Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PvtcIOOO7yQ_RwvTfJ4MaNkrR58.roa
File: PvtcIOOO7yQ_RwvTfJ4MaNkrR58.roa (raw, json)
Hash identifier: ssA7gBxbNMQtkae0yv+GyOaLItlFws7jzXyF9B3Cnbg=
Subject key identifier: 3E:FB:5C:20:E3:8E:EF:24:3F:47:0B:D3:7C:9E:0C:68:D9:2B:47:9F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0183D6857F89D3C98981DC774CC6FF077705
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PvtcIOOO7yQ_RwvTfJ4MaNkrR58.roa
Signing time: Fri 14 Oct 2022 12:43:36 +0000
ROA not before: Fri 14 Oct 2022 12:43:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 163.5.91.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.214.0/24 maxlen: 24
163.5.223.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.158.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:85:7f:89:d3:c9:89:81:dc:77:4c:c6:ff:07:77:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 14 12:43:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3efb5c20e38eef243f470bd37c9e0c68d92b479f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1e:fb:ad:39:77:bf:3c:4b:57:55:b1:61:11:
62:18:99:9f:c3:48:3d:22:85:30:13:18:a3:ad:b8:
15:01:5b:17:4b:6b:18:88:b2:74:18:45:2a:c6:f3:
ad:63:63:45:64:ad:01:3a:18:7e:cb:c3:84:82:73:
26:1e:63:10:ce:79:73:74:a9:f3:1a:cf:6b:67:f5:
b5:5a:b3:47:59:9b:f0:7c:3c:3c:3d:8f:84:e3:8e:
45:b1:53:59:19:ef:7c:8f:96:bf:1e:d7:aa:9c:7b:
6c:0b:b0:4c:c6:66:49:87:62:65:6f:a8:f3:fc:2a:
08:66:61:8e:46:02:4a:3c:54:d8:e5:96:35:95:96:
35:1e:01:39:b3:23:19:12:d7:fd:2d:48:25:b1:da:
e5:c4:d1:f1:34:4d:27:4b:de:c4:35:ea:3b:c7:8a:
d9:79:c4:c2:e0:77:7b:f4:2e:b3:58:79:5a:ed:82:
17:34:b8:85:bc:70:e6:8c:c5:92:10:51:8d:6f:fd:
89:4a:44:78:e9:71:da:23:8a:1c:ed:c3:ff:e4:b5:
05:a6:3c:33:6a:1a:e7:70:ba:4b:24:3d:7a:c9:cd:
70:cd:45:42:e6:db:d2:cb:e4:dd:63:c9:14:9b:e1:
e4:0f:1e:71:a1:1e:d2:02:9b:a9:f1:f6:c0:71:4c:
a8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FB:5C:20:E3:8E:EF:24:3F:47:0B:D3:7C:9E:0C:68:D9:2B:47:9F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/PvtcIOOO7yQ_RwvTfJ4MaNkrR58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/23
163.5.33.0-163.5.34.255
163.5.37.0-163.5.39.255
163.5.91.0/24
163.5.97.0/24
163.5.99.0/24
163.5.118.0/23
163.5.124.0/24
163.5.152.0/24
163.5.158.0/24
163.5.169.0/24
163.5.179.0/24
163.5.212.0/24
163.5.214.0/24
163.5.223.0/24
163.5.249.0/24
163.5.254.0/24
Signature Algorithm: sha256WithRSAEncryption
44:8a:d0:2a:ad:fd:7c:2a:87:e6:24:e9:fb:a4:fe:cb:40:d1:
dc:62:b7:3d:fb:85:02:86:77:fd:62:d0:e3:44:9d:f4:71:87:
bb:25:a3:8b:b2:89:9d:23:65:99:7b:92:d0:40:6c:a5:c0:ea:
07:37:ec:49:d3:f8:e0:5a:e9:c4:37:f0:24:19:71:f6:38:cc:
43:24:85:2b:80:a7:97:b7:69:89:bf:d0:f0:84:8c:4d:17:60:
ac:46:44:8f:bc:94:13:80:a3:51:c1:5a:c4:0b:1c:75:96:ef:
c1:d9:36:41:c3:0b:f1:14:c5:01:3d:cf:da:06:5c:46:13:91:
78:62:09:e7:1e:90:9c:7a:da:ee:d9:a5:8b:c8:ed:4d:79:2c:
ee:e5:e3:31:5e:93:a2:09:25:e1:f1:bf:2e:75:80:42:dc:4a:
9d:a1:4c:7b:be:64:14:79:f2:85:ca:20:5c:f9:68:20:2d:60:
d1:42:ad:6b:f1:27:0f:85:40:2c:44:7d:f0:b6:b2:70:10:40:
c2:b0:53:70:cd:cd:4c:50:b4:a4:bc:6a:60:ab:8c:d6:99:9e:
86:7d:53:47:38:b2:5f:4d:d3:51:3e:9e:32:24:3a:a8:59:59:
1d:be:ef:be:15:a6:4b:46:4c:32:55:65:72:d4:cf:64:8e:4f:
56:71:7d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:20 2023 by rpki-client on console-fra.rpki-client.org