Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/Z7hfMeqcEiWLQGYZkD9Ms1dPiBU.roa
File: Z7hfMeqcEiWLQGYZkD9Ms1dPiBU.roa (raw, json)
Hash identifier: tYCvEpVYs1J60U8mEKU7tIpwyxS4aWHp77Bts3wp+t0=
Subject key identifier: 67:B8:5F:31:EA:9C:12:25:8B:40:66:19:90:3F:4C:B3:57:4F:88:15
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 093CDE17
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/Z7hfMeqcEiWLQGYZkD9Ms1dPiBU.roa
Signing time: Thu 07 Apr 2022 18:41:52 +0000
ROA not before: Thu 07 Apr 2022 18:41:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 2.58.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154983959 (0x93cde17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Apr 7 18:41:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67b85f31ea9c12258b406619903f4cb3574f8815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:f3:9c:73:1b:ec:dd:16:36:d0:29:08:3a:
da:4a:4b:b4:13:36:4b:c1:b3:62:4a:0f:c5:e7:bd:
d3:16:5b:26:03:06:c8:34:3d:70:59:2d:51:82:9c:
f1:5e:c0:1a:ef:17:62:a9:43:8c:3c:d3:2c:4e:f0:
b0:09:23:2d:0e:9b:3a:96:93:3b:71:60:27:2c:1c:
21:82:03:cc:96:0e:c1:66:b6:06:c7:9b:11:7f:70:
f3:93:9e:e8:5d:1c:c0:78:7d:43:32:5c:f4:15:79:
db:9f:9a:c4:4d:62:66:ec:ac:46:69:50:97:19:3b:
09:07:f8:54:d7:a8:b5:d9:c4:e7:58:4c:2a:fe:57:
0a:d9:82:9e:4c:da:6e:f3:69:93:0a:8e:34:23:14:
6e:1b:99:bc:3e:25:88:30:44:4a:7c:e8:93:24:9e:
b0:9d:12:8b:b5:a6:b2:36:30:9f:b3:30:da:81:30:
b2:ff:e6:1c:27:93:76:05:3e:c6:b8:34:d1:6c:31:
2d:64:56:8f:66:fd:db:a3:3f:18:d1:d0:52:76:ef:
01:71:65:25:d4:66:09:b4:e5:84:05:85:70:26:e7:
26:51:dc:cb:92:05:87:74:02:43:c6:72:dd:13:30:
55:ad:5c:d1:bd:49:a5:16:c4:49:42:6e:ac:84:74:
1c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B8:5F:31:EA:9C:12:25:8B:40:66:19:90:3F:4C:B3:57:4F:88:15
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/Z7hfMeqcEiWLQGYZkD9Ms1dPiBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.113.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d0:2a:cf:cc:c5:0b:d2:2b:8f:0b:ef:1c:5f:e0:ca:43:e0:
de:94:42:fd:6d:3e:4b:e7:99:37:97:f3:51:a8:bb:04:92:4e:
c3:8c:c0:ad:7c:d9:d8:70:26:00:c9:27:b0:7c:48:73:50:7a:
9b:fb:fb:7c:8e:94:f0:ce:e9:73:3a:01:1b:af:3a:7c:93:7d:
9d:54:18:8b:4b:f0:37:db:15:a1:ab:6b:53:03:26:e4:96:06:
3d:1f:75:cb:f6:ab:c5:47:63:22:38:4d:02:9e:3c:ee:27:2a:
be:ff:af:86:9a:ad:0d:c0:10:3e:39:9d:cf:23:02:a8:fc:d2:
be:bf:87:14:53:a7:20:17:f3:4e:01:85:48:db:7a:5e:71:a5:
fe:58:5c:33:16:5c:7a:c7:aa:e9:c8:8b:23:bf:58:dc:6b:1d:
48:7e:7e:c8:a8:d9:71:5e:14:d2:3f:53:ff:7a:7a:c8:fe:ae:
5e:e2:c4:cb:3b:a3:69:81:e3:93:64:3c:c2:8a:d6:60:25:62:
08:0d:a1:c8:56:08:25:0e:a9:94:54:00:7d:cd:90:85:4b:0c:
16:d0:37:16:de:27:6f:1b:6c:56:0f:8a:49:25:02:b5:48:17:
4b:c6:a5:34:41:98:3f:45:46:29:01:66:bd:b4:30:33:77:4b:
43:7b:ac:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTzeFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTYwYTRkODc0ZDk2MDFjODE0MmMzNTJmODBjNTZhNDMyNzZjZDQ3MB4XDTIyMDQw
NzE4NDE1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjdiODVmMzFlYTlj
MTIyNThiNDA2NjE5OTAzZjRjYjM1NzRmODgxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7885xzG+zdFjbQKQg62kpLtBM2S8GzYkoPxee90xZbJgMG
yDQ9cFktUYKc8V7AGu8XYqlDjDzTLE7wsAkjLQ6bOpaTO3FgJywcIYIDzJYOwWa2
BsebEX9w85Oe6F0cwHh9QzJc9BV525+axE1iZuysRmlQlxk7CQf4VNeotdnE51hM
Kv5XCtmCnkzabvNpkwqONCMUbhuZvD4liDBESnzokySesJ0Si7WmsjYwn7Mw2oEw
sv/mHCeTdgU+xrg00WwxLWRWj2b926M/GNHQUnbvAXFlJdRmCbTlhAWFcCbnJlHc
y5IFh3QCQ8Zy3RMwVa1c0b1JpRbESUJurIR0HIkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnuF8x6pwSJYtAZhmQP0yzV0+IFTAfBgNVHSMEGDAWgBS6YKTYdNlgHIFC
w1L4DFakMnbNRzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VtQ2sySFRaWUJ5QlFzTlMtQXhXcERKMnpVYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTgvMjhjYjVjLTI5OGYtNGQ4Yi04MTViLWU1YTM3NzhiZTNhZC8x
L1o3aGZNZXFjRWlXTFFHWVprRDlNczFkUGlCVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgv
MjhjYjVjLTI5OGYtNGQ4Yi04MTViLWU1YTM3NzhiZTNhZC8xL3VtQ2sySFRaWUJ5
QlFzTlMtQXhXcERKMnpVYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAI6cTANBgkqhkiG9w0BAQsFAAOC
AQEACNAqz8zFC9IrjwvvHF/gykPg3pRC/W0+S+eZN5fzUai7BJJOw4zArXzZ2HAm
AMknsHxIc1B6m/v7fI6U8M7pczoBG686fJN9nVQYi0vwN9sVoatrUwMm5JYGPR91
y/arxUdjIjhNAp487icqvv+vhpqtDcAQPjmdzyMCqPzSvr+HFFOnIBfzTgGFSNt6
XnGl/lhcMxZceseq6ciLI79Y3GsdSH5+yKjZcV4U0j9T/3p6yP6uXuLEyzujaYHj
k2Q8worWYCViCA2hyFYIJQ6plFQAfc2QhUsMFtA3Ft4nbxtsVg+KSSUCtUgXS8al
NEGYP0VGKQFmvbQwM3dLQ3usqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org