Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/THjWVnGuB-YpUVV8nhK0PTIIxFg.roa
File: THjWVnGuB-YpUVV8nhK0PTIIxFg.roa (raw, json)
Hash identifier: FWsD+bP7KES1EZpN+pXwb+dvSl/4lpbiovD4y6Kl7q8=
Subject key identifier: 4C:78:D6:56:71:AE:07:E6:29:51:55:7C:9E:12:B4:3D:32:08:C4:58
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018533E97241F46BAACF25E0C0A657FBC912
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/THjWVnGuB-YpUVV8nhK0PTIIxFg.roa
Signing time: Wed 21 Dec 2022 09:00:15 +0000
ROA not before: Wed 21 Dec 2022 09:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 163.5.232.0/24 maxlen: 24
163.5.228.0/24 maxlen: 24
163.5.230.0/24 maxlen: 24
163.5.231.0/24 maxlen: 24
163.5.233.0/24 maxlen: 24
163.5.229.0/24 maxlen: 24
163.5.227.0/24 maxlen: 24
163.5.236.0/24 maxlen: 24
163.5.234.0/24 maxlen: 24
163.5.238.0/24 maxlen: 24
163.5.240.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.237.0/24 maxlen: 24
163.5.239.0/24 maxlen: 24
163.5.242.0/24 maxlen: 24
163.5.244.0/24 maxlen: 24
163.5.246.0/24 maxlen: 24
163.5.243.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.245.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.248.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.247.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.254.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.70.0/24 maxlen: 24
163.5.75.0/24 maxlen: 24
163.5.77.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.72.0/24 maxlen: 24
163.5.74.0/24 maxlen: 24
163.5.78.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.91.0/24 maxlen: 24
163.5.97.0/24 maxlen: 24
163.5.93.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.96.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.92.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.103.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.101.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.100.0/24 maxlen: 24
163.5.102.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.109.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.108.0/24 maxlen: 24
163.5.117.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.115.0/24 maxlen: 24
163.5.118.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.116.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.31.0/24 maxlen: 24
163.5.38.0/24 maxlen: 24
163.5.34.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.32.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.39.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.179.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.180.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.184.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.183.0/24 maxlen: 24
163.5.185.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.192.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.194.0/24 maxlen: 24
163.5.196.0/24 maxlen: 24
163.5.193.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.197.0/24 maxlen: 24
163.5.199.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.202.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.208.0/24 maxlen: 24
163.5.210.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
163.5.213.0/24 maxlen: 24
163.5.216.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.219.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.220.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.226.0/24 maxlen: 24
163.5.221.0/24 maxlen: 24
163.5.225.0/24 maxlen: 24
163.5.125.0/24 maxlen: 24
163.5.123.0/24 maxlen: 24
163.5.119.0/24 maxlen: 24
163.5.124.0/24 maxlen: 24
163.5.120.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.131.0/24 maxlen: 24
163.5.127.0/24 maxlen: 24
163.5.129.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.130.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.135.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.136.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.140.0/24 maxlen: 24
163.5.144.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.149.0/24 maxlen: 24
163.5.147.0/24 maxlen: 24
163.5.152.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.153.0/24 maxlen: 24
163.5.159.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.154.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.166.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.164.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.163.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.168.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.169.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
185.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:33:e9:72:41:f4:6b:aa:cf:25:e0:c0:a6:57:fb:c9:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Dec 21 09:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c78d65671ae07e62951557c9e12b43d3208c458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:66:5d:5f:cd:fa:8b:3b:58:ca:80:f0:2c:42:
56:ab:2a:79:19:6c:52:54:6e:6e:e7:6b:cb:c0:db:
04:9c:e2:20:73:41:20:d8:36:8b:08:3a:7c:b4:fa:
a8:40:4d:31:b2:67:01:fd:75:fb:bd:2d:86:1d:7b:
5c:c7:51:53:7c:5c:86:f7:f4:ce:67:24:5f:7f:e5:
eb:b1:d7:26:ec:0f:dc:46:72:d3:ca:5a:02:2b:c1:
7a:cb:52:58:75:97:7d:19:dd:9a:a4:6c:a8:15:25:
6e:a4:93:0b:69:ae:0c:29:0f:4e:7f:6b:d6:1e:60:
8b:7f:c2:8a:84:4e:a1:42:9f:42:32:16:8d:70:0f:
72:bd:f3:ed:46:2f:32:ad:41:5a:8b:dc:6c:df:11:
0f:76:ba:38:21:c6:cd:c9:5b:e7:de:1c:7a:3e:bd:
97:0f:41:b5:3b:6f:5b:4d:7e:53:ff:90:38:1e:a2:
24:a8:cb:b3:d6:15:ae:23:c8:9b:91:45:e3:9e:c8:
e9:26:c6:67:0d:23:57:c4:04:f7:f0:bc:f0:ef:64:
a3:db:6f:d8:8d:0f:8b:bc:16:10:2d:21:c7:21:3a:
b4:be:7a:69:50:52:72:73:ce:1e:3f:8d:dc:c9:39:
ef:e5:46:f5:72:5c:bf:21:bb:3f:85:08:b1:30:ed:
15:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:78:D6:56:71:AE:07:E6:29:51:55:7C:9E:12:B4:3D:32:08:C4:58
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/THjWVnGuB-YpUVV8nhK0PTIIxFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0-163.5.39.255
163.5.70.0-163.5.72.255
163.5.74.0-163.5.79.255
163.5.91.0-163.5.106.255
163.5.108.0-163.5.120.255
163.5.122.0-163.5.131.255
163.5.134.0-163.5.142.255
163.5.144.0/24
163.5.146.0-163.5.157.255
163.5.159.0-163.5.189.255
163.5.191.0-163.5.197.255
163.5.199.0-163.5.210.255
163.5.213.0/24
163.5.216.0-163.5.222.255
163.5.224.0/19
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:73:60:2a:9b:72:40:2e:49:36:ef:e8:80:f6:b8:9b:42:7f:
54:cf:88:f3:72:69:a3:06:20:e4:64:dc:f4:ef:40:bd:15:74:
a3:55:83:5a:f7:66:c0:c1:3b:8f:24:84:7d:ff:08:59:43:82:
d8:d6:32:a8:dd:ac:a3:19:40:2e:67:89:0f:68:53:86:e5:e3:
58:77:55:81:89:ab:85:4e:a1:9b:e9:b5:34:b5:66:64:34:ae:
08:08:c9:19:85:52:fd:f5:f5:c8:4f:39:1c:ac:10:2a:3f:4b:
1e:c9:42:37:c0:4e:2c:9d:c4:aa:14:88:aa:cb:01:54:da:c0:
28:2d:5c:96:63:fe:6b:42:9e:85:93:2a:f3:bd:37:ef:26:b9:
54:6f:23:1f:3f:c5:0e:67:62:f6:22:8f:ea:c3:2f:38:19:8f:
89:98:1a:c0:9e:3f:ba:9f:47:2f:18:65:92:4d:2b:4a:f0:26:
62:3f:9d:97:b5:a3:fc:21:1a:9b:74:29:1d:7f:36:5d:16:fb:
b3:c9:92:2e:f8:d3:03:d7:9b:c4:e7:7f:6e:86:49:16:14:23:
2f:d2:38:8b:ec:6f:a2:1f:17:36:d3:6e:1d:56:1d:19:8d:60:
dc:ee:b8:5d:d3:93:06:df:7e:19:60:38:ff:5e:a3:73:9b:b1:
fb:c5:7a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:10 2023 by rpki-client on console-ams.rpki-client.org