Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vBDJJJDi10Du4KdHVeb9bWXF7H0.roa
File: vBDJJJDi10Du4KdHVeb9bWXF7H0.roa (raw, json)
Hash identifier: q5LgWbDSyrFsAlAIR93lZ+Z590Z04d5iiVb8q1whl9s=
Subject key identifier: BC:10:C9:24:90:E2:D7:40:EE:E0:A7:47:55:E6:FD:6D:65:C5:EC:7D
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183561CC9192229BA37051732725A6033E6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vBDJJJDi10Du4KdHVeb9bWXF7H0.roa
Signing time: Mon 19 Sep 2022 14:17:50 +0000
ROA not before: Mon 19 Sep 2022 14:17:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 163.5.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:1c:c9:19:22:29:ba:37:05:17:32:72:5a:60:33:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 19 14:17:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc10c92490e2d740eee0a74755e6fd6d65c5ec7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ff:ea:ba:f5:f2:5c:52:de:dc:c9:62:2b:0b:
f2:57:0d:4a:fe:21:05:b8:d5:d8:7a:bc:57:e6:be:
2b:51:13:9b:10:55:81:7a:a3:27:3e:43:d6:3e:a5:
98:e4:68:56:89:dd:84:db:1b:97:a7:75:ab:7b:55:
b8:57:0c:90:c4:d9:f9:09:d2:4c:46:04:f6:28:f5:
45:76:e2:f3:88:ac:56:07:02:19:ba:0a:23:9c:df:
30:b3:c9:a4:db:87:45:b0:00:3b:28:46:c9:18:af:
29:dd:0b:9d:b6:ef:db:29:01:bd:2d:ab:4d:26:ae:
51:13:d0:0d:28:28:d3:39:8d:9b:83:f8:99:a0:1e:
b4:b1:17:47:04:0b:11:2f:4f:44:11:3f:71:a7:aa:
8c:1d:5b:32:57:38:47:8b:b1:74:3f:c5:df:65:4d:
e0:45:73:60:77:e1:03:09:f2:7d:33:92:01:cc:ad:
a6:43:ec:1d:30:ed:29:92:e3:60:be:11:35:b6:8b:
41:1a:8c:21:d7:88:2b:3c:0b:1a:a2:42:c9:1f:0a:
82:6e:23:d0:29:83:52:91:51:95:77:41:58:ce:dc:
cc:0c:83:a6:1f:39:7f:54:e5:41:58:7f:67:f7:1c:
d1:af:87:38:8b:cb:98:98:32:5a:bf:0a:5b:fd:dd:
f3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:10:C9:24:90:E2:D7:40:EE:E0:A7:47:55:E6:FD:6D:65:C5:EC:7D
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vBDJJJDi10Du4KdHVeb9bWXF7H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.252.0/24
Signature Algorithm: sha256WithRSAEncryption
65:8f:b8:da:cc:2e:f9:e5:5e:b0:d4:c2:9b:fb:87:99:36:0e:
e6:98:5a:c1:43:8b:6c:1c:3b:f5:5f:30:ad:b7:46:b7:59:59:
b4:fd:5b:c7:d6:d0:32:9c:d6:27:99:8c:22:a9:c1:a1:b8:c5:
6d:0d:14:14:b2:3e:1c:6d:33:07:31:c0:86:41:53:03:08:64:
a0:62:60:3f:78:fb:70:62:6d:27:fe:b5:bd:9b:f7:0f:47:f7:
8a:70:62:e3:ff:32:81:d8:f2:ea:88:42:99:7f:3f:9b:cd:c2:
80:33:0a:72:dc:33:b6:30:ea:dc:b7:47:9a:f9:69:46:3f:3d:
28:f7:b0:37:a3:b1:8e:ab:02:05:30:26:75:8f:0d:98:c8:ea:
61:33:7c:76:03:db:65:ca:7a:8e:0f:c2:5a:26:7b:0a:30:de:
48:21:2b:97:16:f3:a2:9c:37:f7:44:83:2c:dc:0a:b7:69:33:
8c:8a:77:84:30:ba:c8:1b:1d:27:52:5c:91:be:4e:50:d5:fc:
08:fa:44:45:65:7c:cc:26:5e:24:d6:46:7b:2a:1e:cb:e0:09:
b6:81:7f:1c:28:6c:66:48:4a:c1:2e:c0:ce:8f:17:6a:70:da:
da:a8:95:c9:1b:1b:67:89:ea:27:8d:bb:d6:9b:61:a3:42:e2:
18:38:84:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org