Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jj-l8To2ASBURLDhc14T5aIk2vk.roa
File: Jj-l8To2ASBURLDhc14T5aIk2vk.roa (raw, json)
Hash identifier: TPL/gdzJMuIMT50pxwjzzdCXBukj+XAqxvVftf9BF/U=
Subject key identifier: 26:3F:A5:F1:3A:36:01:20:54:44:B0:E1:73:5E:13:E5:A2:24:DA:F9
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01844E68038E2B800C00427ED1693E872BB9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jj-l8To2ASBURLDhc14T5aIk2vk.roa
Signing time: Sun 06 Nov 2022 19:25:50 +0000
ROA not before: Sun 06 Nov 2022 19:25:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 163.5.91.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.214.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4e:68:03:8e:2b:80:0c:00:42:7e:d1:69:3e:87:2b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 6 19:25:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=263fa5f13a3601205444b0e1735e13e5a224daf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dc:6c:ca:0c:60:d6:3e:d6:0d:65:5d:81:e0:
e2:72:2f:1e:61:b1:de:0d:d5:ee:08:55:88:c4:a2:
d4:c0:83:04:28:5a:95:3a:1a:60:96:49:e2:58:90:
1c:59:76:e6:62:63:bb:4f:a6:4c:c1:21:92:e5:bc:
ff:cd:48:48:8c:36:50:25:8a:1f:57:02:c6:e6:13:
2d:80:99:28:74:4e:51:30:77:69:26:76:1e:65:59:
cf:e6:26:f7:4e:52:c4:dd:0c:36:ed:c2:2b:59:b9:
83:d7:d9:f5:28:77:86:08:31:c4:c1:f8:25:48:39:
df:50:df:7d:f2:dc:92:06:40:e7:fd:92:8f:d7:fb:
3e:0c:a2:c5:a8:72:94:10:c0:04:76:fa:c6:cc:f2:
12:3b:65:97:c4:f6:8d:82:02:50:fd:09:eb:d8:e6:
7e:13:ea:b7:e7:25:7b:57:41:d7:ed:86:8d:3b:9b:
2b:79:14:4b:23:07:6d:38:7a:12:ce:93:49:87:b7:
d0:4b:79:86:86:ba:10:97:b2:50:bc:29:13:99:41:
7d:99:68:ee:a4:31:6a:08:64:78:77:5e:23:f5:79:
15:09:35:4f:a7:2f:8a:4a:97:6c:34:2c:40:1d:fd:
1c:48:be:b5:c3:27:fe:77:82:11:c6:d4:ce:ad:3a:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:3F:A5:F1:3A:36:01:20:54:44:B0:E1:73:5E:13:E5:A2:24:DA:F9
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Jj-l8To2ASBURLDhc14T5aIk2vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/23
163.5.33.0-163.5.34.255
163.5.37.0-163.5.39.255
163.5.91.0/24
163.5.97.0/24
163.5.99.0/24
163.5.114.0/24
163.5.118.0/24
163.5.124.0/24
163.5.152.0/24
163.5.158.0/24
163.5.169.0/24
163.5.179.0/24
163.5.212.0/24
163.5.214.0/24
163.5.223.0/24
163.5.249.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
19:69:43:8c:46:51:da:73:2a:5a:74:4a:9c:6f:e1:0e:ce:f0:
73:e0:39:24:8f:27:f4:44:78:b9:eb:94:c6:b9:98:dd:c0:bf:
a1:2f:44:5d:b0:7a:79:39:6f:0a:e3:de:96:08:13:cb:f7:d2:
c0:5b:3c:24:0a:62:1c:28:d0:2f:c3:6a:7b:ca:18:d0:32:de:
e7:3a:44:86:37:45:79:c8:7f:72:62:20:22:6b:46:d2:97:10:
6c:6e:36:dc:95:b3:57:c2:af:68:61:22:77:ef:4e:31:c6:02:
91:b8:f2:fe:ac:78:fd:c4:50:26:8c:27:2d:4b:6d:cb:ca:0d:
ab:83:5b:8b:34:fd:66:c8:3c:e1:88:86:37:38:4d:21:20:28:
68:b8:47:5f:af:70:31:ad:f4:5c:09:24:fa:a9:cd:75:c6:3d:
66:13:d2:12:a6:62:bc:98:a7:4d:ef:41:70:11:11:51:68:9a:
fa:39:c9:8b:0c:58:97:d1:18:e5:37:e0:46:bc:fe:fc:05:6a:
7c:a4:e7:27:58:cf:d7:be:7e:b7:89:e6:06:1a:68:c5:1f:95:
c8:d0:6c:87:b1:8a:57:41:79:d6:dc:f4:85:e6:91:29:01:94:
e3:2a:9b:25:15:84:b1:de:bc:dc:46:42:e7:66:4d:4a:a2:d8:
99:6f:66:c3
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYROaAOOK4AMAEJ+0Wk+hyu5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMTA2MTkyNTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjNmYTVmMTNhMzYwMTIwNTQ0NGIwZTE3MzVlMTNlNWEyMjRkYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdxsygxg1j7WDWVdgeDici8eYbHe
DdXuCFWIxKLUwIMEKFqVOhpglkniWJAcWXbmYmO7T6ZMwSGS5bz/zUhIjDZQJYof
VwLG5hMtgJkodE5RMHdpJnYeZVnP5ib3TlLE3Qw27cIrWbmD19n1KHeGCDHEwfgl
SDnfUN998tySBkDn/ZKP1/s+DKLFqHKUEMAEdvrGzPISO2WXxPaNggJQ/Qnr2OZ+
E+q35yV7V0HX7YaNO5sreRRLIwdtOHoSzpNJh7fQS3mGhroQl7JQvCkTmUF9mWju
pDFqCGR4d14j9XkVCTVPpy+KSpdsNCxAHf0cSL61wyf+d4IRxtTOrTqa+QIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFCY/pfE6NgEgVESw4XNeE+WiJNr5MB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvSmotbDhUbzJBU0JVUkxEaGMxNFQ1YUlrMnZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAaMF
HjAMAwQAowUhAwQAowUiMAwDBACjBSUDBAOjBSADBACjBVsDBACjBWEDBACjBWMD
BACjBXIDBACjBXYDBACjBXwDBACjBZgDBACjBZ4DBACjBakDBACjBbMDBACjBdQD
BACjBdYDBACjBd8DBACjBfkDBACjBf4wDQYJKoZIhvcNAQELBQADggEBABlpQ4xG
UdpzKlp0Spxv4Q7O8HPgOSSPJ/REeLnrlMa5mN3Av6EvRF2wenk5bwrj3pYIE8v3
0sBbPCQKYhwo0C/DanvKGNAy3uc6RIY3RXnIf3JiICJrRtKXEGxuNtyVs1fCr2hh
InfvTjHGApG48v6seP3EUCaMJy1LbcvKDauDW4s0/WbIPOGIhjc4TSEgKGi4R1+v
cDGt9FwJJPqpzXXGPWYT0hKmYryYp03vQXAREVFomvo5yYsMWJfRGOU34Ea8/vwF
anyk5ydYz9e+freJ5gYaaMUflcjQbIexildBedbc9IXmkSkBlOMqmyUVhLHevNxG
QudmTUqi2JlvZsM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-ams.rpki-client.org