Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nI8k3V39fDvBg7iUe6mLwz4gukw.roa
File: nI8k3V39fDvBg7iUe6mLwz4gukw.roa (raw, json)
Hash identifier: ECdUKXY4HcLf8HPw89+6b4p2HZRSkVCsB2dT234m+3c=
Subject key identifier: 9C:8F:24:DD:5D:FD:7C:3B:C1:83:B8:94:7B:A9:8B:C3:3E:20:BA:4C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01841F9A84A68A8ABDFC7E7AFD724BDDC052
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nI8k3V39fDvBg7iUe6mLwz4gukw.roa
Signing time: Fri 28 Oct 2022 17:18:51 +0000
ROA not before: Fri 28 Oct 2022 17:18:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399486
IP address blocks: 163.5.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1f:9a:84:a6:8a:8a:bd:fc:7e:7a:fd:72:4b:dd:c0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 28 17:18:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c8f24dd5dfd7c3bc183b8947ba98bc33e20ba4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4c:ab:23:df:8e:2c:1f:91:5f:5a:79:59:b6:
9f:14:d0:c6:29:5d:6a:2d:e2:40:ef:e6:a0:14:05:
5d:96:97:b3:05:14:b1:50:ad:a4:a9:9f:92:b6:c5:
20:e1:11:f2:f0:cd:bb:7c:99:c6:2e:e1:41:f7:f4:
ad:81:f6:1d:9a:83:3c:8d:d2:37:a3:b2:f4:53:ac:
39:1a:66:bd:12:ab:ac:55:ec:a8:59:3e:29:53:40:
bc:07:a2:57:9a:01:a5:20:e3:8c:84:7e:fd:59:ba:
23:c8:69:cf:ae:b6:a4:9e:d4:9f:4b:4f:ed:c9:06:
ff:5a:0a:10:36:df:5b:a0:b3:6b:86:fe:0e:48:27:
14:e6:7b:21:3b:e2:43:57:59:4d:f6:80:c6:e4:be:
c2:57:10:7a:a2:fc:77:53:6a:11:bf:43:de:78:1c:
07:86:90:04:7f:9c:1d:bb:34:ad:f1:59:4e:92:8a:
27:e1:4f:59:54:a3:66:f4:94:08:23:a3:a6:6a:52:
49:d2:0b:5d:f8:e2:9a:75:33:65:16:69:e5:86:40:
47:2c:a0:3c:46:61:50:f5:17:74:42:e6:6c:ff:17:
87:fd:f9:bf:29:23:51:c7:85:4f:2b:fc:cc:cd:ef:
ee:6e:cd:41:63:f8:e2:d6:e6:dd:2b:d8:72:e8:2e:
9a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8F:24:DD:5D:FD:7C:3B:C1:83:B8:94:7B:A9:8B:C3:3E:20:BA:4C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/nI8k3V39fDvBg7iUe6mLwz4gukw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.160.0/24
Signature Algorithm: sha256WithRSAEncryption
80:a7:ea:32:22:55:a0:3b:86:e8:06:6a:74:c0:4d:32:94:ef:
49:ab:4e:05:d4:a1:03:ea:3f:6a:6f:2d:18:67:ef:80:3d:66:
5e:49:12:ee:dc:e2:1a:bf:51:cf:9a:8c:77:f8:11:35:9e:bf:
cd:33:2c:3f:92:62:40:b9:77:9d:b0:ec:1e:d0:32:2c:29:fe:
0e:23:42:75:76:14:b9:c8:7c:6a:ad:8f:72:8d:87:74:33:c5:
1a:a8:bb:b4:99:a9:14:2f:7a:f5:04:0e:85:a3:0b:07:33:ba:
7f:a5:67:6d:2b:87:42:0a:bc:2b:1f:c1:3f:84:a5:0b:0d:ad:
88:4d:d1:0b:b3:f1:32:d7:27:d0:95:aa:64:c0:da:b4:9d:b3:
47:b1:60:10:a8:03:60:45:6f:ae:4c:f1:b2:32:89:68:da:3b:
57:a7:9d:9c:19:aa:82:44:1a:34:6a:05:69:39:50:fd:f9:a9:
07:2b:b2:e3:45:5a:4c:66:32:2f:fc:b5:90:82:89:c2:ff:b8:
02:59:d6:d2:f1:14:3d:af:3c:2e:dc:be:25:de:a6:93:4c:be:
57:62:c6:e7:6f:7a:e1:6a:f4:2b:d7:9b:e4:c7:14:b1:ae:7d:
31:2b:30:2a:52:f2:2a:79:59:1e:c1:cc:62:70:90:9c:9f:11:
6b:a4:e5:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:35 2024 by rpki-client on console-ams.rpki-client.org