Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HKT79eTPlZVm8cLt6qzq-8MVD_4.roa
File: HKT79eTPlZVm8cLt6qzq-8MVD_4.roa (raw, json)
Hash identifier: xIsxe3faKe/46J1XxWJjm+WvjAhXLgHJhAz4QDQ/M38=
Subject key identifier: 1C:A4:FB:F5:E4:CF:95:95:66:F1:C2:ED:EA:AC:EA:FB:C3:15:0F:FE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018B6FB37D95558FE10174143F34B5D13CFE
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HKT79eTPlZVm8cLt6qzq-8MVD_4.roa
Signing time: Fri 27 Oct 2023 05:55:15 +0000
ROA not before: Fri 27 Oct 2023 05:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 163.5.228.0/24 maxlen: 24
163.5.235.0/24 maxlen: 24
163.5.241.0/24 maxlen: 24
163.5.249.0/24 maxlen: 24
163.5.250.0/24 maxlen: 24
163.5.251.0/24 maxlen: 24
163.5.252.0/24 maxlen: 24
163.5.253.0/24 maxlen: 24
163.5.255.0/24 maxlen: 24
163.5.66.0/24 maxlen: 24
163.5.67.0/24 maxlen: 24
163.5.71.0/24 maxlen: 24
163.5.76.0/24 maxlen: 24
163.5.83.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.89.0/24 maxlen: 24
163.5.86.0/24 maxlen: 24
163.5.98.0/24 maxlen: 24
163.5.94.0/24 maxlen: 24
163.5.95.0/24 maxlen: 24
163.5.104.0/24 maxlen: 24
163.5.105.0/24 maxlen: 24
163.5.99.0/24 maxlen: 24
163.5.110.0/24 maxlen: 24
163.5.111.0/24 maxlen: 24
163.5.112.0/24 maxlen: 24
163.5.106.0/24 maxlen: 24
163.5.113.0/24 maxlen: 24
163.5.114.0/24 maxlen: 24
163.5.30.0/24 maxlen: 24
163.5.37.0/24 maxlen: 24
163.5.33.0/24 maxlen: 24
163.5.35.0/24 maxlen: 24
163.5.36.0/24 maxlen: 24
163.5.64.0/24 maxlen: 24
163.5.62.0/24 maxlen: 24
163.5.176.0/24 maxlen: 24
163.5.178.0/24 maxlen: 24
163.5.181.0/24 maxlen: 24
163.5.182.0/24 maxlen: 24
163.5.186.0/24 maxlen: 24
163.5.188.0/24 maxlen: 24
163.5.189.0/24 maxlen: 24
163.5.191.0/24 maxlen: 24
163.5.198.0/24 maxlen: 24
163.5.204.0/24 maxlen: 24
163.5.205.0/24 maxlen: 24
163.5.201.0/24 maxlen: 24
163.5.203.0/24 maxlen: 24
163.5.207.0/24 maxlen: 24
163.5.212.0/24 maxlen: 24
163.5.217.0/24 maxlen: 24
163.5.218.0/24 maxlen: 24
163.5.222.0/24 maxlen: 24
163.5.224.0/24 maxlen: 24
163.5.121.0/24 maxlen: 24
163.5.122.0/24 maxlen: 24
163.5.126.0/24 maxlen: 24
163.5.128.0/24 maxlen: 24
163.5.138.0/24 maxlen: 24
163.5.139.0/24 maxlen: 24
163.5.134.0/24 maxlen: 24
163.5.141.0/24 maxlen: 24
163.5.142.0/24 maxlen: 24
163.5.143.0/24 maxlen: 24
163.5.151.0/24 maxlen: 24
163.5.148.0/24 maxlen: 24
163.5.150.0/24 maxlen: 24
163.5.146.0/24 maxlen: 24
163.5.156.0/24 maxlen: 24
163.5.165.0/24 maxlen: 24
163.5.162.0/24 maxlen: 24
163.5.160.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
163.5.167.0/24 maxlen: 24
163.5.172.0/24 maxlen: 24
163.5.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6f:b3:7d:95:55:8f:e1:01:74:14:3f:34:b5:d1:3c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 27 05:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ca4fbf5e4cf959566f1c2edeaaceafbc3150ffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3c:4e:27:1a:c2:78:00:78:a3:31:a0:9e:41:
