Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wMVN1_wKQ0P4Uex7ghtVekd_vw.roa
File: 6wMVN1_wKQ0P4Uex7ghtVekd_vw.roa (raw, json)
Hash identifier: AUfjOEjypluYoUecc7nwKqiIRZ+E3KrK+Gm27/cXyYE=
Subject key identifier: EB:03:15:37:5F:F0:29:0D:0F:E1:47:B1:EE:08:6D:55:E9:1D:FE:FC
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01832BFADBC87950468F68852E368DDA9B25
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wMVN1_wKQ0P4Uex7ghtVekd_vw.roa
Signing time: Sun 11 Sep 2022 09:56:43 +0000
ROA not before: Sun 11 Sep 2022 09:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56339
IP address blocks: 163.5.68.0/24 maxlen: 24
163.5.70.0/24 maxlen: 24
163.5.69.0/24 maxlen: 24
163.5.65.0/24 maxlen: 24
163.5.72.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
163.5.80.0/24 maxlen: 24
163.5.85.0/24 maxlen: 24
163.5.81.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.103.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.14.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.13.0/24 maxlen: 24
163.5.20.0/24 maxlen: 24
163.5.23.0/24 maxlen: 24
163.5.40.0/24 maxlen: 24
163.5.42.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
163.5.41.0/24 maxlen: 24
163.5.43.0/24 maxlen: 24
163.5.48.0/24 maxlen: 24
163.5.50.0/24 maxlen: 24
163.5.46.0/24 maxlen: 24
163.5.49.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.45.0/24 maxlen: 24
163.5.47.0/24 maxlen: 24
163.5.54.0/24 maxlen: 24
163.5.56.0/24 maxlen: 24
163.5.52.0/24 maxlen: 24
163.5.55.0/24 maxlen: 24
163.5.57.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
163.5.2.0/24 maxlen: 24
163.5.10.0/24 maxlen: 24
163.5.11.0/24 maxlen: 24
163.5.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:2b:fa:db:c8:79:50:46:8f:68:85:2e:36:8d:da:9b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 11 09:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb0315375ff0290d0fe147b1ee086d55e91dfefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b0:e2:90:19:2e:b4:1b:6b:3b:9a:72:dd:6a:
4c:7d:ec:c8:22:fe:66:c2:51:02:f5:dc:01:68:6c:
94:1e:6e:ca:2f:f2:9b:ae:40:d4:98:81:8b:44:93:
7d:3a:1f:50:75:10:ad:08:62:42:b5:66:5c:65:80:
37:e5:90:7d:fa:9f:0d:c3:49:06:d3:89:b0:37:83:
03:8e:9a:f7:48:de:86:20:e6:46:39:94:c3:68:76:
a1:45:8e:d6:80:c8:25:44:d3:71:f3:27:8d:43:96:
a0:be:9a:85:56:1c:1a:dc:79:34:3e:32:90:ce:28:
97:48:59:19:71:f5:a3:9a:a9:36:1d:30:cb:f2:c0:
a4:cc:a0:ad:b6:3a:e5:0a:41:ee:ca:7c:38:03:ce:
b0:21:53:d5:a9:41:2d:82:55:d1:85:77:a0:2e:ed:
a1:cf:c9:89:0e:cb:0e:e0:06:cf:d9:de:91:02:b1:
f9:2a:26:7b:fe:5c:01:63:81:ac:d2:ea:56:35:6f:
93:22:a8:00:31:2f:45:5d:c6:2b:48:ff:96:52:36:
6b:ab:1c:81:09:08:0e:ea:02:84:f3:0d:03:f0:09:
d6:19:c9:d8:22:1c:ae:eb:ec:1f:43:3c:ff:bd:e4:
38:44:70:0a:5f:0c:b9:b8:c0:3e:99:75:06:c1:5a:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:03:15:37:5F:F0:29:0D:0F:E1:47:B1:EE:08:6D:55:E9:1D:FE:FC
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/6wMVN1_wKQ0P4Uex7ghtVekd_vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.2.0/24
163.5.5.0/24
163.5.10.0-163.5.14.255
163.5.20.0/24
163.5.23.0/24
163.5.40.0-163.5.57.255
163.5.65.0/24
163.5.68.0-163.5.70.255
163.5.72.0/23
163.5.80.0-163.5.82.255
163.5.85.0/24
163.5.93.0-163.5.94.255
163.5.98.0/24
163.5.100.0-163.5.107.255
163.5.109.0/24
Signature Algorithm: sha256WithRSAEncryption
88:58:12:72:24:8c:c8:56:0a:13:90:f5:9f:07:91:ae:7c:00:
ac:a6:33:77:82:dd:23:31:6e:03:5d:9d:30:91:13:f4:1b:0a:
39:76:4d:ef:f0:96:d1:5b:f7:db:bd:5e:20:8d:33:c4:2f:8c:
b4:b6:b9:24:81:55:b1:68:1a:b3:72:91:7a:2a:3a:b5:c1:72:
c2:53:24:53:d4:73:32:a4:0a:5c:83:c5:68:e0:9f:c9:bb:99:
66:bf:6a:b4:11:08:d0:2d:b5:8f:ca:4d:9e:71:ae:74:29:c2:
ac:62:85:ca:4b:1b:29:6e:42:fc:84:c5:2e:45:01:84:cc:a4:
54:7c:65:7b:ab:78:95:98:9b:70:00:40:2b:13:97:82:1d:35:
ff:25:4f:85:5f:22:64:b5:43:ad:44:6d:38:13:af:63:ff:fd:
87:d8:50:2e:ce:9c:60:d0:60:3b:45:45:91:e9:5d:54:4f:29:
a5:3f:11:47:cc:7c:44:32:01:08:49:d1:b5:0f:a5:32:d7:28:
f6:5e:ae:7a:9d:e8:94:ba:9e:7a:75:d3:a7:ee:37:b9:c7:48:
e1:4d:73:96:23:40:99:3a:d4:a7:e2:05:a3:89:dc:04:65:6f:
e2:7c:cf:53:bd:3d:2f:f2:0d:f0:c2:63:b2:e7:ea:db:4a:37:
8a:57:e7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org