Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wraCTm9ocjy6kmVKuWsX7sA-fr4.roa
File: wraCTm9ocjy6kmVKuWsX7sA-fr4.roa (raw, json)
Hash identifier: Zuaaoc/nbdI547GC7SVH/ueKaUxbKVf+7Rp3zAnSebQ=
Subject key identifier: C2:B6:82:4E:6F:68:72:3C:BA:92:65:4A:B9:6B:17:EE:C0:3E:7E:BE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01835B7BE75420EE1B7F740965B499756156
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wraCTm9ocjy6kmVKuWsX7sA-fr4.roa
Signing time: Tue 20 Sep 2022 15:19:50 +0000
ROA not before: Tue 20 Sep 2022 15:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 163.5.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:7b:e7:54:20:ee:1b:7f:74:09:65:b4:99:75:61:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 20 15:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2b6824e6f68723cba92654ab96b17eec03e7ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:28:5f:43:4e:7f:14:bd:f9:7d:25:56:f0:
d4:e4:94:90:ea:d3:5d:cc:b4:de:c9:49:44:8e:6d:
df:34:ac:e1:7d:77:1e:ed:0d:c0:1b:cf:c7:8f:0e:
c4:4b:e5:5e:61:c6:3e:5a:96:68:b7:11:b9:87:4f:
d3:4e:e4:ee:d7:e4:b1:5b:87:70:b7:a4:87:3d:ae:
b7:b7:c0:3e:f1:fd:c1:c0:09:e2:b5:73:d2:80:80:
03:fd:1c:f7:d2:82:d4:ed:35:9d:94:62:08:ec:67:
15:11:e9:ea:38:ff:d0:fe:6f:9f:62:88:5e:20:4e:
da:4f:b4:93:91:de:d2:d0:3e:d9:ed:8e:00:5b:74:
7d:2e:d5:ca:55:7e:47:fa:86:14:83:33:2c:59:ce:
7a:68:74:03:97:68:fa:1e:78:e2:f3:33:53:3c:a2:
25:c8:cc:31:d1:88:c6:d5:21:73:b5:ab:0a:4f:ad:
15:ed:33:e4:18:47:ec:50:98:e1:59:e2:a4:cc:68:
0b:05:b8:89:3d:24:be:f0:15:bd:a6:85:7b:4c:32:
15:3a:b9:da:c6:6f:30:64:eb:27:c7:94:2c:26:fa:
cb:d8:fb:92:69:ed:1d:e7:56:ec:fd:b4:39:40:31:
51:72:74:69:41:37:be:9a:b8:51:a0:5c:f5:3d:ed:
2f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B6:82:4E:6F:68:72:3C:BA:92:65:4A:B9:6B:17:EE:C0:3E:7E:BE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/wraCTm9ocjy6kmVKuWsX7sA-fr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.228.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a6:23:9d:b8:60:2c:46:b7:f3:d0:bf:d4:96:0c:b8:7f:c3:
b0:34:47:39:14:20:9a:8b:09:a0:62:d4:df:10:8e:3a:c5:b8:
9b:c8:0c:a6:e9:46:9f:a3:8e:ae:1c:ac:f8:7d:7a:4e:14:66:
97:01:a4:a4:20:77:2f:69:96:df:7f:d7:1d:e1:6e:6d:9a:6e:
60:32:a4:6c:fa:32:63:1e:35:d2:29:ba:5d:32:c4:01:50:bd:
c3:06:61:6a:8a:18:19:b1:2b:64:82:09:b8:58:c5:c8:03:4a:
d8:7a:2c:7c:42:9d:5d:bb:7f:63:9b:7d:b8:5a:3b:ab:45:d1:
7d:e5:99:0d:93:d8:62:2d:51:e2:b4:7d:06:29:5b:8f:bb:57:
d8:7d:ab:bd:50:a7:30:d0:eb:30:a9:c2:00:0f:67:9f:a0:98:
c3:00:7c:9a:a5:24:89:f8:86:3b:43:84:38:3e:65:2f:60:41:
37:04:52:cd:5b:70:69:8e:48:8f:3b:ef:5e:91:2a:06:d4:2f:
be:a1:8d:5a:e2:a5:f1:a3:08:1c:63:7b:86:43:13:7f:5d:8f:
a1:ec:c8:86:35:2a:17:23:11:c7:44:57:23:0f:12:87:a6:24:
d1:6c:da:ab:1f:f9:f5:f6:7a:b4:b1:59:74:62:8d:88:db:0d:
34:81:44:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-ams.rpki-client.org