Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/OKJYlMMrhkFg_cBJyueeATZMkG8.roa
File: OKJYlMMrhkFg_cBJyueeATZMkG8.roa (raw, json)
Hash identifier: 0OtWRsA6w+OcR4JU7ArqwBl3AKDSqkmEtcPXzoyDMUM=
Subject key identifier: 38:A2:58:94:C3:2B:86:41:60:FD:C0:49:CA:E7:9E:01:36:4C:90:6F
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: E965
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/OKJYlMMrhkFg_cBJyueeATZMkG8.roa
Signing time: Mon 02 May 2022 11:25:17 +0000
ROA not before: Mon 02 May 2022 11:25:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39502
IP address blocks: 194.50.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59749 (0xe965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: May 2 11:25:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38a25894c32b864160fdc049cae79e01364c906f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:66:ae:53:d4:80:83:4f:de:20:37:8e:11:af:
f2:e8:c7:0a:79:91:4b:9f:e1:8b:5d:e1:39:fc:8b:
a3:75:16:75:93:8e:b3:6f:ea:f4:c9:bf:2a:86:62:
ba:c4:02:03:f4:c3:5e:7f:de:78:cf:a5:9f:12:95:
63:f2:5e:7a:24:39:38:86:50:df:8e:1a:b8:0e:d0:
84:3b:03:88:a6:e4:f6:fc:5a:7a:80:5a:13:87:d0:
87:28:df:26:c1:28:81:c0:4a:a0:e7:9f:ef:cf:b3:
12:e2:30:6e:83:a6:57:bf:58:1d:cf:09:e4:c8:69:
57:2e:2c:68:08:02:5a:ac:de:ee:28:85:4b:ae:56:
37:23:44:b7:16:24:76:1c:d1:8f:8e:7a:3d:ba:d4:
6d:89:62:9d:83:b4:0d:6c:2e:2b:8a:2d:1d:06:81:
2c:ea:96:39:93:18:8d:4c:4d:ca:65:97:9f:f5:4e:
16:4d:ee:d2:b3:d5:d8:5d:98:94:d8:bd:f9:bb:59:
3e:e7:3a:b8:8d:02:54:08:b4:33:4f:89:94:d3:dc:
58:42:b6:fb:ca:15:77:28:51:61:1e:6b:fb:f2:b4:
0f:16:85:00:f1:85:71:1e:6e:cd:2a:79:47:2c:6d:
b8:40:b9:12:9d:09:ad:03:86:15:9a:55:41:2c:dc:
f6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A2:58:94:C3:2B:86:41:60:FD:C0:49:CA:E7:9E:01:36:4C:90:6F
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/OKJYlMMrhkFg_cBJyueeATZMkG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.11.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:33:11:1d:3c:6d:0f:42:99:d0:31:2d:aa:4e:8e:49:ab:3a:
94:63:c5:3a:3b:50:d6:a7:2e:9b:a1:a6:ed:6d:09:b4:2e:20:
5d:02:64:78:18:e5:ce:53:1e:0f:4e:68:3d:8f:6b:06:08:14:
1b:2b:60:de:fc:8f:f3:e2:24:c3:58:bd:e1:36:77:26:a7:bc:
16:2c:3f:78:1d:a5:a1:11:a3:0b:86:81:37:e0:37:55:4f:2f:
68:e2:bd:6e:fc:5b:29:0f:ce:6b:c5:2f:b9:35:2d:ec:82:7a:
1d:79:7a:ef:e2:c9:34:fd:96:68:25:4f:fb:cd:c1:4b:48:1e:
e7:f3:6f:ed:71:d9:7e:13:66:c6:fe:e7:ae:06:b7:9a:a9:5c:
e7:23:ae:e0:c9:59:a1:94:fa:6c:b2:9c:8f:01:d4:7b:ee:e4:
60:65:86:28:f5:d7:6d:04:fe:0c:e1:7e:60:77:e4:b1:04:fe:
fb:8f:5e:b8:53:9d:1c:37:93:3c:17:c8:5b:0d:ca:7e:71:96:
48:78:c4:6e:8c:94:13:55:f8:35:ce:10:86:e0:17:22:36:7c:
ac:d9:fa:ed:91:9f:50:7a:e6:52:c2:fa:f0:b3:33:02:96:a9:
fa:ae:16:a6:40:e8:ca:ac:f6:39:52:24:9f:ac:4d:b0:35:61:
7c:ac:2c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:39 2024 by rpki-client on console-ams.rpki-client.org