Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zxugbopevThPz0DYUVPJdQI9YLs.roa
File: zxugbopevThPz0DYUVPJdQI9YLs.roa (raw, json)
Hash identifier: QxFCwup/rXVilUew1ljeqw5iCb6j++e620cErGifsWo=
Subject key identifier: CF:1B:A0:6E:8A:5E:BD:38:4F:CF:40:D8:51:53:C9:75:02:3D:60:BB
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01827C90D6DEE98E4A671B0D3264C055FDC8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zxugbopevThPz0DYUVPJdQI9YLs.roa
Signing time: Mon 08 Aug 2022 08:27:23 +0000
ROA not before: Mon 08 Aug 2022 08:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210122
IP address blocks: 163.5.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:90:d6:de:e9:8e:4a:67:1b:0d:32:64:c0:55:fd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 8 08:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf1ba06e8a5ebd384fcf40d85153c975023d60bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:58:34:2b:92:ea:60:e8:3b:59:43:b5:35:ee:
18:01:a7:f5:3c:86:02:76:92:e3:55:51:ed:b0:95:
8e:68:84:a2:65:fd:f9:9a:b5:62:73:25:11:12:9d:
33:c1:36:5f:e8:0b:35:5f:ad:3a:6a:2e:d0:5e:8c:
c8:b8:09:5c:34:58:f9:18:f5:06:32:1f:6d:87:01:
39:82:ba:3e:28:6e:ae:6f:df:29:0c:46:7c:06:0a:
2e:7e:99:58:6e:7b:bc:ab:14:a8:fe:ea:7d:82:5b:
57:7c:f7:3c:d1:6d:9c:8a:0f:c5:14:0d:2d:9b:6b:
3a:aa:21:7d:89:a4:26:e0:7b:bd:39:20:9a:4f:b1:
49:03:76:56:b6:b3:a0:2b:09:c5:c3:e2:8f:d4:a1:
63:21:e6:8b:25:83:1f:a0:e6:b6:12:3c:14:ff:ee:
81:5e:09:03:cb:76:e0:b0:e2:f3:d6:e3:7f:1e:9a:
26:81:a5:92:86:2d:c1:ac:ec:91:7f:42:76:2e:00:
dd:6c:05:87:c5:b6:b2:fd:b5:c9:0b:cb:b7:14:7f:
b3:43:7f:63:ac:21:8a:ae:b5:81:b3:ae:73:39:3d:
04:7e:c6:b7:74:48:37:1f:ad:b3:b8:8f:cf:13:e0:
49:b1:c2:9b:22:3e:25:4a:e1:01:07:a5:dd:14:0f:
21:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1B:A0:6E:8A:5E:BD:38:4F:CF:40:D8:51:53:C9:75:02:3D:60:BB
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zxugbopevThPz0DYUVPJdQI9YLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.181.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:04:aa:93:eb:09:a4:ed:dc:76:9b:69:f3:f8:e8:61:ee:0d:
89:f5:f9:45:ec:26:cd:0c:f7:aa:f0:67:88:e8:24:4f:94:a4:
c0:50:28:d5:00:eb:a8:68:92:5e:0c:95:d6:45:27:08:0e:63:
22:ca:f7:55:55:43:94:0b:40:ac:74:8c:03:10:b0:d0:14:8e:
eb:0b:8c:78:77:f0:22:bc:30:b5:6b:21:76:af:82:ef:5c:7c:
4b:4d:5b:54:85:7a:38:e2:46:2f:9e:79:14:46:84:a0:8f:1d:
35:67:e0:72:d1:63:40:07:bb:87:44:f8:d0:12:0e:ac:56:62:
9f:dd:19:ff:ec:61:ae:9f:ce:68:a4:78:5a:09:a2:ce:27:1f:
3d:1b:e8:5d:a0:09:13:e7:d7:60:f6:90:28:68:a0:22:1d:18:
d3:9d:a8:53:0c:39:e1:6a:c0:2b:0f:35:84:f4:94:cf:06:c7:
1c:08:00:dc:d3:f9:6c:ac:9d:1c:be:16:70:1b:7e:ab:af:8c:
cd:73:82:00:93:5f:59:f3:5e:64:4e:81:f1:a2:e0:ec:09:aa:
73:c7:2c:37:22:1c:d5:12:7e:fa:4f:40:31:24:d8:f1:09:5a:
b3:0d:6b:91:77:d3:a0:43:80:9b:a7:8b:fa:4d:51:e1:31:b8:
be:74:0c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org