Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/AEt9u3PMg44oYCnDg8DL6lkkyqQ.roa
File: AEt9u3PMg44oYCnDg8DL6lkkyqQ.roa (raw, json)
Hash identifier: lYhDWrdlTlvyOAp3vKDnZS706IweTQO5znoN1ji0ru8=
Subject key identifier: 00:4B:7D:BB:73:CC:83:8E:28:60:29:C3:83:C0:CB:EA:59:24:CA:A4
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01836A15F920488EB55712AA466479D098B4
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/AEt9u3PMg44oYCnDg8DL6lkkyqQ.roa
Signing time: Fri 23 Sep 2022 11:22:48 +0000
ROA not before: Fri 23 Sep 2022 11:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56339
IP address blocks: 163.5.2.0/24 maxlen: 24
163.5.10.0/24 maxlen: 24
163.5.11.0/24 maxlen: 24
163.5.5.0/24 maxlen: 24
163.5.68.0/24 maxlen: 24
163.5.70.0/24 maxlen: 24
163.5.69.0/24 maxlen: 24
163.5.65.0/24 maxlen: 24
163.5.72.0/24 maxlen: 24
163.5.73.0/24 maxlen: 24
163.5.82.0/24 maxlen: 24
163.5.80.0/24 maxlen: 24
163.5.85.0/24 maxlen: 24
163.5.81.0/24 maxlen: 24
163.5.103.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.14.0/24 maxlen: 24
163.5.12.0/24 maxlen: 24
163.5.13.0/24 maxlen: 24
163.5.20.0/24 maxlen: 24
163.5.23.0/24 maxlen: 24
163.5.40.0/24 maxlen: 24
163.5.42.0/24 maxlen: 24
163.5.44.0/24 maxlen: 24
163.5.41.0/24 maxlen: 24
163.5.43.0/24 maxlen: 24
163.5.48.0/24 maxlen: 24
163.5.50.0/24 maxlen: 24
163.5.46.0/24 maxlen: 24
163.5.49.0/24 maxlen: 24
163.5.51.0/24 maxlen: 24
163.5.45.0/24 maxlen: 24
163.5.47.0/24 maxlen: 24
163.5.54.0/24 maxlen: 24
163.5.56.0/24 maxlen: 24
163.5.52.0/24 maxlen: 24
163.5.55.0/24 maxlen: 24
163.5.57.0/24 maxlen: 24
163.5.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:15:f9:20:48:8e:b5:57:12:aa:46:64:79:d0:98:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 23 11:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=004b7dbb73cc838e286029c383c0cbea5924caa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dc:15:9c:72:e9:2a:eb:a2:ab:cc:0e:de:c8:
be:1e:39:c1:76:d0:50:a0:28:05:95:5f:22:c5:4a:
11:84:ff:7c:ff:a8:45:a3:bc:45:c0:dc:72:a4:07:
1e:76:41:ec:8d:1a:24:ed:e6:ec:3f:d1:de:59:f7:
00:ab:18:10:94:ac:fa:bb:b0:77:45:03:79:a2:f0:
b1:aa:2d:93:b2:1a:17:11:58:2b:96:df:89:a6:50:
da:30:67:bc:43:3d:8c:36:7d:32:47:b6:b6:8b:cf:
22:7f:85:16:e3:ae:6f:f7:4b:fa:1b:78:e9:31:a8:
02:c4:e4:40:fd:73:97:1b:45:06:76:ba:30:fa:c5:
2e:da:6f:de:91:7a:ab:b5:5a:f9:34:21:a8:2b:c0:
fa:d6:3a:da:9e:11:51:74:58:c7:d9:e1:fd:61:c1:
c0:7e:4c:b5:a3:4a:35:3a:4a:22:56:d4:2f:4b:69:
eb:2a:97:f4:7b:98:87:07:a0:8a:27:e4:ba:c5:bf:
b1:ab:16:85:e1:a5:8d:d8:bf:66:74:8c:0c:19:0f:
53:3b:b3:7d:cb:68:55:9e:cf:85:45:c4:45:d1:1a:
d6:cb:99:7d:f5:af:e0:cc:74:44:ee:de:29:fd:44:
cc:ef:8e:7a:fd:6a:ed:5f:ca:5d:e7:b8:c5:fb:7d:
d3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4B:7D:BB:73:CC:83:8E:28:60:29:C3:83:C0:CB:EA:59:24:CA:A4
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/AEt9u3PMg44oYCnDg8DL6lkkyqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.2.0/24
163.5.5.0/24
163.5.10.0-163.5.14.255
163.5.20.0/24
163.5.23.0/24
163.5.40.0-163.5.57.255
163.5.65.0/24
163.5.68.0-163.5.70.255
163.5.72.0/23
163.5.80.0-163.5.82.255
163.5.85.0/24
163.5.100.0-163.5.107.255
163.5.109.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f0:c4:b6:80:f7:2a:eb:d9:43:ea:f5:92:d1:7c:7c:32:48:
d2:4e:76:97:6f:bd:8c:93:ad:90:6f:e4:9c:6b:2c:06:31:45:
97:a7:a4:1e:b3:68:ac:34:92:9d:ce:25:47:07:24:07:53:2c:
22:22:98:30:92:1c:c0:fc:07:57:57:d0:48:0f:a6:ce:8b:d3:
d0:7b:59:f9:55:27:6a:10:b6:42:a2:e8:a6:88:cb:7d:c4:c4:
b4:5e:22:48:40:21:2f:b4:ae:55:8c:f7:b3:e3:39:d2:40:18:
ba:00:2b:ff:92:8d:1d:35:b8:65:2f:52:8e:11:1c:5f:e4:e4:
30:50:21:d1:85:f6:40:96:61:26:c7:1a:14:81:ad:17:2e:9b:
37:1e:d3:c1:b9:66:d2:82:4e:fc:bc:5a:b6:4f:5a:8b:f0:c6:
63:94:1a:a8:e7:ae:98:f6:a6:e2:46:8d:7f:c3:f0:09:aa:b4:
fc:d7:c8:76:9a:4f:bd:2b:c1:5d:7b:05:4a:79:75:0c:0f:d2:
02:92:fb:c3:be:8a:e1:32:17:be:97:f4:4e:56:65:96:79:e4:
e3:ee:00:65:e8:b9:b2:0d:13:82:fa:04:71:de:60:df:6a:ee:
aa:4b:d4:84:5a:0d:44:90:b3:fe:4a:4e:8d:91:03:a1:82:e6:
35:51:6b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org