Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/FuAbgh-ym0wFrmbOktPy7aoC_UA.roa
File: FuAbgh-ym0wFrmbOktPy7aoC_UA.roa (raw, json)
Hash identifier: Eo3DWMVSjonEQV+ss9LQDClRGyUg852GiG1SKwF+eVM=
Subject key identifier: 16:E0:1B:82:1F:B2:9B:4C:05:AE:66:CE:92:D3:F2:ED:AA:02:FD:40
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 18DDC2C6
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/FuAbgh-ym0wFrmbOktPy7aoC_UA.roa
Signing time: Fri 13 May 2022 19:09:41 +0000
ROA not before: Fri 13 May 2022 19:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207439
IP address blocks: 5.1.67.0/24 maxlen: 24
5.1.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417186502 (0x18ddc2c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: May 13 19:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16e01b821fb29b4c05ae66ce92d3f2edaa02fd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d2:18:4e:dc:06:89:96:5e:35:90:91:fc:42:
8f:43:04:be:96:99:d9:94:85:10:63:ed:7e:1a:85:
24:89:1f:a8:13:12:16:e1:7e:08:a8:c7:7c:0a:f0:
c8:c9:2f:59:3b:e3:51:f5:fa:09:a3:d9:7a:93:1e:
32:46:3a:62:5c:9d:ff:8c:42:90:b6:3d:d2:0c:00:
fb:02:c0:59:70:4c:5d:bc:45:8a:9c:40:81:a9:cd:
68:a1:49:be:3f:9c:2d:b2:e9:dd:36:6e:3b:bb:0a:
15:2d:5c:ad:ee:42:4d:3d:33:48:76:85:7f:a2:6e:
7a:14:4f:9e:71:8e:5e:7b:2b:66:7b:23:2e:88:a0:
a2:97:07:5f:46:f3:c1:c6:34:03:fa:a7:ce:b2:b3:
88:79:63:bc:30:ed:71:c3:b0:b9:88:41:93:a0:91:
22:85:7c:1b:d4:9d:5e:3b:36:36:40:45:eb:85:95:
4e:7b:a9:56:2a:12:61:01:51:3a:86:dd:42:03:57:
9d:c1:8d:44:4f:92:77:04:6d:20:7a:13:45:28:44:
36:8a:ae:87:13:75:9a:a9:92:4e:06:77:62:b0:22:
95:7c:5e:54:ef:b4:d6:72:7a:5c:68:7e:ef:c6:60:
4f:bd:ca:da:03:19:a8:74:a3:63:b6:c9:d4:2b:7d:
e2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E0:1B:82:1F:B2:9B:4C:05:AE:66:CE:92:D3:F2:ED:AA:02:FD:40
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/FuAbgh-ym0wFrmbOktPy7aoC_UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.67.0/24
5.1.85.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:7f:9c:f8:4b:4e:e5:84:e5:94:1b:92:93:4d:8e:ff:f0:92:
53:d2:c5:e6:e5:bb:5c:0a:a8:41:1d:10:87:ea:01:5a:98:94:
0c:f8:ff:d1:75:0f:32:d1:fa:42:a6:de:70:84:b6:81:a3:c6:
9e:03:8d:89:7c:e0:9b:1d:8b:82:5f:bd:d5:20:c3:4f:46:6c:
ae:50:3b:76:ff:ae:2c:1a:84:d2:6b:6e:58:8d:76:c5:64:b4:
7a:a6:93:0e:d8:d4:49:eb:04:40:42:51:ca:7c:c3:75:0a:c1:
29:cd:31:f7:7a:5d:50:1b:60:49:e7:68:b2:27:9e:67:a9:f9:
98:64:50:b4:66:fd:3f:e4:6b:d7:06:0d:9e:67:7b:db:93:19:
9c:cb:e7:46:b2:96:ad:1c:08:4b:5a:13:5c:2f:be:6d:a1:8b:
d1:a9:8e:d4:1e:68:51:fd:58:44:ba:5c:52:14:0f:70:21:51:
bc:48:27:14:9f:47:5b:e7:86:89:ed:30:3e:71:e4:66:d8:a6:
88:c5:e0:b6:1c:ab:40:03:f1:58:26:db:c1:93:cd:3f:55:f7:
21:d7:fc:b0:f9:29:64:fb:61:07:ca:d5:fc:36:a4:1c:55:07:
d2:c9:ac:18:aa:ed:50:20:43:13:8c:88:44:9d:66:37:7e:bb:
96:3f:b6:3a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEGN3CxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDI1M2M0ZjIzM2NlOTg0NzY5OWFlNjhlY2JmNWQ3NTE0YjBmYWRiMB4XDTIyMDUx
MzE5MDk0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTZlMDFiODIxZmIy
OWI0YzA1YWU2NmNlOTJkM2YyZWRhYTAyZmQ0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALvSGE7cBomWXjWQkfxCj0MEvpaZ2ZSFEGPtfhqFJIkfqBMS
FuF+CKjHfArwyMkvWTvjUfX6CaPZepMeMkY6Ylyd/4xCkLY90gwA+wLAWXBMXbxF
ipxAganNaKFJvj+cLbLp3TZuO7sKFS1cre5CTT0zSHaFf6JuehRPnnGOXnsrZnsj
LoigopcHX0bzwcY0A/qnzrKziHljvDDtccOwuYhBk6CRIoV8G9SdXjs2NkBF64WV
TnupVioSYQFROobdQgNXncGNRE+SdwRtIHoTRShENoquhxN1mqmSTgZ3YrAilXxe
VO+01nJ6XGh+78ZgT73K2gMZqHSjY7bJ1Ct94o8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQW4BuCH7KbTAWuZs6S0/LtqgL9QDAfBgNVHSMEGDAWgBS0JTxPIzzphHaZ
rmjsv111FLD62zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RDVThUeU04NllSMm1hNW83TDlkZFJTdy10cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDFkNmUxLTVjYWQtNDBkYi05NzczLTU4YjM4ZjVhYzgwYi8x
L0Z1QWJnaC15bTB3RnJtYk9rdFB5N2FvQ19VQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDFkNmUxLTVjYWQtNDBkYi05NzczLTU4YjM4ZjVhYzgwYi8xL3RDVThUeU04NllS
Mm1hNW83TDlkZFJTdy10cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAAUBQwMEAAUBVTANBgkqhkiG9w0B
AQsFAAOCAQEApn+c+EtO5YTllBuSk02O//CSU9LF5uW7XAqoQR0Qh+oBWpiUDPj/
0XUPMtH6QqbecIS2gaPGngONiXzgmx2Lgl+91SDDT0ZsrlA7dv+uLBqE0mtuWI12
xWS0eqaTDtjUSesEQEJRynzDdQrBKc0x93pdUBtgSedosieeZ6n5mGRQtGb9P+Rr
1wYNnmd725MZnMvnRrKWrRwIS1oTXC++baGL0amO1B5oUf1YRLpcUhQPcCFRvEgn
FJ9HW+eGie0wPnHkZtimiMXgthyrQAPxWCbbwZPNP1X3Idf8sPkpZPthB8rV/Dak
HFUH0smsGKrtUCBDE4yIRJ1mN367lj+2Og==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org