Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mmg9I6SZA42V0O_6OsvFSCaD9g0.roa
File: mmg9I6SZA42V0O_6OsvFSCaD9g0.roa (raw, json)
Hash identifier: E3WRleSJAnBbEiFbTPc0vQpTbHO58VKGDK0tx8kQ46I=
Subject key identifier: 9A:68:3D:23:A4:99:03:8D:95:D0:EF:FA:3A:CB:C5:48:26:83:F6:0D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01840E14D64A8C519C9E534F4F20A833E171
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mmg9I6SZA42V0O_6OsvFSCaD9g0.roa
Signing time: Tue 25 Oct 2022 07:39:17 +0000
ROA not before: Tue 25 Oct 2022 07:39:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 163.5.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:14:d6:4a:8c:51:9c:9e:53:4f:4f:20:a8:33:e1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 25 07:39:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a683d23a499038d95d0effa3acbc5482683f60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:c1:de:d2:e6:1e:b4:28:c4:6b:e3:7b:10:
53:93:5f:ce:4c:44:96:c0:c8:95:75:fd:48:8f:3e:
cf:b5:2f:60:94:11:62:83:df:90:2f:1d:d9:ef:16:
e6:c5:aa:61:83:36:bd:f1:9f:d8:b3:13:dd:2b:da:
45:66:49:11:37:c6:56:a6:42:be:cf:54:02:63:26:
c8:c8:2a:dd:e2:5c:79:c7:bc:66:68:db:c6:7c:a5:
0d:79:fb:2f:04:6a:07:53:69:37:1d:7a:22:3f:96:
5f:18:29:6c:56:61:b2:a2:c4:ae:5a:3f:da:20:1e:
a8:cc:73:70:05:6d:2e:32:6b:7f:4a:28:ed:7a:bf:
29:f7:16:db:f5:af:cc:8b:93:90:18:d4:95:5c:3f:
54:2b:01:22:1b:a6:45:21:4e:a5:68:15:bf:a4:98:
56:31:d6:c8:50:3d:fd:6b:ec:2b:80:3e:84:3c:4e:
4f:2d:72:44:df:e1:5a:19:37:5f:bd:f4:fa:0c:9a:
2e:83:77:c1:26:e7:e6:75:5e:b9:46:fc:6a:77:f0:
d5:27:ee:c4:49:25:42:37:95:50:77:42:f1:c9:8a:
80:ce:df:c3:91:42:d7:b8:f1:d8:11:5c:13:67:51:
ec:2f:6e:74:c9:e1:ae:7d:ed:d1:38:97:d1:9b:fd:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:68:3D:23:A4:99:03:8D:95:D0:EF:FA:3A:CB:C5:48:26:83:F6:0D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/mmg9I6SZA42V0O_6OsvFSCaD9g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.147.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:dd:ee:db:d0:a1:ff:b0:aa:3d:93:2d:21:b8:ef:96:ed:2d:
cc:93:c6:8a:d8:bb:ec:3a:e3:35:25:b4:77:6f:e6:93:80:9a:
42:19:9e:82:41:b7:4e:a6:47:be:fa:4e:dc:f7:62:4b:fe:ce:
63:1f:7c:bc:3d:3b:1b:84:cb:d3:7c:71:d8:59:90:66:4a:21:
67:2e:c3:2c:3c:c3:9a:d2:ee:20:26:10:ad:01:dc:66:39:58:
10:42:ce:fc:5b:ac:60:8c:d0:9e:ef:86:3f:4a:63:91:90:21:
59:13:e6:dd:73:52:96:cf:ad:95:fb:f9:6e:21:e0:b7:0b:81:
68:80:f4:88:41:8d:5d:93:e7:d2:43:a3:eb:b0:06:1d:74:a6:
10:90:81:9a:8c:3c:0d:a2:af:13:00:f2:f5:9b:0c:59:98:56:
81:58:4a:d1:26:db:65:38:0b:b5:76:43:e2:38:e0:7d:de:29:
af:7f:7a:14:7b:f0:f6:01:66:09:8b:51:e7:1e:b9:3b:b3:7d:
19:bf:48:47:01:ed:28:1c:18:3c:cb:5a:0b:03:d7:2e:9c:7c:
87:b0:8c:4e:cd:98:7e:ae:f4:b9:6b:33:87:0d:ad:82:98:b1:
a1:3f:e8:72:f9:b1:86:3c:19:64:17:aa:92:79:c8:0a:53:68:
51:53:50:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org