Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5swzEooTrXeClS_GjDUH1zS4Lo4.roa
File: 5swzEooTrXeClS_GjDUH1zS4Lo4.roa (raw, json)
Hash identifier: vHBi0Zm0UVn0BZnfJDTh0/uRKuG4NFuLZI4V4UaUsQ8=
Subject key identifier: E6:CC:33:12:8A:13:AD:77:82:95:2F:C6:8C:35:07:D7:34:B8:2E:8E
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183CB0F3EA56C371BE4CC4171ACB2E64F3A
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5swzEooTrXeClS_GjDUH1zS4Lo4.roa
Signing time: Wed 12 Oct 2022 07:18:37 +0000
ROA not before: Wed 12 Oct 2022 07:18:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 163.5.91.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.214.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:0f:3e:a5:6c:37:1b:e4:cc:41:71:ac:b2:e6:4f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 12 07:18:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6cc33128a13ad7782952fc68c3507d734b82e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bf:9e:33:82:2b:f8:0e:14:bc:e1:2e:94:d7:
cc:12:c9:73:66:27:ca:b1:72:62:8e:79:7a:dd:55:
7f:9e:e9:9b:a6:ef:f6:af:97:6e:c6:37:7f:8f:05:
3f:ec:87:ac:08:13:bb:8d:95:8a:9a:fa:7b:4c:31:
4f:ba:93:c1:94:3f:84:ad:9b:71:26:2d:d5:19:0e:
bc:9c:02:54:1e:52:6a:f0:f8:1e:85:a0:4c:70:44:
86:e3:15:90:f8:65:b5:c0:4c:af:3b:a3:e6:dd:f4:
6b:00:aa:ee:c1:8f:34:8a:35:42:3f:fc:d1:ee:a7:
33:3c:3f:6a:a7:79:14:4b:74:bc:12:24:23:59:81:
25:5d:1a:17:60:9d:c7:d7:20:08:8d:87:5a:f1:c9:
a5:db:52:7e:c0:47:c5:d6:80:5c:c8:2b:8a:fc:bd:
6b:1b:77:cd:c6:41:4b:6d:fb:ac:af:0b:aa:ad:a5:
0b:1c:53:a0:15:30:4d:78:c5:33:04:8e:76:e1:cb:
37:0f:27:6c:ac:d1:db:34:67:28:a2:40:db:8c:54:
94:ab:d3:39:ab:73:fe:92:a5:27:ee:93:20:5a:2f:
72:c0:1e:a6:02:e1:6c:ce:3a:e7:c5:09:b8:ea:83:
db:93:d8:58:bc:f2:27:4e:ea:28:73:07:5d:59:7f:
42:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CC:33:12:8A:13:AD:77:82:95:2F:C6:8C:35:07:D7:34:B8:2E:8E
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/5swzEooTrXeClS_GjDUH1zS4Lo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/23
163.5.33.0-163.5.34.255
163.5.37.0/24
163.5.39.0/24
163.5.91.0/24
163.5.97.0/24
163.5.99.0/24
163.5.118.0/23
163.5.124.0/24
163.5.152.0/24
163.5.158.0/24
163.5.169.0/24
163.5.179.0/24
163.5.212.0/24
163.5.214.0/24
163.5.223.0/24
163.5.249.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:59:a0:12:22:dc:90:98:4d:8b:d0:d8:ca:54:02:c0:52:f0:
20:00:28:e0:2b:e1:78:a6:5a:22:b2:b8:de:7d:fa:76:7b:dd:
ba:de:20:eb:04:10:ec:ff:27:41:bd:fd:71:e4:50:aa:66:da:
d3:cd:95:34:87:09:9e:98:6b:8f:44:7a:af:9e:cf:d5:3c:a2:
5a:bd:85:65:c6:98:3f:51:5b:37:44:d3:a8:41:9a:ec:b0:6c:
b1:63:47:79:d0:37:38:34:27:36:2a:7c:4c:05:ad:d7:c6:db:
70:16:58:41:3d:91:6b:36:b8:e7:80:4e:87:23:50:41:48:29:
71:4c:4b:80:f7:cb:11:97:5d:56:fb:ad:f9:2f:c1:47:7a:26:
3a:c4:6c:3c:5b:44:10:22:13:bd:37:97:d6:91:41:03:ba:e9:
3a:c8:4b:97:17:95:5a:60:f6:68:4c:ab:62:dd:90:fb:d9:5e:
61:a1:98:ba:62:ad:cd:b1:11:ca:3f:86:0e:e2:f0:89:e7:df:
df:4e:e9:18:b0:2c:23:60:14:bf:90:7b:09:7d:47:fb:9d:7d:
36:2f:a2:f3:4b:1f:01:29:1f:07:04:5d:0e:2a:4b:95:b7:28:
59:3d:e4:b7:17:91:0f:18:1f:96:d6:b9:ce:a4:49:4c:38:49:
44:73:b3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org