Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/OUYPwCCyYjT3iLqCT79cWZuTsCU.roa
File: OUYPwCCyYjT3iLqCT79cWZuTsCU.roa (raw, json)
Hash identifier: ptpDWUMnq4EeWFEs57fdkc7h8zIWrWtOrtzX9eYuTCw=
Subject key identifier: 39:46:0F:C0:20:B2:62:34:F7:88:BA:82:4F:BF:5C:59:9B:93:B0:25
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 0183C778F47FA721F8B035469AEC9BA25CA9
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/OUYPwCCyYjT3iLqCT79cWZuTsCU.roa
Signing time: Tue 11 Oct 2022 14:35:36 +0000
ROA not before: Tue 11 Oct 2022 14:35:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 166.108.176.0/22 maxlen: 24
166.108.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:78:f4:7f:a7:21:f8:b0:35:46:9a:ec:9b:a2:5c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Oct 11 14:35:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39460fc020b26234f788ba824fbf5c599b93b025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8c:a7:05:49:e8:63:87:a6:7a:3d:12:99:ba:
69:2e:2e:e2:0b:f6:0c:f1:b6:e7:c8:4b:f2:29:49:
e2:66:19:ff:a1:02:9b:fb:d8:c3:ef:50:2d:64:9c:
36:79:8f:97:d5:2a:bd:1f:9e:75:30:ca:93:a3:55:
60:0e:74:27:cf:69:a5:70:f4:52:85:96:85:73:41:
4e:90:b7:dc:92:45:c6:d7:f5:09:61:0d:8b:b9:af:
6e:26:7a:e8:90:de:8d:ec:d4:b2:d9:dc:51:e3:8e:
65:19:ac:65:9b:d0:8e:a1:73:46:33:bc:20:58:c8:
05:58:0a:8a:82:62:3e:ad:b8:82:2e:7f:d6:41:75:
5b:f6:58:ad:02:30:ac:16:57:a7:c1:4c:81:04:d4:
f9:2e:3a:24:da:db:c7:b3:cc:19:a5:f0:3e:87:95:
a2:be:93:1b:e8:21:4b:f9:c1:70:95:1c:a8:77:63:
2e:0b:1e:e7:fd:ac:26:d9:31:09:de:3e:59:24:e5:
cf:b0:d8:44:2b:c7:99:25:18:d4:6d:c6:7f:3e:e1:
36:a7:b1:47:34:8f:6f:9f:0b:1d:65:e4:87:ac:20:
69:ad:63:e4:88:e6:53:af:bd:5f:2a:2b:5e:b7:96:
ff:f1:14:29:c2:5e:59:b7:d0:51:fd:33:0d:2c:44:
58:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:46:0F:C0:20:B2:62:34:F7:88:BA:82:4F:BF:5C:59:9B:93:B0:25
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/OUYPwCCyYjT3iLqCT79cWZuTsCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.176.0/21
Signature Algorithm: sha256WithRSAEncryption
77:6b:c8:b3:b4:b6:50:db:16:9c:df:94:72:d7:43:ae:91:37:
88:00:d8:c1:82:28:52:83:17:97:cb:cf:5b:48:5d:b1:01:ac:
96:ce:d0:cb:ed:b2:d2:96:cd:2f:f7:e3:36:c0:b9:b2:b8:7c:
ef:66:14:f4:53:db:61:a6:02:93:ae:dd:c9:15:cf:68:da:70:
fe:63:9d:f7:54:e4:f7:9e:77:85:cd:55:db:de:b6:ab:dd:96:
32:7e:46:b2:37:99:e2:7e:af:a1:9c:da:ac:0f:eb:da:3c:af:
91:4e:f0:8f:6f:8e:77:09:2a:d7:34:e6:96:01:c5:40:d3:24:
42:fe:37:cc:f5:b6:9a:a8:0c:1e:ed:4e:ab:03:1b:04:51:47:
e0:58:f8:27:6e:0f:80:65:5e:94:ab:24:9a:23:85:19:81:62:
bd:76:7a:00:3f:bf:6d:9a:fd:10:32:57:39:20:60:f8:cf:32:
39:ab:80:dc:e1:be:2d:e1:50:18:45:94:58:a7:fb:43:7b:41:
2b:2f:40:5e:6f:e4:dd:0f:92:74:6c:b5:8d:1e:9c:ea:f5:d5:
64:fa:e0:19:50:ff:71:eb:bb:51:f5:bc:d7:b5:73:0a:39:0e:
77:d9:65:d9:b8:1d:92:d4:8d:73:44:15:7c:9e:3a:85:d8:19:
d2:2b:b7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:32 2024 by rpki-client on console-ams.rpki-client.org