Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/u9jbcaMXP2X3reXBM-IYigaon8w.roa
File: u9jbcaMXP2X3reXBM-IYigaon8w.roa (raw, json)
Hash identifier: LUInYNtartExO7nr8ntwRNI1J05vrxeJXNxsOKvp0gI=
Subject key identifier: BB:D8:DB:71:A3:17:3F:65:F7:AD:E5:C1:33:E2:18:8A:06:A8:9F:CC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184D29C2C085FDF91C15E1CC9F92122A163
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/u9jbcaMXP2X3reXBM-IYigaon8w.roa
Signing time: Fri 02 Dec 2022 11:32:40 +0000
ROA not before: Fri 02 Dec 2022 11:32:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 163.5.184.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:9c:2c:08:5f:df:91:c1:5e:1c:c9:f9:21:22:a1:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 2 11:32:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd8db71a3173f65f7ade5c133e2188a06a89fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c0:8a:1a:11:58:81:89:31:db:3e:21:7c:fb:
a9:26:b2:7f:9e:15:7b:9e:b8:03:40:c4:0a:86:92:
73:49:25:10:15:c2:d6:a8:f0:82:29:3e:f1:e1:b9:
fe:40:40:be:1a:76:98:ff:90:aa:8a:72:e6:ba:db:
3c:14:1a:8d:01:7f:24:31:0e:c2:4d:71:c0:fb:f7:
aa:30:46:e0:cd:5e:b2:29:f7:df:e1:9f:41:ef:c1:
69:22:48:81:97:76:ab:7f:ca:7b:36:51:5b:13:8c:
4c:75:ec:1e:1f:1d:82:61:e8:d5:0e:a3:fe:b8:7b:
bd:4e:8e:bc:f3:19:aa:b4:b3:e5:ad:53:e9:91:d3:
ef:fd:a4:4a:27:b5:2e:c0:c9:6f:8e:93:20:23:17:
03:74:9c:7c:eb:b3:ec:d2:b3:0b:31:d5:64:2b:88:
ee:8d:26:00:63:7f:e6:74:28:3c:fb:98:62:76:42:
df:f3:37:d1:47:8d:6f:d4:b3:6d:96:cc:c7:8c:d0:
b9:54:80:fe:19:75:15:ca:0f:92:6a:3e:81:38:77:
31:9f:db:0a:20:cd:48:81:99:18:de:40:81:e8:f3:
b4:d8:4d:c9:15:33:f2:3a:9b:df:1c:d0:d9:a2:c4:
56:7e:0a:86:93:e8:31:76:fd:9b:64:10:3f:a4:c2:
12:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D8:DB:71:A3:17:3F:65:F7:AD:E5:C1:33:E2:18:8A:06:A8:9F:CC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/u9jbcaMXP2X3reXBM-IYigaon8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.184.0/24
163.5.217.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:33:76:75:3d:c6:36:16:43:76:91:28:57:29:0f:ce:b8:a9:
62:31:c8:57:8b:cb:c7:96:29:22:90:76:fd:ff:0d:de:18:3b:
a0:2d:12:4c:58:5e:27:07:75:6e:e4:91:41:ce:0c:3f:68:10:
45:c0:22:ca:8e:b4:d5:02:cc:f9:78:89:b0:7c:87:f8:1e:bc:
0d:8d:7b:66:2a:12:a9:d3:40:25:6f:9a:02:1c:90:00:60:38:
cb:85:5c:bc:0e:63:52:a6:d4:e7:09:09:d1:7f:00:c1:30:88:
4e:04:5c:d7:1d:5a:c2:df:53:8f:26:34:b2:9f:36:65:b3:11:
79:4e:04:78:8a:36:89:4e:fc:a8:e9:bd:bc:93:79:6d:a0:d0:
da:65:5b:b4:44:3e:a1:ac:35:a0:54:93:01:86:46:6a:6d:d0:
27:bb:00:69:71:94:75:da:a4:97:b4:db:b7:fd:29:dc:34:2b:
29:6f:7f:e7:f8:4c:32:ca:fb:a7:33:a7:61:64:00:7a:f1:77:
8d:7f:21:4e:27:5b:7b:be:63:7f:6f:07:22:e2:78:e8:0e:de:
90:d5:e6:2d:38:e4:a7:4e:ad:78:a8:fc:3b:7c:22:b1:3b:34:
39:a3:0a:96:46:d9:5f:2f:ee:0f:e4:b3:af:81:e4:f5:4c:d4:
73:3f:e7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org