Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Bg_NAJx_QO5g-_OFFk7hxkXvObI.roa
File: Bg_NAJx_QO5g-_OFFk7hxkXvObI.roa (raw, json)
Hash identifier: OAdr4RIldbHDx/O2JU8uRmZzUWlB7GizNfEsd7wLgv4=
Subject key identifier: 06:0F:CD:00:9C:7F:40:EE:60:FB:F3:85:16:4E:E1:C6:45:EF:39:B2
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0182599D330A41C16DEB207014C11449BE1F
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Bg_NAJx_QO5g-_OFFk7hxkXvObI.roa
Signing time: Mon 01 Aug 2022 13:34:10 +0000
ROA not before: Mon 01 Aug 2022 13:34:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 163.5.179.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.180.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.183.0/24 maxlen: 24
163.5.184.0/24 maxlen: 24
163.5.185.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.190.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.193.0/24 maxlen: 24
163.5.194.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.196.0/24 maxlen: 24
163.5.197.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.132.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.133.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.135.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.140.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.145.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.153.0/24 maxlen: 24
163.5.154.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.159.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
185.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:9d:33:0a:41:c1:6d:eb:20:70:14:c1:14:49:be:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 1 13:34:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=060fcd009c7f40ee60fbf385164ee1c645ef39b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:32:32:2e:d9:a1:8a:78:ba:f8:f9:d5:2d:
60:5e:0a:1f:4b:41:7c:eb:63:53:6f:33:99:c0:b4:
c0:dc:3b:72:9c:4f:9c:7e:38:6b:35:ca:b9:a5:70:
4b:71:59:3a:12:f8:51:4f:42:08:93:5a:4e:a4:3b:
3f:e7:24:53:67:77:08:0b:56:16:fb:7c:57:14:82:
1a:c0:ff:00:d9:e8:03:fb:ce:46:36:d3:05:fc:4d:
01:58:bd:8f:b5:d8:d2:0f:b6:a7:0c:30:1b:36:cb:
b5:c2:81:25:91:21:e8:01:36:76:e3:9f:b6:9b:44:
82:ce:20:f0:6a:9d:5d:7d:65:28:39:62:32:cb:18:
a2:97:d3:3d:b6:8b:49:a8:33:fb:9c:0f:c1:ff:87:
11:6e:df:42:7f:33:8a:09:a9:7b:7e:0f:8e:58:ed:
83:98:41:d5:90:df:34:62:01:ec:26:33:9d:b0:4e:
c8:27:b5:93:b1:52:0c:9c:35:30:5f:59:73:0e:c3:
e6:a2:74:0a:1a:14:76:29:11:f4:a7:79:22:d6:1a:
11:5b:2d:17:44:33:42:74:94:05:42:f3:8a:b5:91:
f1:9d:d6:d0:34:55:57:df:d9:ad:39:1f:97:cf:87:
91:2b:a6:f1:db:20:58:8b:db:94:14:87:36:5a:4f:
d8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0F:CD:00:9C:7F:40:EE:60:FB:F3:85:16:4E:E1:C6:45:EF:39:B2
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Bg_NAJx_QO5g-_OFFk7hxkXvObI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.125.0/24
163.5.127.0-163.5.199.255
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
41:31:f2:70:dc:23:6f:74:38:8f:b0:25:5c:7e:d0:bf:d2:c5:
07:d1:e9:92:8a:07:13:20:1b:7e:f4:db:93:4e:bd:a4:9c:b1:
d5:b5:a5:f5:86:b4:cb:bf:38:aa:f9:01:e8:5d:b9:a7:4f:3a:
ef:82:8b:7f:fc:2b:a9:1d:ea:e2:68:64:0e:28:4f:92:ae:a1:
84:05:48:b5:74:98:2c:c0:1b:12:f7:07:de:ce:63:a1:0a:14:
e4:08:f2:7c:ca:4e:66:49:1d:d5:2c:cf:2f:e8:77:a8:83:61:
b4:a1:10:1f:63:d5:bf:4f:b0:51:20:e0:19:0b:9d:ea:54:48:
b7:52:3e:5d:f6:44:61:98:3b:7f:12:aa:e9:49:1b:f5:93:23:
26:34:dc:5d:a6:bf:d5:77:94:cc:5d:1d:83:2d:14:40:db:94:
25:ac:31:c4:af:f1:84:30:57:66:c7:ce:dd:0b:82:0f:86:66:
fb:02:0e:bc:fd:7b:9f:26:df:d0:3f:e1:d9:b0:52:5d:88:c2:
8c:4d:9b:8b:92:34:d0:97:c9:c9:0a:8a:6d:de:1a:c6:7a:c9:
c5:52:0a:79:4e:73:a1:43:44:91:34:1f:ee:8b:ac:60:be:d5:
ea:a5:09:bd:c8:6c:45:8e:ab:84:de:bf:3e:aa:9e:d0:8a:3f:
8c:56:83:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org