Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7sPGm0ATKw9hZTk2Coxjj8n_ExQ.roa
File: 7sPGm0ATKw9hZTk2Coxjj8n_ExQ.roa (raw, json)
Hash identifier: YnoYKCFXbYUDdHg07+cTtvlWFDC2nAR8QNITqeJBkNU=
Subject key identifier: EE:C3:C6:9B:40:13:2B:0F:61:65:39:36:0A:8C:63:8F:C9:FF:13:14
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01824A61A7D80BA50DF625097614EC3C96F5
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7sPGm0ATKw9hZTk2Coxjj8n_ExQ.roa
Signing time: Fri 29 Jul 2022 14:34:49 +0000
ROA not before: Fri 29 Jul 2022 14:34:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.180.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.183.0/24 maxlen: 24
163.5.184.0/24 maxlen: 24
163.5.185.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.135.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.140.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.153.0/24 maxlen: 24
163.5.154.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.159.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
185.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:61:a7:d8:0b:a5:0d:f6:25:09:76:14:ec:3c:96:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jul 29 14:34:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eec3c69b40132b0f616539360a8c638fc9ff1314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3a:88:8d:69:3f:d5:e4:05:92:76:23:07:4c:
27:e2:b5:3e:e8:e3:71:57:2f:d2:dd:1f:c7:7f:69:
b1:48:e7:4b:f1:77:c5:a0:dd:3c:71:6c:2c:81:1b:
ff:12:24:eb:a7:bd:7e:95:06:b6:47:d4:bf:12:57:
f3:53:e8:6e:1f:b6:43:c5:19:e6:a1:a1:15:08:09:
2a:29:3d:de:5c:70:34:81:3f:3e:ec:40:2c:93:bc:
81:cf:c4:d7:24:b4:88:3a:c7:97:2b:14:9b:67:52:
16:a2:3b:cc:d7:92:84:29:67:ea:29:ef:c4:cb:45:
bd:f1:b6:b0:1d:72:4d:eb:98:2e:76:1c:4d:84:58:
a3:c6:48:26:c6:60:48:07:7b:f8:cc:c4:d6:95:86:
20:16:72:c9:19:80:5a:7b:4b:9d:05:0b:d7:de:09:
c0:a8:79:e9:88:c2:0b:7f:5d:db:b3:6f:58:c6:9c:
3d:3c:dd:24:03:cd:54:4a:2b:15:59:f2:0d:85:28:
1c:b8:d6:a2:05:7a:6b:a0:ea:28:96:4d:14:2e:00:
bf:bb:31:35:c7:79:e3:e5:85:62:e3:03:18:d0:bb:
1d:86:ad:47:6b:f0:c9:83:62:21:5c:2b:7d:0d:0c:
fe:38:65:0c:bd:70:bb:ba:f6:50:6b:a7:5c:7f:89:
ff:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C3:C6:9B:40:13:2B:0F:61:65:39:36:0A:8C:63:8F:C9:FF:13:14
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7sPGm0ATKw9hZTk2Coxjj8n_ExQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.125.0/24
163.5.127.0-163.5.189.255
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
56:9c:67:d1:65:02:21:23:70:a4:b2:00:61:4b:26:bd:fb:90:
3e:ac:46:bb:eb:67:83:b4:85:40:97:e0:e4:7a:ff:74:36:d3:
16:9b:85:20:28:87:77:15:f4:b9:88:1e:16:5d:cd:96:75:6b:
b0:3b:55:77:f9:65:21:57:c0:3e:b4:05:dd:78:db:d7:94:fd:
e5:db:3b:06:1b:df:38:67:71:07:d2:94:23:07:4a:b7:c2:31:
d1:02:ab:10:d2:de:82:62:37:74:27:0c:76:b6:d2:91:6e:04:
59:19:fe:fb:e8:27:78:94:79:dd:6e:82:7b:fe:c8:c7:86:3c:
f8:ee:5e:60:da:72:74:aa:86:2d:7b:a5:0c:be:18:f7:33:c7:
0d:9a:87:c1:17:7f:f6:03:d8:cb:f1:83:1f:3f:85:5e:8c:1d:
8b:80:55:de:78:7b:1c:df:c2:0b:e3:2b:4f:80:f0:ea:58:29:
0c:e4:86:7b:58:7c:cb:69:3b:c6:61:b5:0d:ca:31:bd:7e:66:
d2:a4:f0:07:5f:a4:c0:8a:67:6e:40:62:b9:12:27:db:a7:e2:
97:0f:6f:38:99:c8:32:37:6b:ec:4f:94:d5:50:27:6b:8c:79:
49:e3:16:37:1a:0d:6d:00:43:f1:2a:ab:28:3d:9f:4d:10:25:
2c:2d:1f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org