Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/fXCGZf6FNeDNjc9wGWAsgyGxIOs.roa
File: fXCGZf6FNeDNjc9wGWAsgyGxIOs.roa (raw, json)
Hash identifier: sJv3qXDdw4Bv/IJghotA9d3PA6mHFr10LiuXllVx5xM=
Subject key identifier: 7D:70:86:65:FE:85:35:E0:CD:8D:CF:70:19:60:2C:83:21:B1:20:EB
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 0184D1A98DF5ABCA9D02AE26EF8FD31E1ED3
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/fXCGZf6FNeDNjc9wGWAsgyGxIOs.roa
Signing time: Fri 02 Dec 2022 07:07:40 +0000
ROA not before: Fri 02 Dec 2022 07:07:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:a9:8d:f5:ab:ca:9d:02:ae:26:ef:8f:d3:1e:1e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Dec 2 07:07:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d708665fe8535e0cd8dcf7019602c8321b120eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fd:cb:81:48:18:9b:d4:ca:25:09:49:e6:d4:
12:9f:e3:a6:24:36:b6:89:70:f9:7b:6d:27:27:e7:
ff:42:2d:de:ff:a8:4b:b6:4e:9a:35:b6:b7:7a:e0:
93:52:96:f4:13:0e:39:b3:fa:6d:0e:37:99:92:3a:
09:dd:69:9e:dc:08:e8:16:38:05:81:6e:d7:3e:48:
24:28:a4:c8:5c:2f:c1:7b:36:e7:8c:59:76:ef:9c:
8b:26:cc:7b:e1:6b:69:a4:93:9c:88:0a:38:e5:42:
53:2a:49:ce:a8:3b:75:ef:1f:3b:09:54:49:cf:b9:
b9:c5:26:9d:e7:52:58:ad:30:75:48:26:f8:4c:bd:
e7:a2:d0:85:e8:4d:3b:84:41:e3:7d:e8:36:fd:30:
b7:dd:96:cc:06:83:ed:72:07:b0:3e:d5:ca:47:e6:
d0:c9:e8:86:13:d8:0e:d7:9e:80:4d:f0:cf:3a:93:
43:14:3f:f6:d0:ad:79:4a:54:13:b8:a7:cf:a9:52:
29:1c:15:3d:e7:80:83:71:26:c9:16:24:2d:2c:cb:
7d:20:1c:60:b6:3d:92:15:4f:c6:e3:5b:76:c5:86:
f2:2b:f9:9f:7f:0b:82:92:b8:6c:38:82:45:8a:7c:
c5:8a:c8:7e:a3:71:c4:de:f5:62:2d:88:40:2e:cf:
3b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:70:86:65:FE:85:35:E0:CD:8D:CF:70:19:60:2C:83:21:B1:20:EB
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/fXCGZf6FNeDNjc9wGWAsgyGxIOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
60:91:10:ef:97:c1:13:32:47:29:9b:ae:95:57:84:95:6b:0e:
18:bb:d5:33:0e:83:3d:79:e6:82:af:1d:75:a3:77:81:84:20:
21:d1:30:50:a2:57:ac:ea:b3:1c:1c:7e:09:41:51:c8:42:5b:
18:cb:0f:4f:1c:46:33:2f:55:92:6a:11:52:f8:65:4b:47:29:
98:0d:50:d5:c3:52:83:f5:62:35:de:6a:dc:cd:41:ad:5b:3f:
ee:21:da:75:3a:cd:1e:38:ce:cc:75:82:5f:90:dd:e3:05:e1:
6d:a2:38:20:91:a3:ed:ac:2a:cd:1f:39:2e:5a:a0:a1:f8:ae:
0b:09:33:ad:38:d9:02:07:1c:0f:2a:88:6c:3b:95:d2:d8:06:
c7:a1:9f:65:d7:a9:08:05:68:a4:9a:84:d8:da:91:4b:cf:34:
66:18:68:5c:f5:f1:84:a5:e1:d0:93:4d:fc:59:b4:e5:5f:fb:
94:3b:59:b6:dc:e1:c4:7e:38:bd:a2:69:61:cd:80:f7:00:ee:
c7:5e:9a:ac:ef:f1:f6:bc:9e:07:00:08:9f:a5:be:2b:88:41:
bf:fe:ec:8b:2a:ba:c3:b6:22:95:56:42:95:50:e6:f4:fd:90:
9a:50:ac:8a:69:61:d3:6d:43:b0:77:b7:13:38:27:ce:be:20:
5e:8f:72:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:03 2024 by rpki-client on console-ams.rpki-client.org