3b:e0:bf:11:c6:0b:b7:32:83:a9:f6:73:8e:93:74:
2c:06:fe:92:a1:7f:a0:a0:c6:10:28:05:a4:fa:7d:
84:d2:9f:69:7a:2a:f6:79:bd:49:9d:70:29:ca:51:
1d:62:63:4e:b5:d3:bc:95:95:34:49:a9:8a:57:8f:
11:82:c2:03:2a:ad:2a:4d:79:00:7e:e1:b1:ab:39:
38:53:fa:84:a7:a8:89:e6:7c:e9:8f:b7:78:2c:98:
57:39:dc:b9:ce:dd:1e:39:7e:fc:75:85:45:2b:03:
63:73:b8:fc:df:8c:6c:e2:58:3a:28:96:8a:35:90:
01:0f:f4:87:79:bc:23:dc:8a:bb:73:6c:ef:21:7e:
be:f6:4f:28:5b:2f:cc:6d:a7:03:ab:b6:9d:f2:6b:
0b:f3:b8:6c:a1:60:bc:8e:4a:c4:2f:d5:0d:55:32:
67:5b:4b:89:04:59:aa:36:08:88:bd:41:03:b9:8f:
d2:cc:75:29:03:ed:dd:5b:ef:20:1b:82:9d:fc:03:
fa:42:36:40:b7:5e:5c:02:6e:a8:8c:7b:4f:62:9d:
39:b1:9c:ab:2d:8d:2e:c5:00:d7:12:5a:34:ec:3d:
f6:0e:8a:16:48:52:5c:55:f8:1e:67:64:35:8b:62:
5b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A4:FB:F5:E4:CF:95:95:66:F1:C2:ED:EA:AC:EA:FB:C3:15:0F:FE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/HKT79eTPlZVm8cLt6qzq-8MVD_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.30.0/24
163.5.33.0/24
163.5.35.0-163.5.37.255
163.5.62.0/24
163.5.64.0/24
163.5.66.0/23
163.5.71.0/24
163.5.76.0/24
163.5.79.0/24
163.5.83.0/24
163.5.86.0/24
163.5.89.0/24
163.5.94.0/23
163.5.98.0/23
163.5.104.0-163.5.106.255
163.5.110.0-163.5.114.255
163.5.121.0-163.5.122.255
163.5.126.0/24
163.5.128.0/24
163.5.134.0/24
163.5.138.0/23
163.5.141.0-163.5.143.255
163.5.146.0/24
163.5.148.0/24
163.5.150.0/23
163.5.156.0/24
163.5.160.0-163.5.162.255
163.5.165.0/24
163.5.167.0/24
163.5.170.0/24
163.5.172.0/24
163.5.176.0/24
163.5.178.0/24
163.5.181.0-163.5.182.255
163.5.186.0/24
163.5.188.0/23
163.5.191.0/24
163.5.198.0/24
163.5.201.0/24
163.5.203.0-163.5.205.255
163.5.207.0/24
163.5.212.0/24
163.5.217.0-163.5.218.255
163.5.222.0/24
163.5.224.0/24
163.5.228.0/24
163.5.235.0/24
163.5.241.0/24
163.5.249.0-163.5.253.255
163.5.255.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:af:05:96:52:69:6f:1c:8e:70:8a:7b:05:b9:f9:b2:fc:b8:
d2:34:cd:fe:b8:72:ad:d4:17:a5:4e:3d:00:63:fb:99:13:16:
1b:5b:d2:2f:53:17:3f:4e:ca:ff:8e:b5:b3:0a:e0:2b:cf:58:
d6:fe:1f:91:27:f9:31:a7:44:62:b2:4e:8a:03:66:29:19:2f:
ea:56:89:02:5d:c1:b3:08:ea:4f:e1:78:3e:17:c3:80:ea:8b:
60:cd:9c:6a:ef:a5:3e:38:b4:dc:6e:47:f4:36:31:61:9c:ad:
ea:17:f3:3f:be:16:d6:fb:9b:e4:0b:8f:c4:94:d1:6e:6c:db:
c0:ea:be:25:3e:41:8c:3f:a1:30:38:0c:98:fe:99:99:ff:f1:
01:f7:50:33:a3:cf:77:33:0d:8a:45:bd:bf:4d:4d:8a:e8:fb:
0d:ee:99:04:72:57:9e:36:ad:ec:57:0b:0c:8a:72:ab:36:ec:
d6:b0:88:a2:08:cf:fe:90:6a:9a:78:3b:34:cb:a7:c4:8d:d8:
92:8d:c2:db:75:7d:5c:ef:47:ad:42:6a:fe:b8:bf:e6:8e:44:
d6:62:06:8b:91:a9:ff:bb:8a:27:c9:35:33:9d:9c:c9:aa:ca:
33:60:a1:3b:9c:45:2a:29:80:ef:e9:83:82:fe:24:b0:e2:d1:
5b:5a:bb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 23:00:06 2025 by rpki-client