:ad:
41:9d:36:e6:f9:3c:bf:52:e3:cd:52:aa:6b:8a:69:40:d8:e1:
4b:1d:22:9a:4a:ca:d1:b1:46:4d:e1:89:e0:83:43:ef:0a:54:
63:0f:56:1a:a3:13:06:11:33:89:a6:4b:09:f6:fb:cc:c2:f8:
0f:e6:15:90:5b:dd:ae:25:b0:ad:01:26:c5:86:f7:21:66:7b:
35:b2:1a:80:ce:a9:09:5c:7c:36:c0:c4:d3:83:45:54:a7:f0:
53:67:c1:95:53:4f:74:b8:1d:83:2f:80:94:f4:97:23:e2:69:
a4:4e:f0:0f:6a:04:3f:71:00:db:66:0f:08:a8:fb:b0:ce:cd:
4e:aa:56:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org