Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uW-0XLTZgYda2j2BXPGDesLyEw4.roa
File: uW-0XLTZgYda2j2BXPGDesLyEw4.roa (raw, json)
Hash identifier: qN+YDejqprC3Iy/YeOJ78ZUeNGyCkqeG3eGPOVobFT0=
Subject key identifier: B9:6F:B4:5C:B4:D9:81:87:5A:DA:3D:81:5C:F1:83:7A:C2:F2:13:0E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01854F154199F8456405E8F333350466789F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uW-0XLTZgYda2j2BXPGDesLyEw4.roa
Signing time: Mon 26 Dec 2022 15:37:51 +0000
ROA not before: Mon 26 Dec 2022 15:37:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 163.5.90.0/24 maxlen: 24
163.5.140.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:15:41:99:f8:45:64:05:e8:f3:33:35:04:66:78:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 26 15:37:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b96fb45cb4d981875ada3d815cf1837ac2f2130e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:22:f5:e9:80:ed:92:b5:44:eb:31:e3:ed:
79:0f:4a:ff:dc:c2:b9:a6:c3:fa:15:77:62:f6:d9:
d3:ae:19:5b:22:78:fe:85:a6:a6:35:8f:33:e8:ef:
83:26:c3:fa:ce:91:c1:69:a0:19:e4:37:ff:a5:c7:
12:74:48:6c:ce:61:aa:0e:ff:e8:5f:1b:6a:c8:a2:
58:77:28:93:59:9e:4f:cf:c9:33:ba:80:84:16:5c:
18:ec:e2:aa:50:dd:f3:14:d0:3f:2e:70:3f:2a:d9:
a1:14:51:03:98:23:ee:10:a6:9c:3b:9d:c3:0c:7e:
b2:43:ae:20:a8:a1:f9:19:1b:99:3a:67:19:14:f0:
1f:e0:80:d4:97:fe:38:aa:2d:df:4f:32:33:e9:43:
c8:3c:7f:ee:42:e7:48:e4:c1:bd:d7:01:c1:4b:23:
b0:4a:57:01:23:0f:8c:9a:fb:c9:11:48:05:11:da:
25:ad:97:23:e0:1b:69:ff:56:70:04:c7:18:d5:01:
0e:46:6a:64:48:c3:14:99:1f:52:2b:35:4a:fc:c3:
d4:17:cd:ec:70:87:d2:27:13:ea:67:4f:0b:1c:6e:
c2:8c:58:68:e8:5e:a6:b9:5d:ec:89:a5:27:db:b5:
82:3b:9f:59:cc:7f:1b:d8:c2:99:b2:35:72:e1:69:
8a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6F:B4:5C:B4:D9:81:87:5A:DA:3D:81:5C:F1:83:7A:C2:F2:13:0E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uW-0XLTZgYda2j2BXPGDesLyEw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.90.0/24
163.5.140.0/24
163.5.247.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:5b:1e:cf:fc:58:4d:49:59:3e:29:26:1d:a0:9f:e7:3f:3a:
00:62:ec:d4:0e:5c:7b:bb:d8:9f:bf:ed:34:08:09:ef:b3:c9:
ef:0e:a1:14:87:4c:1c:3b:57:ba:53:33:68:20:28:0c:6d:91:
7f:a4:63:78:33:1c:71:61:7a:7e:8b:5f:54:40:a2:a3:60:db:
16:a0:22:48:ce:18:8c:ba:4a:0b:58:75:60:05:31:e1:3a:ee:
0f:f6:4f:16:77:75:2e:33:52:0d:c0:75:4e:33:1f:ce:56:db:
86:45:3b:a1:80:ad:77:48:f0:25:c4:74:83:a9:43:3f:29:1e:
02:a5:ec:b7:1e:14:4d:bb:47:26:c6:6d:37:ec:69:be:af:ba:
f5:36:ff:1e:17:cd:04:d5:23:f8:7e:1f:dd:16:12:c5:63:ff:
f5:32:cc:4d:4f:71:dd:ab:7b:1f:4c:c8:a5:0f:e6:33:b6:72:
0b:73:96:82:1d:27:e7:88:36:83:ff:c7:1b:5c:18:68:30:da:
e5:11:0d:7e:ac:12:48:cf:82:88:8e:4a:36:0b:90:22:aa:ae:
15:fa:2e:d1:c1:be:e2:43:e6:88:92:f1:d3:29:39:e4:76:81:
15:dc:7f:f0:7f:c6:4e:72:a4:19:b7:c5:3d:0a:1f:cd:e9:f8:
b2:cc:87:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org