Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/63295f-18cb-4bfe-92e3-4ab5331cd935/1/lAOM_S-t-hpE6CSUbPuoo5aES9o.roa
File: lAOM_S-t-hpE6CSUbPuoo5aES9o.roa (raw, json)
Hash identifier: sidHGdM/5zsxBgfrpTJpGr4q7LMlCt9PEZ714c1rKdM=
Subject key identifier: 94:03:8C:FD:2F:AD:FA:1A:44:E8:24:94:6C:FB:A8:A3:96:84:4B:DA
Certificate issuer: /CN=eb7bbbfef59509e7263986f780589ab1e7998423
Certificate serial: 018317215450CB65852BC2A86F68C21B1986
Authority key identifier: EB:7B:BB:FE:F5:95:09:E7:26:39:86:F7:80:58:9A:B1:E7:99:84:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/63u7_vWVCecmOYb3gFiaseeZhCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/63295f-18cb-4bfe-92e3-4ab5331cd935/1/lAOM_S-t-hpE6CSUbPuoo5aES9o.roa
Signing time: Wed 07 Sep 2022 08:46:43 +0000
ROA not before: Wed 07 Sep 2022 08:46:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5550
IP address blocks: 153.19.0.0/16 maxlen: 16
2001:4070::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:17:21:54:50:cb:65:85:2b:c2:a8:6f:68:c2:1b:19:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb7bbbfef59509e7263986f780589ab1e7998423
Validity
Not Before: Sep 7 08:46:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94038cfd2fadfa1a44e824946cfba8a396844bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c7:2d:55:f3:6d:b3:24:77:76:eb:eb:a0:23:
67:14:98:e7:48:a0:8e:6f:32:18:92:bd:07:13:cb:
e5:e0:3d:2c:06:cc:ce:99:a0:d1:e0:a0:45:1f:57:
fe:c9:70:ef:2a:35:92:d9:62:14:5f:fc:a4:50:b0:
05:45:cb:b3:d2:8e:9d:bb:56:4d:54:a2:85:c3:0f:
23:8d:77:61:71:fa:bc:49:6e:dd:df:43:35:02:f6:
b2:a3:77:43:e7:ca:67:93:66:ad:e7:24:3c:fa:2c:
da:b6:9f:8c:9d:34:10:40:bb:86:97:ab:4c:25:54:
99:40:31:a6:e2:92:1a:61:2f:d8:c0:a4:fe:d5:ed:
8b:b2:24:5d:d1:f0:1e:ba:51:9d:fd:3f:77:83:34:
d4:ce:d3:a2:f4:c9:db:9f:c8:f0:dc:5a:39:a4:cb:
24:04:0b:d5:3b:58:ef:b7:ce:13:62:1b:8d:66:9a:
fb:e8:fb:51:30:72:b9:16:dd:7f:05:7d:3a:19:e8:
d4:b2:a6:39:fe:e2:c6:61:d4:52:b6:fc:5a:e8:25:
7f:3b:b1:39:a8:9e:ae:18:4a:47:91:35:ed:78:86:
73:1b:93:17:fa:4c:1d:e0:f1:1a:a6:bb:04:c7:6f:
8b:d0:21:cb:8c:91:88:ef:6d:ee:ac:cc:3f:bf:c3:
8a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:03:8C:FD:2F:AD:FA:1A:44:E8:24:94:6C:FB:A8:A3:96:84:4B:DA
X509v3 Authority Key Identifier:
keyid:EB:7B:BB:FE:F5:95:09:E7:26:39:86:F7:80:58:9A:B1:E7:99:84:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/63u7_vWVCecmOYb3gFiaseeZhCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/63295f-18cb-4bfe-92e3-4ab5331cd935/1/lAOM_S-t-hpE6CSUbPuoo5aES9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/63295f-18cb-4bfe-92e3-4ab5331cd935/1/63u7_vWVCecmOYb3gFiaseeZhCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.19.0.0/16
IPv6:
2001:4070::/33
Signature Algorithm: sha256WithRSAEncryption
1b:95:5f:99:36:f3:5a:d0:9c:ee:94:32:25:49:a6:12:49:24:
4c:26:89:58:d8:03:2f:53:0a:00:9c:94:bc:d1:fc:9a:ff:73:
4f:a3:c4:db:a8:c3:80:93:33:ee:7f:bb:5c:4c:df:09:b7:ab:
bd:e2:53:db:d3:dd:af:08:68:48:9e:e7:31:18:93:30:aa:7f:
38:4c:ad:85:10:32:0e:ab:f2:1c:8f:09:01:28:0f:ff:8c:09:
75:6c:a2:db:2f:0f:25:8f:81:c9:6c:d6:09:b7:3f:6e:94:4d:
b7:e0:53:b5:d7:16:56:bb:e1:52:c9:81:2d:3a:98:c7:52:f4:
c3:06:06:11:4e:bc:c1:be:5a:16:94:79:63:13:68:fc:52:a5:
ff:91:3b:6f:f4:66:5c:7a:18:07:84:5d:15:de:f2:0c:b1:7c:
2b:7d:e4:2f:f5:b3:8d:62:9c:64:00:a3:43:8f:13:0e:0b:67:
5e:cf:14:4f:ed:be:ad:10:7c:c3:6a:19:a0:eb:81:a1:06:68:
19:14:63:b0:81:b3:c4:22:19:69:b2:c7:dc:5e:21:ec:60:47:
c8:d3:16:9d:86:58:51:4e:76:bc:c1:0b:54:eb:44:bb:82:7b:
8a:a6:ee:0b:ad:cb:0d:33:e4:19:6a:a8:1d:32:81:ae:0c:93:
c1:fe:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:45 2023 by rpki-client on console-ams.rpki-client.org