Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/OAU1U45GyrtmDT-14FEDWsciu0g.roa
File: OAU1U45GyrtmDT-14FEDWsciu0g.roa (raw, json)
Hash identifier: zXtZgGPzkhaWAeBN6WvouexCDcOWsmgkR5ZDnynhBRM=
Subject key identifier: 38:05:35:53:8E:46:CA:BB:66:0D:3F:B5:E0:51:03:5A:C7:22:BB:48
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DE63DAA
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/OAU1U45GyrtmDT-14FEDWsciu0g.roa
Signing time: Sat 01 Jan 2022 10:54:09 +0000
ROA not before: Sat 01 Jan 2022 10:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5511
IP address blocks: 168.199.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233192874 (0xde63daa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=380535538e46cabb660d3fb5e051035ac722bb48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b6:97:f3:b8:22:54:3f:f4:01:e2:0d:1b:de:
6b:35:d3:32:1e:16:4a:03:4f:bc:01:04:a3:c8:74:
9d:fe:a7:7a:b7:56:d6:84:11:8f:52:f1:aa:97:fb:
01:03:ed:fc:9b:d8:14:52:98:5a:d9:9c:64:9a:ea:
c1:1f:51:35:0e:68:a2:a8:e4:53:95:3c:0f:1a:de:
42:4d:e6:31:a6:c5:d6:3c:58:3e:c8:9e:82:a1:0e:
85:4e:9f:a5:1c:92:10:17:5e:3f:e1:9e:0b:3b:02:
85:3d:57:ca:2b:42:a9:ab:8f:37:c5:c5:24:9a:f8:
10:a4:9e:6d:2a:3a:bb:a5:96:be:04:4d:06:4b:e1:
1c:1e:00:b6:bb:10:1e:80:7c:18:7b:60:50:a9:6a:
1d:b5:3e:04:27:f6:1b:fe:57:9e:e4:d5:f1:4c:ca:
81:39:a1:fa:d6:8d:ef:4a:08:1f:30:a8:2f:51:55:
58:4f:15:8c:3e:3f:d7:51:2c:72:f0:43:28:2e:cf:
40:c3:4c:fc:15:07:6b:e9:66:2f:0a:d4:8d:56:b9:
42:b5:12:a3:92:03:98:d5:c8:42:73:c1:54:8b:95:
2a:85:1b:ab:1a:28:f3:84:d4:6a:00:5c:bb:b3:a7:
5f:50:46:e5:4c:31:7d:b1:d7:ac:9f:36:60:1a:bf:
84:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:05:35:53:8E:46:CA:BB:66:0D:3F:B5:E0:51:03:5A:C7:22:BB:48
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/OAU1U45GyrtmDT-14FEDWsciu0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.199.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:86:39:28:a4:be:d9:bf:d0:f3:86:d4:81:e1:66:f7:48:3b:
bf:33:57:ec:8d:08:55:d5:3f:91:bc:5b:d5:00:89:81:e1:47:
a9:83:cf:c3:55:27:03:b6:00:d6:63:dc:94:0e:63:0e:32:d7:
64:7e:4e:27:60:91:19:5e:fb:0b:e8:08:21:0a:9b:ee:4b:ff:
34:b7:52:58:ec:04:8a:7f:f4:66:01:a6:57:56:de:bd:3d:e5:
8b:5a:01:5c:4e:85:d1:b1:9f:1b:e3:bd:78:34:12:a6:fc:5c:
06:a9:86:bf:c4:1c:b4:c8:ee:cb:47:8a:c1:c5:fd:5e:bf:d0:
9a:ff:1e:e0:d8:4e:12:fd:7a:9b:40:1a:3c:46:1e:44:62:28:
18:77:4c:9f:99:69:86:2f:05:1e:57:b6:1f:10:7d:4d:9a:45:
b4:90:14:c6:c7:90:c5:41:b2:b4:a1:a5:88:94:84:19:a6:46:
27:ff:25:c1:86:3c:13:76:d5:11:ad:56:c0:b4:e0:68:5a:73:
32:3f:5c:59:42:bf:07:df:15:f9:95:0a:6d:15:79:f9:5f:35:
f2:f1:09:51:9f:b4:31:0d:fa:f5:12:b7:14:7f:7e:f6:06:0a:
35:27:38:da:cf:1f:63:48:c4:0d:b3:ce:b7:f7:a3:e8:c6:80:
ff:86:d0:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org