Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iewRlEEw2zbBbHcsRpXYrs51Kb0.roa
File: iewRlEEw2zbBbHcsRpXYrs51Kb0.roa (raw, json)
Hash identifier: KmV+5jAQ1c3Bo2NIz+zRDtmhd3hyHJy3KUtJHnJf/0Y=
Subject key identifier: 89:EC:11:94:41:30:DB:36:C1:6C:77:2C:46:95:D8:AE:CE:75:29:BD
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182CA81BB2AC6C0F81F4CEFD4979D2683FC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iewRlEEw2zbBbHcsRpXYrs51Kb0.roa
Signing time: Tue 23 Aug 2022 11:41:15 +0000
ROA not before: Tue 23 Aug 2022 11:41:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 163.5.231.0/24 maxlen: 24
163.5.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:81:bb:2a:c6:c0:f8:1f:4c:ef:d4:97:9d:26:83:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 23 11:41:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89ec11944130db36c16c772c4695d8aece7529bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5c:7b:dc:14:3e:8e:89:8c:0c:1e:d5:35:d8:
e6:35:7f:23:6d:b5:9c:6b:46:db:5d:42:bd:fe:3e:
cf:22:f0:da:e0:ec:04:85:76:b8:ea:b4:60:85:35:
f1:92:1b:48:0f:72:60:30:81:3e:fc:0b:8e:9e:64:
38:02:1f:cd:e9:66:59:92:e9:ce:c4:e8:1f:94:1b:
29:32:47:7b:21:c0:52:5f:77:1e:f7:e5:07:87:ba:
5b:8c:1b:a5:de:ce:82:ff:c3:57:f1:d8:02:67:6b:
26:8a:95:b0:29:f3:68:82:7d:e8:af:11:bb:0d:35:
c8:96:f6:57:27:f6:b6:46:6d:20:37:4f:61:5f:80:
9e:f2:d4:ca:dc:37:d6:59:51:87:f3:12:e7:6d:4a:
10:d1:cf:c8:56:ec:4a:85:e7:ea:c1:ce:9e:69:1a:
95:c3:e5:c0:e1:1c:b3:44:e8:86:38:29:97:45:d4:
a0:91:92:5f:81:bb:09:9b:24:65:22:0f:48:d3:8d:
63:81:62:4c:f7:ad:cb:b9:7e:dc:58:5c:09:8f:dd:
1f:ba:09:60:9c:64:3f:3f:1e:a5:c2:29:bf:fe:83:
0a:04:9b:37:5c:ef:91:a4:13:d3:fd:d1:91:c4:d1:
d1:5b:2e:94:7e:9a:d0:6c:19:c3:f8:49:72:40:76:
5e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EC:11:94:41:30:DB:36:C1:6C:77:2C:46:95:D8:AE:CE:75:29:BD
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iewRlEEw2zbBbHcsRpXYrs51Kb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.231.0/24
163.5.234.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:1a:e3:99:1a:a4:b5:e2:8b:ee:a8:54:b2:48:e8:b4:01:0c:
fe:1f:fa:8c:7c:d8:3c:74:76:73:10:81:43:08:47:36:40:2b:
76:cb:05:2a:1d:a3:01:d6:6d:5b:a3:b5:da:91:22:3b:41:db:
02:73:3d:05:d8:22:2f:18:76:f2:43:67:e0:ed:fb:7b:5f:39:
64:3e:f0:c4:87:9d:5f:86:f4:6b:08:38:3d:a3:f4:40:59:49:
f6:66:05:49:3b:7a:44:58:39:28:31:a9:df:9c:dd:ab:fb:d9:
c3:6e:3d:ac:31:2b:b5:ce:e0:5b:9a:71:2a:c8:74:95:7d:af:
93:8c:65:44:6d:5d:ef:a5:d3:c6:7d:bd:a5:5e:34:99:0f:65:
3f:c4:13:71:0b:33:b2:6a:27:49:d5:82:0e:bb:be:a4:94:e0:
79:61:77:15:7c:45:64:47:cc:08:ea:93:e8:5b:34:d4:ca:60:
dd:52:23:1a:80:5a:4a:a2:5b:e0:6d:86:1e:e2:0d:12:02:5b:
a5:f6:39:1b:36:13:f4:fd:53:bd:1e:e8:fd:81:11:06:6a:18:
36:eb:55:0f:a2:8e:a8:9e:01:96:ee:61:c8:cc:d7:02:9e:32:
7e:a6:f8:28:95:70:28:51:2e:9b:40:4a:f5:3d:22:61:34:f9:
96:00:5f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org