Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vxguMqrpIbq2eGa49wSZUKujG6c.roa
File: vxguMqrpIbq2eGa49wSZUKujG6c.roa (raw, json)
Hash identifier: Jx02261tFAds6mSXSdat46w7xpxr9u9+LABTTZEY7aU=
Subject key identifier: BF:18:2E:32:AA:E9:21:BA:B6:78:66:B8:F7:04:99:50:AB:A3:1B:A7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0145EF41
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vxguMqrpIbq2eGa49wSZUKujG6c.roa
Signing time: Fri 24 Jun 2022 08:19:47 +0000
ROA not before: Fri 24 Jun 2022 08:19:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 163.5.127.0/24 maxlen: 24
185.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21360449 (0x145ef41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 24 08:19:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf182e32aae921bab67866b8f7049950aba31ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:db:f9:de:a2:d9:e1:19:b7:bd:9e:ad:62:
37:da:71:26:c8:88:d0:02:5a:d3:cf:aa:9a:cd:84:
01:f1:aa:e1:75:73:fc:e8:4d:de:e5:d2:3a:ef:a8:
fa:7d:ee:0e:ac:89:ab:b4:0b:5f:c4:85:00:65:51:
e3:f4:d9:c0:10:ba:47:59:96:2a:4d:d5:8b:5c:a8:
aa:f2:4e:e0:85:fc:08:7c:2c:bf:1b:0d:97:eb:3a:
39:d0:26:f7:c2:10:2d:81:0a:0f:9b:2b:2f:ca:1e:
11:a7:43:60:c5:2f:02:dd:20:a4:c0:48:48:51:6e:
3f:bc:63:3e:78:03:ba:79:74:48:38:33:cd:e8:0c:
74:95:c3:6a:bf:fc:fa:98:37:a0:d1:9a:e8:70:a4:
d9:ca:d5:66:9d:3d:b2:60:15:d0:0e:d0:13:ce:c6:
c8:44:83:c8:8a:cf:be:a5:bf:44:5a:65:b4:36:83:
62:a0:da:c6:c0:4e:13:11:ea:d0:f2:3c:8b:d4:5c:
2c:84:dd:15:39:ad:2e:bf:3f:7d:73:22:ce:a0:7c:
f2:21:01:28:bb:b7:38:8b:8a:86:2f:c7:71:a9:ff:
cb:c8:85:b9:4f:ee:59:2d:6b:84:ac:e6:ca:2d:c1:
0f:8e:23:d5:05:59:81:85:28:1f:60:a4:06:36:e1:
ef:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:18:2E:32:AA:E9:21:BA:B6:78:66:B8:F7:04:99:50:AB:A3:1B:A7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/vxguMqrpIbq2eGa49wSZUKujG6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.127.0/24
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
32:dc:db:ec:50:3b:29:b7:5e:73:3c:31:89:59:42:fc:01:88:
d3:50:a6:1f:a5:81:7c:ba:29:db:ac:06:3b:32:82:d0:01:89:
17:ae:fa:12:c4:8e:68:c7:bc:2f:e1:4f:5e:d2:33:25:49:5c:
17:6c:f1:6f:d3:53:92:2b:1e:05:c6:e8:4a:3a:c6:8e:ec:08:
d5:a1:4a:96:82:1e:35:3e:fc:d2:3c:b7:a3:0a:10:72:a4:31:
8f:18:96:3f:27:81:65:45:68:4e:29:ec:f0:94:e2:f4:02:89:
97:04:c7:82:1a:8d:62:d9:71:b2:db:56:36:9a:95:6b:7b:60:
14:07:12:6c:c1:c8:29:8e:10:dd:6a:7e:c6:3a:e4:ed:d7:37:
74:ef:c1:e4:c9:ca:6b:de:1c:4e:da:77:ec:f3:2c:78:75:0f:
64:5d:44:6c:ab:26:e2:2a:e0:53:18:3a:61:f5:65:5d:66:62:
c8:64:3f:b8:9f:78:ba:81:8a:81:12:6c:14:33:ea:9b:7c:19:
cb:ea:c6:c6:fa:d9:79:34:80:e5:56:d7:6f:5c:59:0f:0e:e4:
ea:70:ae:87:9b:d1:41:fd:2d:83:aa:a4:6d:95:c5:d9:02:99:
23:95:22:ac:a5:d5:43:64:ee:28:48:7a:df:91:42:58:af:01:
ff:c5:45:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org