Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/OOxOI_5vaiArjnDyiEVeq5uwiMM.roa
File: OOxOI_5vaiArjnDyiEVeq5uwiMM.roa (raw, json)
Hash identifier: sAlIRRiMyfs2+8uOtuyzWXI8wc84GxJOen9zIuAcm2E=
Subject key identifier: 38:EC:4E:23:FE:6F:6A:20:2B:8E:70:F2:88:45:5E:AB:9B:B0:88:C3
Certificate issuer: /CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Certificate serial: 111CC38E
Authority key identifier: 41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/OOxOI_5vaiArjnDyiEVeq5uwiMM.roa
Signing time: Sat 01 Jan 2022 16:05:41 +0000
ROA not before: Sat 01 Jan 2022 16:05:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59489
IP address blocks: 193.32.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287097742 (0x111cc38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Validity
Not Before: Jan 1 16:05:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38ec4e23fe6f6a202b8e70f288455eab9bb088c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:22:19:c6:f0:ab:df:78:ab:f8:f0:fa:48:9e:
87:28:af:ff:1a:6c:eb:5a:39:ae:a1:8b:55:c2:1f:
4e:85:ef:1d:46:fa:57:03:4d:8e:10:60:c5:8e:c9:
aa:90:ad:d6:f9:6e:c0:47:d6:34:ea:69:6b:a5:0f:
94:ae:1a:4f:af:19:fc:2c:62:f7:2e:d0:00:e4:7f:
5e:19:f2:fc:f9:37:f1:bc:eb:1c:8d:91:30:cd:9b:
e4:bf:37:9b:ee:60:77:c6:04:00:7b:3d:1c:7d:29:
fe:a0:b8:9f:c5:33:d9:0c:fb:6d:4b:f7:d0:a5:c2:
69:68:38:12:8f:22:9c:9c:86:54:76:04:38:18:16:
ad:a1:1e:ff:17:d5:79:04:23:38:94:9c:df:0f:5e:
47:8e:ac:f3:03:dd:5a:74:3a:2c:0e:4b:76:6a:13:
fa:ad:d5:a7:1a:a0:66:2b:62:83:58:1d:9a:1b:a2:
4d:fa:60:69:99:cd:5c:c0:db:d8:4e:0a:0d:60:43:
78:fc:f9:03:59:64:35:cf:19:a0:a9:1b:e9:76:21:
25:46:19:42:70:8d:59:5e:57:8f:96:cb:d2:b9:74:
68:24:9f:97:7d:11:7c:d4:e3:b5:55:80:7d:9a:22:
5d:79:1b:6c:4a:7f:cc:1e:09:14:3f:64:78:88:ca:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EC:4E:23:FE:6F:6A:20:2B:8E:70:F2:88:45:5E:AB:9B:B0:88:C3
X509v3 Authority Key Identifier:
keyid:41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/OOxOI_5vaiArjnDyiEVeq5uwiMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/QftrFwgzUAawpqrGUL-v8_yNKSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.57.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7e:7b:28:d3:70:f3:89:d3:a9:eb:f2:aa:d8:26:75:95:6c:
c4:c7:10:cf:b4:50:78:01:d6:1f:65:b7:8c:20:ae:ef:2a:8e:
3a:da:15:19:fe:d7:ff:c5:85:eb:55:97:18:0b:3e:6f:7a:e5:
7d:fe:5c:ea:19:fa:e4:7b:af:57:db:3c:72:56:b4:a7:e0:bb:
bf:09:61:34:36:49:4b:86:74:05:92:ff:f0:e1:05:dd:ac:f5:
dc:cc:f0:63:c0:53:7b:0d:df:e8:6e:68:2d:c2:a3:d7:35:f3:
bb:76:dc:0b:26:7b:73:d3:0b:4e:19:e4:b8:3c:32:86:f9:87:
e0:22:63:4b:d7:99:6a:0a:a9:51:8e:ca:ee:9d:5c:d6:37:fe:
72:37:a7:9a:e5:3a:e1:9e:aa:09:30:b5:49:4d:42:5d:8d:ee:
84:82:db:25:ed:f9:66:06:85:7d:77:6b:0d:98:cd:2b:5b:01:
3b:6f:07:56:35:d4:33:a8:84:38:22:f3:9a:b0:8f:13:07:a7:
20:1d:cc:59:80:93:12:52:19:f0:76:e5:de:6d:5a:c1:f1:0e:
2a:36:d6:d6:ea:25:52:9e:95:a9:19:15:a2:2a:86:17:37:0e:
7d:9a:65:83:b8:45:8a:f5:33:2e:18:47:8b:a3:02:43:53:a1:
6e:f8:7d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:23 2024 by rpki-client on console-ams.rpki-client.org