Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wRFo9Etw6fTUsYP-HX8nuv1GM9c.roa
File: wRFo9Etw6fTUsYP-HX8nuv1GM9c.roa (raw, json)
Hash identifier: 2ricp9YsGIXOdIlOA9p79+Ot3ngc5NkvKENz7WX+Qlc=
Subject key identifier: C1:11:68:F4:4B:70:E9:F4:D4:B1:83:FE:1D:7F:27:BA:FD:46:33:D7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01847AA1A618ECD2BFDA12861116CA204A2D
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wRFo9Etw6fTUsYP-HX8nuv1GM9c.roa
Signing time: Tue 15 Nov 2022 09:32:04 +0000
ROA not before: Tue 15 Nov 2022 09:32:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 163.5.144.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:a1:a6:18:ec:d2:bf:da:12:86:11:16:ca:20:4a:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 15 09:32:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c11168f44b70e9f4d4b183fe1d7f27bafd4633d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3d:f5:02:05:d4:5e:03:85:51:48:7e:f4:50:
25:4b:04:d5:83:72:e1:ff:1b:02:03:30:51:ad:18:
fa:b6:12:bd:0f:5f:b4:a2:95:5e:5f:d8:08:7c:b1:
82:19:3e:e9:dd:7a:f2:04:8e:06:86:f6:6e:a1:93:
4b:85:a5:58:75:6a:87:c7:15:9f:80:46:e8:65:d7:
66:b3:07:09:91:71:a9:57:7d:41:d0:62:e9:0c:be:
6e:89:0a:ea:59:63:04:2f:c5:eb:f6:e9:7a:08:85:
bf:26:31:2b:98:27:21:c5:b7:a5:f0:fd:26:8e:df:
49:6a:96:09:25:27:28:84:98:ed:df:52:12:a6:2d:
86:f9:dc:15:35:15:5b:d9:96:f6:a8:f7:6d:5f:40:
1a:85:d4:74:29:e9:0d:48:c0:92:d8:79:9a:e4:d1:
87:d7:2b:1e:ee:07:10:7a:f7:8b:94:43:33:5d:91:
8a:a6:78:56:06:e9:1e:96:62:48:4e:a6:ca:05:24:
78:09:d2:24:11:f2:07:08:df:7f:8a:11:32:cf:ff:
d8:93:32:77:9c:d0:28:ca:cd:53:10:26:ad:06:d1:
d7:71:d9:cf:69:d9:74:41:47:86:35:78:41:1e:19:
a7:26:73:d2:88:58:b1:23:f8:c7:d2:4e:a1:01:39:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:11:68:F4:4B:70:E9:F4:D4:B1:83:FE:1D:7F:27:BA:FD:46:33:D7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wRFo9Etw6fTUsYP-HX8nuv1GM9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.144.0/24
163.5.168.0/24
Signature Algorithm: sha256WithRSAEncryption
43:3e:1d:50:49:d1:bc:69:48:08:94:a1:a1:6d:d4:b7:c2:0b:
b0:15:ea:af:c4:59:d8:8d:07:97:c5:b5:69:e7:84:85:88:a5:
44:2d:2a:30:4d:42:3a:34:18:1b:e3:fd:6e:c0:86:ec:65:4f:
cc:f7:79:4f:d1:ea:c5:05:8d:40:72:67:8b:44:63:82:70:1e:
d3:50:b1:34:14:93:30:fe:53:54:4f:9f:58:09:b6:e0:05:7e:
22:eb:4a:82:45:b8:b4:87:e4:57:49:7d:5a:0f:15:3e:77:90:
c4:5c:1f:d3:89:c7:b5:17:95:d1:45:a2:55:35:10:55:e6:77:
b4:8d:80:6e:95:28:d2:50:a0:f6:31:a1:4d:81:2e:3e:f1:3c:
67:3c:b0:62:df:98:78:83:81:47:82:77:bf:e9:50:9e:46:b9:
22:37:e7:af:29:f7:d6:91:94:00:5d:c3:af:bc:de:fc:05:1b:
9d:ff:09:aa:c0:04:e7:09:6d:00:23:9c:5a:b4:e6:57:b2:53:
93:de:9e:aa:0a:dc:52:ac:3c:94:4c:fa:47:3a:21:c8:5a:d1:
58:6d:2b:b2:b3:f9:7e:60:2f:b0:b4:0b:69:6a:a5:b2:0d:98:
e8:3f:26:20:b5:fd:e0:98:d1:83:16:87:32:66:b9:d7:ef:21:
32:21:18:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org