Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/L0p9WfLHTd_Z6sas_bwcNOYp02E.roa
File: L0p9WfLHTd_Z6sas_bwcNOYp02E.roa (raw, json)
Hash identifier: qhiqGuH9vn8cQMNHVlQpzcCbQAb2D5iZlnt5gV5cNbk=
Subject key identifier: 2F:4A:7D:59:F2:C7:4D:DF:D9:EA:C6:AC:FD:BC:1C:34:E6:29:D3:61
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01850F4626E7AE87E64A00D0B7F1BF6A2AE6
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/L0p9WfLHTd_Z6sas_bwcNOYp02E.roa
Signing time: Wed 14 Dec 2022 06:15:33 +0000
ROA not before: Wed 14 Dec 2022 06:15:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14315
IP address blocks: 2.58.202.0/24 maxlen: 24
2.58.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:46:26:e7:ae:87:e6:4a:00:d0:b7:f1:bf:6a:2a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 14 06:15:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f4a7d59f2c74ddfd9eac6acfdbc1c34e629d361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:39:8f:67:86:9a:dc:92:90:92:52:22:ec:eb:
ec:dc:5d:91:50:a2:fd:d9:61:7e:4c:bd:7c:c3:38:
90:06:0b:5a:e5:aa:c8:d7:ce:81:23:db:bd:65:fa:
db:f9:a1:9c:87:7c:2f:6c:43:94:f3:4a:52:ae:05:
82:3d:60:f3:22:1d:21:7e:08:aa:7f:bb:0d:c3:31:
e9:b9:ab:49:b3:f2:69:59:8e:dd:32:3a:e3:1c:ef:
dc:e1:5c:d3:91:d0:83:0e:c3:7e:c1:90:a4:85:36:
44:d7:3d:3e:f3:ed:77:77:94:de:d6:04:c2:82:28:
f9:4a:56:ed:09:14:0a:7f:2c:d4:24:1b:e9:d8:4e:
9d:76:af:28:13:9d:f7:bc:d8:70:f4:49:e6:a3:02:
fe:bf:63:90:c3:66:64:1d:4f:4d:03:21:ad:53:eb:
93:3b:15:35:91:60:38:e7:42:a2:64:a9:7b:e9:fc:
2c:ad:1d:92:47:4c:39:4c:64:f5:bb:c4:98:22:cc:
ac:3b:03:d5:6d:0c:05:98:ad:dc:07:64:cc:d1:cc:
16:45:3a:fb:31:2b:bd:7c:ff:77:ed:40:38:11:95:
21:43:95:4a:39:11:4b:c1:b4:79:64:75:b8:b9:66:
b2:2f:09:b0:de:cf:1b:e4:14:d3:37:e4:a4:60:22:
d3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4A:7D:59:F2:C7:4D:DF:D9:EA:C6:AC:FD:BC:1C:34:E6:29:D3:61
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/L0p9WfLHTd_Z6sas_bwcNOYp02E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.200.0/24
2.58.202.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1e:d9:cb:2e:82:f7:da:38:7c:9f:d5:24:ca:61:d6:7a:c9:
4e:7b:75:46:8c:b9:58:df:0a:43:a6:27:66:bc:2d:8a:d5:cd:
7b:2a:fd:bc:8a:03:af:35:7d:3d:0e:1e:f9:a7:a6:63:ff:87:
57:c4:93:d4:88:25:17:fe:39:72:7b:db:be:69:9c:57:a1:f1:
cc:bf:7e:b1:be:ff:28:d3:a8:42:f3:e0:ec:ee:44:b7:47:49:
9e:6e:61:a9:b9:40:e6:dc:ed:5d:84:88:2f:cb:02:56:96:9e:
2f:d6:0e:0c:b4:2f:46:41:36:f5:84:af:3c:57:d3:04:42:34:
63:0c:e1:8e:bc:bd:22:ef:43:2b:00:56:bf:96:3b:f6:fc:ee:
eb:51:90:05:db:be:54:78:96:29:52:71:c0:27:4b:8b:3b:e1:
b2:95:2d:e7:69:d3:df:bb:b1:10:b0:4b:28:9e:9b:32:66:b5:
e4:f3:b0:61:ea:b9:f2:ad:5f:ad:0f:74:2c:bb:5d:b3:31:68:
93:62:c8:9c:fd:7c:65:f2:18:cd:bb:0b:2a:11:c6:40:df:e9:
0a:6e:3c:c1:53:87:ae:09:f9:9f:3e:02:12:ce:be:66:7a:58:
eb:02:49:8d:60:27:95:60:b4:b3:d9:40:4d:0c:e5:ee:d5:02:
0f:b4:af:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org