Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/X00kt08KMASjTUKVexIS9Q-VfS0.roa
File: X00kt08KMASjTUKVexIS9Q-VfS0.roa (raw, json)
Hash identifier: cP7mHvb7S513o0YTBYxUX8pOboTj8GOrxsvYYfOwumg=
Subject key identifier: 5F:4D:24:B7:4F:0A:30:04:A3:4D:42:95:7B:12:12:F5:0F:95:7D:2D
Certificate issuer: /CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Certificate serial: 029234B7
Authority key identifier: 09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/X00kt08KMASjTUKVexIS9Q-VfS0.roa
Signing time: Sat 01 Jan 2022 16:02:33 +0000
ROA not before: Sat 01 Jan 2022 16:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30981
IP address blocks: 164.40.164.0/24 maxlen: 24
164.40.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43136183 (0x29234b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Validity
Not Before: Jan 1 16:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f4d24b74f0a3004a34d42957b1212f50f957d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4e:89:a5:04:80:c0:51:76:df:aa:45:be:4c:
a6:27:12:e6:5f:86:95:82:dc:68:dc:e5:53:49:56:
bc:cb:0a:ae:21:cf:9c:08:44:61:37:c6:2e:b3:00:
7e:3d:27:8d:90:cf:8f:c4:f7:64:99:6a:12:5b:42:
a7:67:c0:3e:cc:c8:36:b2:02:db:58:c7:db:19:de:
0e:05:1e:02:07:0f:6d:f5:40:ae:b8:f7:e6:66:68:
c8:cc:9a:f9:12:ac:de:7d:50:a1:51:d6:fb:a3:61:
ec:93:50:7a:6f:fc:2a:10:ce:c3:dc:55:e7:8d:1e:
1a:4f:21:77:a5:59:6e:e4:a7:28:59:6e:c5:c1:27:
a1:62:be:0f:70:9c:90:6c:5a:be:f6:28:fc:03:5c:
a0:e3:2c:1d:81:84:c1:c2:93:a3:b0:6d:20:6f:3e:
06:de:d8:a9:48:2d:03:2d:0d:15:33:1f:06:b4:22:
60:e8:3f:8d:0d:30:c6:4c:4f:83:76:87:39:8b:0e:
90:ac:bd:87:fc:c2:c5:c7:9b:27:2d:68:24:76:c5:
89:62:48:bf:7b:1d:3c:fc:f2:e9:75:f5:c6:67:a9:
01:db:ee:df:d0:9e:ef:56:fc:f8:15:96:68:4e:f5:
38:81:cd:ee:8c:fc:56:68:b2:56:fb:c2:41:a7:f1:
65:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4D:24:B7:4F:0A:30:04:A3:4D:42:95:7B:12:12:F5:0F:95:7D:2D
X509v3 Authority Key Identifier:
keyid:09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/X00kt08KMASjTUKVexIS9Q-VfS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/CfDczrdPEYWs2XruqsJd2l6bCTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.40.163.0-164.40.164.255
Signature Algorithm: sha256WithRSAEncryption
74:71:b1:5d:ae:6e:16:02:7c:58:82:4a:d5:fe:c3:e6:0a:77:
10:6c:62:21:f4:44:a3:45:ba:d2:c2:10:73:e9:6b:63:5b:cb:
17:b5:b8:9c:17:5f:60:bb:b5:fe:38:7d:f2:ed:1f:3a:f9:e0:
b9:19:63:5d:74:9d:49:8c:33:47:a0:77:71:51:95:93:f9:9f:
c0:27:e9:27:fc:4d:50:c9:5f:1d:a2:d4:e4:7a:33:95:23:f1:
b7:45:e5:3c:39:4d:c2:2e:99:47:b3:a3:ff:0c:b2:10:63:a8:
f5:a6:cb:87:32:d5:3a:70:4a:b3:fc:35:c3:35:41:f2:df:07:
39:70:38:d1:77:a0:c5:cb:9d:d3:90:2b:bd:8b:d9:92:fd:a0:
a5:4e:52:dc:0a:8e:c1:58:04:ca:44:cd:f5:12:d4:2e:31:08:
1d:6d:26:1c:69:f3:3a:f8:fd:8b:09:8f:69:c3:5b:06:04:3b:
28:5b:bd:e2:d0:2a:de:e2:68:de:cf:b1:d3:6d:8e:e0:63:26:
20:c9:f3:fd:43:0d:60:2d:d0:2a:55:e1:d8:1b:5e:84:7c:3c:
c6:a0:c3:ee:47:28:cf:9e:fa:3f:bb:cf:90:69:63:59:df:c0:
aa:5f:ea:13:81:d9:d6:22:e8:eb:5e:d3:2d:af:93:c9:b8:d7:
fd:c5:56:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:07 2023 by rpki-client on console-ams.rpki-client.org