Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/OJj4TUCvtIQTWmFIBHgmWa5l7bs.roa
File: OJj4TUCvtIQTWmFIBHgmWa5l7bs.roa (raw, json)
Hash identifier: 4/j44IeEGdaO/52cHCLtCuN9Y7jfMd7C+mE5AGEeyaE=
Subject key identifier: 38:98:F8:4D:40:AF:B4:84:13:5A:61:48:04:78:26:59:AE:65:ED:BB
Certificate issuer: /CN=6eef3973d6e07681419bae867bd514545e7df5da
Certificate serial: 0184F1C74C301E2ACA4D138D95E46FC15694
Authority key identifier: 6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/OJj4TUCvtIQTWmFIBHgmWa5l7bs.roa
Signing time: Thu 08 Dec 2022 12:48:00 +0000
ROA not before: Thu 08 Dec 2022 12:48:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 2.58.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c7:4c:30:1e:2a:ca:4d:13:8d:95:e4:6f:c1:56:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eef3973d6e07681419bae867bd514545e7df5da
Validity
Not Before: Dec 8 12:48:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3898f84d40afb484135a614804782659ae65edbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fa:69:5c:e1:0b:32:e0:40:73:51:ab:a4:cd:
85:e3:38:68:18:c0:8f:39:2a:61:62:77:5c:f1:3e:
d5:fc:e0:81:c3:ae:98:cb:c7:4a:1b:6d:c4:5c:f8:
d1:d1:60:96:76:dd:7b:a1:c8:c1:a1:9f:6b:05:cb:
81:3c:46:a6:69:df:79:c0:a8:6d:2f:4f:ab:79:2b:
40:79:22:c1:45:19:2f:86:db:95:7e:28:4b:16:e4:
00:fb:63:97:d5:bc:02:46:eb:43:2e:ad:0b:d7:08:
6e:d8:a4:28:f7:40:b2:41:e3:7c:87:64:bb:70:a1:
7f:72:1f:0b:85:bb:f0:62:80:8e:d6:6b:c0:5c:37:
b9:1d:9f:86:de:fa:a7:5e:ec:44:55:2b:09:32:1b:
ca:42:6a:ad:fc:96:96:fc:b6:71:7a:a0:70:03:b9:
df:f9:6a:21:d0:1a:a3:7f:33:9a:5c:0e:23:c2:f7:
77:0b:58:28:65:2a:f0:ae:41:69:ff:1a:c4:0f:69:
53:c6:0b:e7:ff:24:4f:8b:ac:a1:a3:69:2a:09:9a:
63:c8:a4:8c:c2:8f:62:71:57:4b:ef:31:8d:ac:17:
f1:0d:25:78:78:6f:5b:c5:41:62:e9:f6:48:de:be:
7c:19:11:70:9a:5e:07:a5:bc:de:cc:b6:ea:6a:5a:
08:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:98:F8:4D:40:AF:B4:84:13:5A:61:48:04:78:26:59:AE:65:ED:BB
X509v3 Authority Key Identifier:
keyid:6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/OJj4TUCvtIQTWmFIBHgmWa5l7bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.103.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c1:79:82:80:c0:f2:4d:96:49:27:2d:e8:dc:01:54:aa:13:
8a:68:ed:59:3b:26:8e:24:db:1b:23:6a:aa:36:75:3c:a8:35:
c1:cb:1c:23:49:a2:20:f0:30:93:cc:b3:69:e1:ef:49:6d:33:
7d:af:83:68:28:42:23:b5:c4:68:2a:ae:38:bb:1e:7d:9b:3f:
29:16:7c:e3:0f:a4:34:54:93:57:a5:a3:cc:4f:8c:44:73:44:
b1:9a:16:a6:1b:71:d9:2f:4a:d6:aa:84:9c:7a:c3:55:11:64:
75:01:49:06:d6:34:f4:b0:c2:e2:5d:47:c5:37:02:44:8d:8f:
37:2d:bf:ac:e2:f0:36:3c:8e:b3:9b:e6:b6:82:47:a4:bc:8b:
12:e3:00:68:0f:b2:93:4d:6d:3d:29:36:8b:89:b4:96:6e:e1:
f4:2c:9c:15:f6:9f:72:2e:31:7e:ca:21:99:99:42:15:89:35:
e6:ee:cb:ce:b3:d6:44:c8:8d:5f:52:75:26:08:eb:75:f3:13:
06:5c:d5:01:f1:af:00:88:d4:ef:4b:c8:d1:b2:16:ed:f8:8e:
4d:15:40:7e:8c:57:48:b2:fe:de:ec:e2:8e:2c:6b:97:ab:be:
cf:1a:fb:45:f2:49:9e:9d:9e:38:fb:99:26:61:7b:d3:fe:64:
7f:48:27:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:46 2024 by rpki-client on console-fra.rpki-client.org