Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/v4MZy3d1YxcguczG_OdaBU_hLWA.roa
File: v4MZy3d1YxcguczG_OdaBU_hLWA.roa (raw, json)
Hash identifier: FIdZ+h4sRc2W1jFM/AndGDyO53aJaRG0t3XNElHbMxs=
Subject key identifier: BF:83:19:CB:77:75:63:17:20:B9:CC:C6:FC:E7:5A:05:4F:E1:2D:60
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182C56570EFA13992E38C0B16F9ABA5A353
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/v4MZy3d1YxcguczG_OdaBU_hLWA.roa
Signing time: Mon 22 Aug 2022 11:52:15 +0000
ROA not before: Mon 22 Aug 2022 11:52:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138687
IP address blocks: 163.5.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:65:70:ef:a1:39:92:e3:8c:0b:16:f9:ab:a5:a3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 22 11:52:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf8319cb7775631720b9ccc6fce75a054fe12d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b6:ec:9b:4f:0d:67:59:14:7f:8e:94:b6:ff:
0f:c2:92:da:26:8b:1b:cc:14:63:8e:8b:14:2c:70:
15:26:a4:11:a4:e3:f5:40:ab:f9:00:8f:d4:42:4d:
a3:28:96:3d:9a:da:6b:9e:41:86:88:1e:90:75:e4:
f7:36:d4:60:2a:2c:dd:aa:0d:71:98:d8:a5:50:1a:
16:84:36:a5:dd:2a:1f:0d:04:aa:6b:1e:16:74:06:
90:5d:a5:0e:62:d7:76:59:55:55:d5:7b:69:36:1b:
13:d8:3c:06:d2:57:b4:b4:b5:1a:89:d8:56:07:d3:
82:24:ac:f5:75:4a:3f:d1:b1:03:2d:1e:4d:1d:ac:
76:4c:b6:56:62:de:bb:04:3c:bd:33:bb:90:f9:8b:
01:87:d1:63:3b:da:a4:d5:53:67:82:40:6a:1f:e4:
85:81:79:47:50:0b:23:44:08:ee:f6:53:75:e5:98:
82:f4:1f:af:8c:4b:e7:96:3b:07:f1:0d:1d:02:c5:
13:d0:80:e8:fb:ae:48:fb:b9:f0:6a:b0:e3:36:ae:
7e:19:3f:96:69:bf:3b:00:78:1b:b8:d4:cc:88:ec:
5d:87:17:d6:dd:eb:f3:82:0b:b2:34:d5:e0:6a:81:
35:2f:8e:3b:65:2a:6d:1f:9f:2f:a9:63:0b:35:88:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:83:19:CB:77:75:63:17:20:B9:CC:C6:FC:E7:5A:05:4F:E1:2D:60
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/v4MZy3d1YxcguczG_OdaBU_hLWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.202.0/24
Signature Algorithm: sha256WithRSAEncryption
99:0a:3f:be:84:71:e9:c8:b8:ad:4f:98:c0:99:d2:e0:34:04:
4e:dc:a4:e0:72:ec:ea:f0:fa:4c:18:36:c2:a2:e6:af:29:13:
69:50:b0:fb:c6:c9:6b:c3:ea:30:23:4f:9e:38:2a:e1:f9:b6:
01:ff:40:f9:1c:31:38:cd:31:1f:b2:40:db:0e:a4:2b:cc:af:
ec:da:64:8b:1c:38:55:f1:43:0a:5d:98:cc:26:61:c0:b1:cf:
7a:bc:9d:28:9c:8c:37:eb:f5:f5:d6:1b:db:cb:d2:53:d1:e3:
77:1c:95:4c:d0:a0:8c:72:d8:bb:99:e4:35:85:b8:2a:a2:42:
a5:f7:13:56:4f:9d:8b:d2:db:23:9b:11:ce:41:c4:e4:18:7c:
3e:db:0a:30:a1:a8:e4:9b:e5:0a:b9:6d:ba:40:77:ef:2c:2a:
9b:fa:c9:3c:ce:4e:9c:fd:11:1f:0a:b2:84:e9:6a:3d:41:af:
c9:00:00:69:b0:20:95:98:83:84:d5:8f:50:33:1a:56:c1:6b:
a9:f4:cb:d3:84:44:c2:ea:63:e5:1d:77:ac:49:d4:5c:8a:1a:
e3:b6:8e:dc:40:f9:5c:fe:cd:41:29:5b:3d:ec:11:b5:ee:d5:
b6:e3:8e:d1:c1:eb:7b:63:4f:24:81:f2:8e:73:63:e1:b3:ee:
00:d9:c9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org