Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/j_PgvlqGuRa3LaNxoPLZEj0s7xA.roa
File: j_PgvlqGuRa3LaNxoPLZEj0s7xA.roa (raw, json)
Hash identifier: G+67qW9gtB7GXzWO05Qun1o6lMMed3FqPWO+rYQOvxM=
Subject key identifier: 8F:F3:E0:BE:5A:86:B9:16:B7:2D:A3:71:A0:F2:D9:12:3D:2C:EF:10
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183BC1E238915D96B13C1D7D5D5C66A42E5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/j_PgvlqGuRa3LaNxoPLZEj0s7xA.roa
Signing time: Sun 09 Oct 2022 09:40:35 +0000
ROA not before: Sun 09 Oct 2022 09:40:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 163.5.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bc:1e:23:89:15:d9:6b:13:c1:d7:d5:d5:c6:6a:42:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 9 09:40:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ff3e0be5a86b916b72da371a0f2d9123d2cef10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c9:b4:5b:3f:b6:1b:b8:fe:f7:6a:3b:a5:a1:
9a:df:a5:ce:6b:72:d0:94:de:47:50:57:8d:d8:ee:
b0:15:d8:4e:6c:d1:27:9e:52:e4:52:3c:83:27:b5:
9c:24:ab:97:2d:80:14:06:46:3b:2f:7f:5e:a1:ba:
02:5b:91:ad:57:8d:fa:03:ed:5e:e6:51:05:b2:36:
43:27:a5:9f:6d:e8:6b:ea:cc:7d:48:32:7a:b5:29:
82:aa:41:fb:a1:c0:a5:6d:be:b5:85:2e:a8:90:57:
cb:64:cb:e4:37:47:21:63:07:ef:9d:e0:ba:07:78:
35:89:ee:ba:b5:93:6e:c7:6f:93:08:a7:64:fd:1f:
05:f1:7d:50:b0:d5:77:a5:5b:fc:c3:6e:0a:7e:3a:
fb:e4:48:4a:28:ca:d8:52:5a:1b:3b:16:a0:a9:8a:
97:58:03:c2:c8:3b:23:d3:14:02:d1:c1:9a:2c:7b:
bc:0a:08:d3:50:11:30:f3:f1:94:0c:78:dc:83:1c:
cc:f5:01:b3:62:f4:0b:f5:75:9f:ae:d9:23:e1:19:
72:9d:a0:2d:81:ef:cc:59:57:e9:eb:12:03:52:d3:
55:44:b8:c2:9e:17:3a:07:84:61:b2:d4:27:2d:bd:
e9:f3:38:14:6b:13:71:0a:03:6f:48:b5:0e:d1:ab:
e7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F3:E0:BE:5A:86:B9:16:B7:2D:A3:71:A0:F2:D9:12:3D:2C:EF:10
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/j_PgvlqGuRa3LaNxoPLZEj0s7xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.192.0/24
Signature Algorithm: sha256WithRSAEncryption
27:be:4a:99:2a:03:b3:5c:ff:75:ea:8a:f0:6d:fa:6f:ca:7d:
ab:4d:bb:16:4d:ab:db:7b:d0:c4:cf:45:84:14:65:0a:2b:da:
85:d0:38:a8:a9:a7:c4:1f:8b:47:1f:06:7b:bf:e2:47:70:25:
1f:c1:6a:82:32:93:b3:cf:b6:01:0a:fd:6c:1f:0f:b1:f8:83:
63:ba:03:50:bc:03:9b:d3:9c:b8:ad:88:70:f1:30:e0:68:e8:
cb:b9:78:41:5f:82:8a:90:6c:06:37:de:f9:dc:4d:b6:31:25:
3b:dd:52:fe:25:80:b2:39:21:2d:84:b0:e0:5f:f3:bf:8d:03:
0f:02:9c:c8:94:07:01:a8:2c:31:87:47:5c:42:86:57:8f:cd:
e5:de:54:99:ca:66:09:2e:38:6e:c9:b1:c1:82:7b:ae:1f:0c:
70:9d:7c:56:39:12:45:53:ea:46:2f:59:2d:75:0d:7e:f1:9d:
d1:fb:d8:66:11:4e:38:97:c2:27:9f:23:17:d0:f2:5a:33:43:
30:eb:f7:a8:60:2d:16:24:a3:2d:81:19:18:3a:7c:b8:3d:af:
79:3b:11:57:fc:c2:44:47:c9:62:dd:0d:23:af:c1:a5:b4:7c:
ea:32:fe:3e:ed:df:08:b9:34:2f:49:58:e8:0a:e7:c9:f9:86:
fc:90:39:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:34 2024 by rpki-client on console-ams.rpki-client.org