Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/s9WoqWbOChCqwIDLAlKmMb_OeJU.roa
File: s9WoqWbOChCqwIDLAlKmMb_OeJU.roa (raw, json)
Hash identifier: 1iXuH5HgIMG9vNQgFitgxwdByMqJHkzyE7tXhrpnrk8=
Subject key identifier: B3:D5:A8:A9:66:CE:0A:10:AA:C0:80:CB:02:52:A6:31:BF:CE:78:95
Certificate issuer: /CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Certificate serial: 04E223AB
Authority key identifier: C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/s9WoqWbOChCqwIDLAlKmMb_OeJU.roa
Signing time: Sat 01 Jan 2022 03:53:28 +0000
ROA not before: Sat 01 Jan 2022 03:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397688
IP address blocks: 2.58.10.0/24 maxlen: 24
2.58.9.0/24 maxlen: 24
2.58.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81929131 (0x4e223ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Validity
Not Before: Jan 1 03:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3d5a8a966ce0a10aac080cb0252a631bfce7895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:a9:3a:ce:d4:1a:5f:47:78:98:84:d0:17:
17:18:34:2e:76:9b:39:15:b0:bf:b4:fb:b2:df:15:
6f:ec:ba:d0:d0:5b:f2:f4:a4:85:61:61:d7:ba:38:
cf:76:80:bc:de:2e:1d:f3:22:fb:bd:ec:e7:a4:ad:
20:3d:9b:ce:5f:64:76:90:6f:9b:7f:c3:96:d1:c6:
e6:e8:ed:89:d0:cc:41:04:58:0f:4f:b7:75:56:66:
8d:a7:a6:94:d8:30:a2:06:ca:10:3e:40:6c:bc:dd:
05:61:a1:65:7a:35:9f:48:58:c4:c1:ce:1f:6e:86:
90:3a:16:3a:f5:9d:b2:c7:d5:3f:5f:1d:65:f6:bc:
da:c0:84:dd:9b:67:b4:17:3e:57:fb:fe:f9:1a:55:
c8:14:ca:6b:b2:27:1c:81:9d:dd:88:2a:79:29:2a:
85:4f:39:2c:b4:99:0a:d0:3e:7c:21:43:1b:0e:1d:
34:f7:6f:7c:9c:43:77:a6:da:00:a1:1b:5f:aa:5d:
58:02:b8:52:71:80:2f:da:ab:25:36:af:61:3d:3d:
a7:90:1d:75:71:99:30:d1:69:b7:67:18:f3:d4:e2:
66:0c:18:c1:c5:c7:83:0d:02:68:4a:1c:3c:75:a8:
f9:bb:0d:29:df:f9:0e:63:23:3a:58:d9:47:aa:91:
44:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D5:A8:A9:66:CE:0A:10:AA:C0:80:CB:02:52:A6:31:BF:CE:78:95
X509v3 Authority Key Identifier:
keyid:C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/s9WoqWbOChCqwIDLAlKmMb_OeJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.8.0-2.58.10.255
Signature Algorithm: sha256WithRSAEncryption
40:95:86:6c:de:0b:f5:a2:e6:0a:b5:fb:8b:cb:bc:9b:f1:f9:
78:b4:1b:dd:6b:92:eb:4a:51:5b:a0:0e:a9:29:22:7e:68:82:
04:63:d4:29:89:99:a5:1e:bb:a6:b8:ed:3b:c8:21:76:73:49:
d8:3b:90:68:51:05:28:2e:22:c7:ac:2e:5a:80:4d:75:72:d1:
1e:84:41:ea:13:58:7a:5c:1b:10:ba:a2:cf:05:49:e2:c7:e4:
3e:19:94:a0:9d:ee:93:57:05:6f:51:19:20:b0:02:4a:df:df:
c4:83:6d:f9:7b:57:d1:de:5e:c8:c0:04:5c:66:75:93:93:f4:
3b:f8:bf:44:9a:c8:26:82:f3:0e:30:71:12:a3:7f:61:5b:44:
2b:49:de:ba:af:10:1a:fd:0d:b2:92:b6:79:cb:2d:32:3b:b2:
cb:0a:db:4d:99:9c:c0:ad:2a:62:a2:65:24:65:56:48:d8:1e:
49:d0:9f:44:c8:86:17:3a:e4:eb:9e:fe:76:65:73:2f:e3:15:
01:dd:fa:42:21:14:48:cc:51:3d:93:6e:5d:62:e8:6f:28:1b:
04:40:06:c5:f1:17:c4:37:c0:03:8b:da:17:70:6b:97:fc:e0:
b0:5c:80:12:1a:86:6b:6c:0c:f8:e2:28:61:84:30:4e:1b:5f:
f1:93:d7:b0
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEBOIjqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NGZmMjNiMWMzNzEzNTJmMzliNzNkMzlhNGUwN2Y4Y2E5OGNjZDY3MB4XDTIyMDEw
MTAzNTMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjNkNWE4YTk2NmNl
MGExMGFhYzA4MGNiMDI1MmE2MzFiZmNlNzg5NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALMmqTrO1BpfR3iYhNAXFxg0LnabORWwv7T7st8Vb+y60NBb
8vSkhWFh17o4z3aAvN4uHfMi+73s56StID2bzl9kdpBvm3/DltHG5ujtidDMQQRY
D0+3dVZmjaemlNgwogbKED5AbLzdBWGhZXo1n0hYxMHOH26GkDoWOvWdssfVP18d
Zfa82sCE3ZtntBc+V/v++RpVyBTKa7InHIGd3YgqeSkqhU85LLSZCtA+fCFDGw4d
NPdvfJxDd6baAKEbX6pdWAK4UnGAL9qrJTavYT09p5AddXGZMNFpt2cY89TiZgwY
wcXHgw0CaEocPHWo+bsNKd/5DmMjOljZR6qRRIECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSz1aipZs4KEKrAgMsCUqYxv854lTAfBgNVHSMEGDAWgBTE/yOxw3E1Lzm3
PTmk4H+MqYzNZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hQOGpzY054TlM4NXR6MDVwT0JfakttTXpXYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmYvYzY1YWFiLThhNTItNDc2Zi05ZTMyLTEwOTU5YWFhOGIzZS8x
L3M5V29xV2JPQ2hDcXdJRExBbEttTWJfT2VKVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYv
YzY1YWFiLThhNTItNDc2Zi05ZTMyLTEwOTU5YWFhOGIzZS8xL3hQOGpzY054TlM4
NXR6MDVwT0JfakttTXpXYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQDAjoIAwQAAjoKMA0GCSqGSIb3
DQEBCwUAA4IBAQBAlYZs3gv1ouYKtfuLy7yb8fl4tBvda5LrSlFboA6pKSJ+aIIE
Y9QpiZmlHrumuO07yCF2c0nYO5BoUQUoLiLHrC5agE11ctEehEHqE1h6XBsQuqLP
BUnix+Q+GZSgne6TVwVvURkgsAJK39/Eg235e1fR3l7IwARcZnWTk/Q7+L9Emsgm
gvMOMHESo39hW0QrSd66rxAa/Q2ykrZ5yy0yO7LLCttNmZzArSpiomUkZVZI2B5J
0J9EyIYXOuTrnv52ZXMv4xUB3fpCIRRIzFE9k25dYuhvKBsEQAbF8RfEN8ADi9oX
cGuX/OCwXIASGoZrbAz44ihhhDBOG1/xk9ew
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:22 2023 by rpki-client on console-ams.rpki-client.org