Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lr1GRSiSq2MIOv2m4Yt-T8_qdDY.roa
File: lr1GRSiSq2MIOv2m4Yt-T8_qdDY.roa (raw, json)
Hash identifier: Nx8quTkO2qQF6IbdCxVeUmZIo5U8pYhALSx+IhXemOU=
Subject key identifier: 96:BD:46:45:28:92:AB:63:08:3A:FD:A6:E1:8B:7E:4F:CF:EA:74:36
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182443A898ED0124F9B50839B2A4D31B4AC
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lr1GRSiSq2MIOv2m4Yt-T8_qdDY.roa
Signing time: Thu 28 Jul 2022 09:54:23 +0000
ROA not before: Thu 28 Jul 2022 09:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 163.5.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:3a:89:8e:d0:12:4f:9b:50:83:9b:2a:4d:31:b4:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 28 09:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96bd46452892ab63083afda6e18b7e4fcfea7436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:85:e1:29:2e:d5:f3:ee:6a:1c:fc:b5:9e:42:
ed:d7:29:86:bf:24:13:43:11:06:4e:c2:a2:25:63:
27:5f:ad:ed:cb:95:04:90:b9:d7:fb:9a:31:5b:98:
97:4c:ff:b3:44:7c:39:7d:bb:0d:d4:52:78:44:11:
2c:87:41:62:73:72:72:46:9e:25:e5:12:ef:9e:d5:
76:66:30:46:b4:36:4b:7b:a7:5c:5e:f2:ff:b5:af:
4f:f9:9c:67:b0:78:2f:b8:ac:09:2f:d6:2f:4c:de:
7c:c3:c7:8e:14:b5:af:07:3e:7c:d4:d5:69:ea:1f:
81:a1:e0:ce:9c:da:4d:45:b9:72:00:10:a0:db:c4:
b7:89:d3:12:a7:75:8c:bb:70:15:7f:d5:f2:64:c5:
11:07:0f:39:f4:71:fb:a9:36:11:11:5e:49:a4:ff:
8b:a3:7c:be:d2:83:c7:a8:1f:f1:cc:53:74:ea:85:
c8:ae:4b:99:12:e9:1a:dd:3c:16:0e:35:d3:c9:83:
e3:6c:79:85:4b:7a:05:ba:0e:d1:d0:07:36:0d:ed:
57:be:15:44:c8:85:b1:1f:61:ab:4c:92:0b:c4:f6:
cf:48:13:5e:f3:8a:b0:64:60:3d:a6:2e:83:14:50:
47:3d:ba:36:98:31:2a:34:04:da:35:0b:3d:38:e2:
30:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BD:46:45:28:92:AB:63:08:3A:FD:A6:E1:8B:7E:4F:CF:EA:74:36
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/lr1GRSiSq2MIOv2m4Yt-T8_qdDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.164.0/24
Signature Algorithm: sha256WithRSAEncryption
50:71:74:8f:0c:39:43:29:91:a0:79:bc:df:f6:a7:ff:0c:bb:
cd:56:76:bd:a7:4f:bd:c7:71:94:fe:77:6c:52:21:20:ee:b1:
58:0d:e3:94:3e:57:e3:5a:e6:a1:8a:07:b5:a7:6b:8f:1a:3f:
47:94:e0:2e:22:63:79:be:44:75:9e:a9:c6:17:4d:cc:3c:06:
d9:bf:20:03:e6:1d:06:ca:c8:40:b2:56:78:05:b8:90:17:d1:
88:06:25:f6:27:b8:ff:d3:a6:02:07:e9:68:74:4c:9b:41:f9:
b4:f1:70:fb:00:23:8a:4c:8d:94:bf:9a:17:23:7b:65:77:ae:
5f:38:55:da:62:dc:ed:b5:54:53:a9:bc:13:ba:78:db:a4:ec:
71:0c:f1:11:1a:33:90:5c:f1:98:8f:f7:e0:0d:0f:55:c2:d7:
5d:f6:33:2e:d9:ee:7b:02:81:03:85:98:a9:52:d2:be:f6:86:
8b:dc:e6:44:30:1f:42:e3:e9:41:14:97:22:9d:5f:e1:19:9a:
a4:7f:ab:69:c4:37:0d:1d:75:9f:59:5f:b2:ab:92:6f:07:73:
34:c7:5f:fa:0c:4d:bc:1b:55:56:56:07:28:d5:aa:af:29:14:
81:c4:86:3d:c5:4a:a6:75:bb:c8:eb:b5:b6:ea:3c:3c:d1:46:
48:56:01:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:35 2024 by rpki-client on console-ams.rpki-client.org