Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ioGRHx8SKhNxmp1dYFmi-vPnh_4.roa
File: ioGRHx8SKhNxmp1dYFmi-vPnh_4.roa (raw, json)
Hash identifier: /kMUNMvw23TKHMsfTJxGRMpPxVwhH5X732j5V1pWCOk=
Subject key identifier: 8A:81:91:1F:1F:12:2A:13:71:9A:9D:5D:60:59:A2:FA:F3:E7:87:FE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01829296F1C6DFF4E8DBEF4C06EF388C5827
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ioGRHx8SKhNxmp1dYFmi-vPnh_4.roa
Signing time: Fri 12 Aug 2022 15:05:42 +0000
ROA not before: Fri 12 Aug 2022 15:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204968
IP address blocks: 163.5.176.0/24 maxlen: 24
163.5.175.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.177.0/24 maxlen: 24
163.5.173.0/24 maxlen: 24
163.5.174.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.183.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.185.0/24 maxlen: 24
163.5.184.0/24 maxlen: 24
163.5.180.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.187.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.197.0/24 maxlen: 24
163.5.196.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.194.0/24 maxlen: 24
163.5.195.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.206.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.200.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.209.0/24 maxlen: 24
163.5.208.0/24 maxlen: 24
163.5.137.0/24 maxlen: 24
163.5.155.0/24 maxlen: 24
163.5.157.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.171.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:92:96:f1:c6:df:f4:e8:db:ef:4c:06:ef:38:8c:58:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 12 15:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a81911f1f122a13719a9d5d6059a2faf3e787fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:34:73:18:9b:64:51:35:ba:14:21:b3:41:b5:
f9:27:17:23:74:ee:e6:e5:40:84:9a:a1:e6:78:0a:
a0:5b:64:91:40:88:ae:42:14:7d:ad:fb:b9:55:d0:
67:a2:e2:4f:83:aa:06:67:06:59:c4:e8:48:42:b0:
74:09:4b:04:76:9f:04:74:6c:02:19:59:0b:f0:9c:
2a:3f:87:a8:a2:b6:63:49:76:c2:96:5d:c9:ef:34:
6c:19:d4:f3:55:2a:9c:63:ee:e8:69:71:75:3a:39:
dc:80:a8:7d:ab:3d:93:a2:c7:9a:b5:97:bf:cd:20:
a9:ee:3f:94:ca:c0:de:7f:22:61:e8:36:e2:1f:be:
39:d4:bb:3a:e3:c2:aa:b6:c7:85:0e:0a:3a:e0:5c:
e0:19:7c:fd:4c:1f:93:47:f7:9e:a4:ba:52:5d:ea:
39:98:fe:f6:7b:02:38:0e:8a:f0:d9:45:d4:c3:9f:
10:02:2a:1a:9a:e1:c5:a2:23:73:eb:0c:4e:32:15:
d8:59:1d:d9:e3:f6:59:a4:57:e7:dd:6a:90:04:78:
3b:91:11:ea:3f:33:03:d8:7b:b1:e2:a4:e2:db:e6:
02:0f:6c:9a:3e:5f:87:8d:85:bb:bf:9d:1c:45:3d:
5b:82:a6:69:54:be:a2:46:1e:2d:16:2b:a5:15:43:
42:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:81:91:1F:1F:12:2A:13:71:9A:9D:5D:60:59:A2:FA:F3:E7:87:FE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ioGRHx8SKhNxmp1dYFmi-vPnh_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.137.0/24
163.5.155.0-163.5.157.255
163.5.170.0-163.5.178.255
163.5.180.0/24
163.5.182.0-163.5.189.255
163.5.194.0-163.5.198.255
163.5.200.0/23
163.5.203.0-163.5.209.255
Signature Algorithm: sha256WithRSAEncryption
30:0f:4f:96:37:b8:a2:5e:9d:f5:2d:66:23:2b:82:ec:84:38:
21:c2:7d:42:5d:22:9f:9a:d8:d1:34:7c:c2:c6:b3:9a:43:72:
b5:3f:dd:ef:e2:9a:a2:62:e3:56:99:fb:dd:ad:b7:31:93:e4:
74:5e:29:dd:48:ae:ae:c5:51:97:42:ee:16:db:8d:26:22:10:
7e:9b:6f:03:85:e9:5a:fa:3d:3d:69:b3:b2:d5:af:41:39:48:
13:07:09:9b:69:72:4e:12:c6:8b:0a:02:8e:4e:f8:8f:44:dc:
f7:ad:8f:28:88:e2:f5:4f:b3:53:b6:cc:97:5c:4f:68:ac:64:
39:a0:18:1b:4b:41:64:e4:93:79:76:56:0c:98:16:ce:2d:85:
df:4d:1c:d5:ca:98:33:cd:2e:56:a1:2c:46:e9:d2:e6:f0:94:
60:9f:01:7b:96:19:94:8c:5d:a8:1d:b0:ae:16:54:d8:cf:31:
93:f5:40:42:86:fb:d7:d1:c5:3f:34:f4:6b:06:c4:76:a3:f0:
4e:68:60:fa:2d:9b:a4:4d:1c:59:ad:db:e4:58:5a:20:8f:18:
99:3d:33:67:ee:4e:e3:e0:a0:8b:21:19:bb:60:c3:3c:10:d5:
49:64:45:85:3d:81:4f:7a:1a:2f:5e:55:fb:db:91:0e:a4:02:
65:32:f9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org