Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/npHGZCIIrvTn9uous2Aox5r_Hlk.roa
File: npHGZCIIrvTn9uous2Aox5r_Hlk.roa (raw, json)
Hash identifier: fMKN4GvVpPl5dkskfecIX5Brom/RBHS1HEd9b2bG2r8=
Subject key identifier: 9E:91:C6:64:22:08:AE:F4:E7:F6:EA:2E:B3:60:28:C7:9A:FF:1E:59
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183EFDEFCC691EC4D42C954A19924CFBC3E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/npHGZCIIrvTn9uous2Aox5r_Hlk.roa
Signing time: Wed 19 Oct 2022 10:51:51 +0000
ROA not before: Wed 19 Oct 2022 10:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 163.5.188.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ef:de:fc:c6:91:ec:4d:42:c9:54:a1:99:24:cf:bc:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 19 10:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e91c6642208aef4e7f6ea2eb36028c79aff1e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:43:6a:0e:8e:1e:03:d0:b4:35:41:ac:44:
77:fc:75:5c:04:c1:a7:f0:59:da:6d:6e:9e:80:ca:
5d:1d:7d:21:ee:b5:b5:e9:05:0a:fc:df:d6:c9:91:
94:e6:90:28:a7:dc:c8:5c:1c:9a:86:e4:b3:39:d0:
73:fa:34:22:c7:f8:6c:1d:07:00:37:44:74:2e:78:
c9:7e:d1:7d:14:c0:e4:50:8c:cc:fb:e8:3e:15:e5:
86:1f:48:99:7b:dd:62:bf:38:08:f7:ea:23:fb:2e:
6c:98:1a:0a:a7:c4:e9:b5:e0:77:96:89:48:4d:a1:
1e:5a:68:f0:e7:e4:70:93:f5:73:20:c5:49:85:16:
6c:38:c0:75:33:6e:4c:95:0f:b7:a6:0d:ef:88:e9:
6e:19:34:e1:a9:73:18:ed:3e:ab:c7:64:73:49:31:
60:fa:66:73:67:bf:a2:8a:d1:af:49:e1:72:54:9e:
15:ea:ea:3c:72:59:e1:29:d4:00:0f:ec:7b:c9:77:
89:c7:0d:8c:0c:fd:a6:cb:2f:79:7a:ab:0e:27:59:
2c:f9:4d:a7:2e:45:60:a3:1c:f1:45:aa:0d:15:d9:
3b:dd:f0:39:11:f8:d1:7f:6e:6c:bb:71:11:99:6b:
b8:d0:a8:3f:0e:ec:7f:97:3a:1c:f3:97:83:32:55:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:91:C6:64:22:08:AE:F4:E7:F6:EA:2E:B3:60:28:C7:9A:FF:1E:59
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/npHGZCIIrvTn9uous2Aox5r_Hlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.188.0/24
163.5.221.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:40:6c:e6:a6:d7:78:0a:b1:1c:4b:da:6b:0d:ca:53:44:a5:
9e:d0:ce:0e:c7:84:4a:e4:42:c9:3e:a2:ee:af:97:11:cf:70:
f4:13:85:f0:fa:ed:35:47:12:ef:49:47:96:db:73:a6:20:e4:
6d:3e:a5:cf:a2:5b:2c:64:28:6e:c9:b8:12:92:6b:c9:a7:39:
9e:da:45:4a:03:fd:99:27:ac:af:56:c1:1f:1e:d7:12:0b:f9:
9b:b6:a5:c7:53:a6:f3:98:27:5e:c4:a4:1b:b4:12:37:10:51:
1d:ca:73:84:d8:5e:e8:32:99:ab:e8:8b:3f:a4:90:34:89:da:
e5:2e:f6:5b:e1:13:c2:83:d0:08:48:9c:be:60:06:34:2b:c9:
1a:c0:13:8e:32:5c:9c:69:62:5f:a4:7c:80:60:c9:01:60:73:
df:d9:fa:93:c1:d3:a2:34:50:47:a1:7b:a8:ee:2d:c9:d0:d6:
7a:46:f9:19:84:b1:3a:94:5c:1f:62:9a:09:ab:28:d8:9a:d6:
78:17:6a:c4:bb:32:05:e6:8a:e5:2b:e9:0c:56:95:e4:4d:22:
62:6f:9c:36:bd:98:d2:c1:36:b5:c2:7b:f8:2a:cf:d7:21:48:
45:ab:4f:e7:52:17:c7:d4:ba:0c:32:78:95:c7:f8:d8:15:97:
da:12:b5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org