Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vID3jn5I_Pnytk3J3yNkO9p9rO4.roa
File: vID3jn5I_Pnytk3J3yNkO9p9rO4.roa (raw, json)
Hash identifier: xmTuJ81ITVvLoIqSZSkhTnC15XfZuKyg5fbki02oX8s=
Subject key identifier: BC:80:F7:8E:7E:48:FC:F9:F2:B6:4D:C9:DF:23:64:3B:DA:7D:AC:EE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182DAA78B9ACD8A50320FE4EB871BB2084C
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vID3jn5I_Pnytk3J3yNkO9p9rO4.roa
Signing time: Fri 26 Aug 2022 14:56:29 +0000
ROA not before: Fri 26 Aug 2022 14:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 163.5.216.0/24 maxlen: 24
163.5.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:da:a7:8b:9a:cd:8a:50:32:0f:e4:eb:87:1b:b2:08:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 26 14:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc80f78e7e48fcf9f2b64dc9df23643bda7dacee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b7:45:fd:43:ce:10:c6:20:f2:61:47:81:11:
1b:40:93:b1:40:32:49:be:2f:40:4e:39:47:84:96:
c7:1f:33:5c:4a:e4:e3:0a:f2:d0:bb:8a:82:df:93:
30:59:92:45:44:5f:ac:52:a7:e9:ea:4b:68:00:39:
c0:54:63:25:1d:73:2f:de:16:69:33:fa:f8:0c:72:
76:7e:67:e5:1b:55:90:76:47:ee:74:09:a3:e3:dc:
7b:09:40:21:9f:53:cf:04:c0:ca:16:62:91:c3:dd:
79:05:0f:ac:ab:b7:0d:53:1e:65:e1:b3:0c:f1:b3:
b3:99:31:ad:41:23:72:36:cf:18:aa:36:a5:16:81:
5b:45:d7:38:b6:0e:38:08:43:d0:d7:df:24:33:2e:
e8:f6:9b:00:89:8b:ad:dc:e9:54:cb:59:24:49:15:
87:c8:d6:00:42:36:80:38:85:4c:22:7b:3c:08:49:
8e:65:c0:82:5f:64:7e:3a:54:99:78:37:57:02:2c:
cc:3e:72:2e:f3:db:41:d9:8a:d3:55:af:0e:b9:09:
82:59:19:7d:32:62:64:36:34:14:fc:73:9f:5f:f9:
b7:db:5c:aa:2e:33:c6:97:8d:c6:6b:9f:c1:23:23:
58:e4:73:84:3e:3b:6e:b6:7e:d4:d5:e9:a4:3d:a9:
d7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:80:F7:8E:7E:48:FC:F9:F2:B6:4D:C9:DF:23:64:3B:DA:7D:AC:EE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vID3jn5I_Pnytk3J3yNkO9p9rO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.154.0/24
163.5.216.0/24
Signature Algorithm: sha256WithRSAEncryption
13:40:cb:0f:46:84:b1:6e:d9:3f:20:56:40:df:d9:1a:84:33:
19:05:f0:65:dc:a9:68:d3:bc:6f:41:d6:62:53:c4:bc:50:c0:
fa:0e:92:25:37:84:67:75:e5:42:66:aa:8a:61:70:a7:70:49:
8a:6b:81:43:b7:e5:28:fc:75:2a:d0:c0:6f:95:6c:82:e0:f3:
68:56:93:84:85:2b:10:81:47:32:51:cd:ee:33:42:dc:65:92:
73:ac:a7:fe:64:c7:50:c2:b3:2d:25:27:dc:72:67:9c:cd:3a:
ee:ab:28:2a:d4:86:aa:ce:53:f6:89:c9:0a:05:ad:1b:9a:a1:
be:2a:f3:19:1d:50:e7:73:54:30:78:6b:68:dd:8f:e2:84:af:
ff:55:72:5f:20:27:74:ed:b3:71:35:ca:bc:cb:aa:7e:7b:d1:
56:fc:c6:84:34:26:39:c5:c8:db:7f:7f:dd:8e:3e:71:f3:6a:
e1:4d:85:19:58:5a:6f:a4:12:48:cd:70:b8:04:bc:42:2a:bd:
ef:54:ce:e0:f9:aa:0c:c9:ad:ac:22:dc:9f:9a:7f:78:2f:09:
df:fd:b7:31:a2:98:65:73:de:6c:1f:35:12:41:3d:f1:7d:a3:
5f:20:a5:68:c9:ce:18:4e:c3:5a:ff:8b:4a:9d:14:d1:96:6b:
43:25:c9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org