Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FZhQOk1WA4E1n9gtESw-wAT7a48.roa
File: FZhQOk1WA4E1n9gtESw-wAT7a48.roa (raw, json)
Hash identifier: YPLJHvlasAubSu3QhZlS06tgOc5Ph1GxSp/iHgDD0T4=
Subject key identifier: 15:98:50:3A:4D:56:03:81:35:9F:D8:2D:11:2C:3E:C0:04:FB:6B:8F
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01847FA70C9CB4FB7B2F75031AA9D07E2540
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FZhQOk1WA4E1n9gtESw-wAT7a48.roa
Signing time: Wed 16 Nov 2022 08:56:04 +0000
ROA not before: Wed 16 Nov 2022 08:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213122
IP address blocks: 2.58.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:a7:0c:9c:b4:fb:7b:2f:75:03:1a:a9:d0:7e:25:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Nov 16 08:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1598503a4d560381359fd82d112c3ec004fb6b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5b:45:f0:3c:f8:f2:e3:93:b5:ef:75:ec:3b:
ae:34:28:27:04:e8:32:10:52:8c:1e:50:9b:06:df:
3e:8b:c7:ff:28:c7:1f:f6:e7:95:84:28:f0:7d:da:
b1:d7:84:c5:a1:27:03:c5:02:14:7d:31:49:9d:ea:
02:28:bd:37:5b:73:a2:a0:97:83:c0:9e:99:eb:25:
0b:ea:af:34:5f:60:05:5b:9d:38:a7:c6:ec:d1:f9:
8c:dc:cb:ed:f8:59:56:0e:a0:b9:35:2b:b1:96:44:
7b:97:96:4c:78:61:16:af:59:35:65:72:79:81:f1:
71:c3:97:f9:96:ae:19:2e:81:5f:ca:94:02:29:0a:
c3:ec:42:ba:85:23:a3:89:f3:24:70:a8:af:99:4d:
f8:e4:68:cf:c6:cd:bb:31:be:72:4d:68:4d:2e:1f:
6f:3d:a2:f5:23:b6:d7:29:ad:13:7c:27:b3:02:99:
87:8c:d0:7f:7e:4e:95:db:e4:07:10:98:4c:1b:8c:
0e:4e:53:86:47:89:7f:c5:0e:08:16:48:95:b9:45:
20:6a:27:64:2d:1b:c9:d4:2a:21:35:2c:93:29:02:
1a:c3:cc:d6:1b:de:cc:00:a8:94:1e:33:db:27:55:
30:ae:d9:ea:bb:69:71:b7:ef:80:7f:2b:cf:59:2f:
f2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:98:50:3A:4D:56:03:81:35:9F:D8:2D:11:2C:3E:C0:04:FB:6B:8F
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FZhQOk1WA4E1n9gtESw-wAT7a48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.201.0/24
Signature Algorithm: sha256WithRSAEncryption
31:28:17:1d:d2:76:95:3b:83:fa:13:44:24:5f:62:fb:3f:16:
85:10:c1:f4:0b:43:cc:89:c6:24:cf:26:ac:80:17:ac:b9:8e:
3f:39:11:d9:77:ae:7a:24:bd:88:15:ac:ac:8e:dc:f9:75:d0:
2e:85:e2:89:90:c7:ed:34:cc:e4:7d:a8:35:e1:47:f3:da:e7:
77:5a:83:ad:8b:8d:29:9e:bf:52:16:bb:82:b1:a4:6b:54:27:
b9:55:4b:5f:00:c7:4c:26:16:43:d0:3a:61:4c:d2:13:ad:d4:
5d:a5:ba:5b:78:15:bd:be:04:ea:37:60:5e:62:5f:1b:da:48:
22:13:6a:6d:30:6c:d2:20:97:fe:f1:8d:6a:50:57:55:4b:42:
4b:83:79:dd:32:13:0d:13:72:e6:5e:8b:05:b6:d8:b5:5e:b3:
fa:05:e9:ce:a3:3a:83:87:4c:ed:39:36:a4:6a:17:da:fd:9d:
f5:73:96:cf:04:ce:12:35:df:e3:7c:04:be:36:d3:da:7e:f8:
e1:70:52:36:50:03:dd:7a:52:47:d4:ee:6e:88:12:b0:a2:29:
e1:b4:b1:4b:f7:77:83:df:5b:20:22:e1:3b:67:9a:f6:ea:94:
b3:4b:0a:d2:73:91:6d:02:b6:45:37:4f:c0:cb:4e:8d:bc:81:
1f:a8:c2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org