Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/voaFvFKl_5zOcm8nGctGbgDxUWg.roa
File: voaFvFKl_5zOcm8nGctGbgDxUWg.roa (raw, json)
Hash identifier: lXd9YbUBD7KbqOYoWORniAq/u31vTU5exodPLhUGv8I=
Subject key identifier: BE:86:85:BC:52:A5:FF:9C:CE:72:6F:27:19:CB:46:6E:00:F1:51:68
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01825864485F24C3FD92BB9DB40B485AFEFD
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/voaFvFKl_5zOcm8nGctGbgDxUWg.roa
Signing time: Mon 01 Aug 2022 07:52:23 +0000
ROA not before: Mon 01 Aug 2022 07:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203728
IP address blocks: 163.5.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:64:48:5f:24:c3:fd:92:bb:9d:b4:0b:48:5a:fe:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 1 07:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be8685bc52a5ff9cce726f2719cb466e00f15168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f7:d6:8b:7b:f4:79:ae:47:79:fa:5f:8f:f5:
19:de:00:8b:ce:c4:2c:14:45:65:04:7d:51:b6:0a:
78:ba:fd:dd:c0:8c:91:3b:29:9f:23:99:67:3c:59:
e4:a9:42:cf:2f:06:b1:81:ec:c1:75:ef:1f:97:8d:
7c:1c:d5:f3:c2:23:6f:72:26:1d:ba:d1:93:91:3d:
b2:5a:fd:82:d2:75:48:40:b6:33:39:b2:22:2a:38:
f6:73:9f:00:90:3e:73:aa:0a:10:6b:cf:bb:35:f2:
5c:4c:b0:e6:ba:91:27:99:bd:90:c5:97:cf:ca:18:
1e:99:99:94:8c:23:a0:4f:53:e8:c9:c7:4a:dd:96:
ad:3c:90:26:16:50:2e:4a:99:3b:34:ca:2f:c4:48:
1a:0c:e1:ef:12:ba:34:32:82:c6:f5:fd:c6:dc:4b:
47:e3:25:50:c5:05:68:93:b8:bc:52:b2:80:84:84:
cf:58:fa:cc:07:27:78:1c:63:60:be:9c:1d:2e:79:
f2:1f:30:00:36:b0:c6:f1:c4:3b:cf:4a:f5:bc:15:
e9:7c:a7:61:0d:1d:e5:b0:de:58:63:13:06:36:e6:
42:d9:dc:02:69:9d:68:21:be:20:16:a8:d1:83:41:
ef:15:bc:a4:3c:06:9c:96:95:74:27:1a:51:df:72:
5a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:86:85:BC:52:A5:FF:9C:CE:72:6F:27:19:CB:46:6E:00:F1:51:68
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/voaFvFKl_5zOcm8nGctGbgDxUWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.150.0/24
Signature Algorithm: sha256WithRSAEncryption
28:e2:32:6b:97:87:29:07:c1:8e:82:5b:00:87:88:a2:e7:74:
8f:e8:a6:96:7c:c0:95:0d:65:e8:d4:28:cc:3f:12:65:f5:c2:
58:6a:1c:64:b7:ca:9c:07:2c:17:8b:0f:8a:4b:9a:80:67:0b:
bf:46:0a:f3:e9:a6:a5:95:73:17:8d:2b:e8:a6:ae:85:2b:13:
6b:11:f6:d2:80:99:e4:fd:b9:23:fb:4b:18:c7:9c:3c:19:c2:
28:c9:05:25:e6:4f:e8:57:07:cd:c0:1e:b3:68:a9:4d:b7:f1:
07:eb:e3:e4:89:8a:cb:fb:89:7c:8d:61:f7:e9:32:ab:e4:ff:
77:8b:f5:a3:29:a5:3f:74:de:ce:5e:e6:41:a7:7c:28:87:86:
1a:a1:c3:ca:7b:7e:da:19:45:ff:28:bd:3e:58:1a:86:f3:23:
a1:23:06:b3:e1:21:01:48:a5:c1:61:4e:28:9a:5e:0c:34:a8:
51:ef:fc:f3:ba:e2:f5:e1:a3:97:d0:da:96:fa:73:fd:cd:3b:
01:71:fa:34:10:01:9a:c2:b1:3c:e4:ab:c1:a6:da:6b:a3:b0:
17:02:65:40:15:3e:d1:79:a7:aa:f9:30:a4:2f:17:9c:96:fd:
82:98:83:9b:f0:2f:f0:c4:92:eb:a2:36:5a:61:b7:77:4c:08:
6e:a8:f3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org