Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/xuhwS44oYVoa10uvD2C45VZI7qY.roa
File: xuhwS44oYVoa10uvD2C45VZI7qY.roa (raw, json)
Hash identifier: mPxPdJ5fYF9Z4cRtNvnxzVCrOxINg6LgCzcjWDMBsM8=
Subject key identifier: C6:E8:70:4B:8E:28:61:5A:1A:D7:4B:AF:0F:60:B8:E5:56:48:EE:A6
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 0856DEBD
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/xuhwS44oYVoa10uvD2C45VZI7qY.roa
Signing time: Sat 01 Jan 2022 12:57:38 +0000
ROA not before: Sat 01 Jan 2022 12:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 2.58.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139910845 (0x856debd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 1 12:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6e8704b8e28615a1ad74baf0f60b8e55648eea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c7:63:f1:87:fb:46:32:3f:24:12:cc:28:fc:
00:c5:23:4c:92:b0:7f:6e:ea:a2:bf:1d:dc:e1:29:
69:b0:14:ae:35:7c:de:c1:6d:0c:ef:9c:16:b5:2f:
0f:99:08:81:58:9d:4a:00:e5:a7:6b:a0:e0:d3:8a:
58:d0:15:40:05:1e:74:d4:86:11:3a:a8:87:29:0f:
8c:e9:48:85:11:a3:88:94:45:d0:7a:40:e0:b0:ca:
40:4e:48:75:e3:43:51:48:1b:26:6a:af:93:ca:de:
ec:a5:1a:25:2f:cc:c8:52:07:99:e1:8f:ea:1a:0e:
a3:3b:b8:61:1d:56:38:8f:42:47:db:67:d1:0c:9d:
3f:cd:b9:de:bb:bc:6c:51:d5:9e:d9:30:47:de:92:
e4:44:11:f9:b7:81:57:0f:c1:90:47:63:32:be:8a:
3b:18:bb:33:d3:0b:ed:17:e3:7e:aa:54:96:59:cb:
1d:92:c3:c7:63:2e:af:5f:ff:c3:95:dc:cb:49:78:
dd:cc:c4:11:30:cf:b7:89:d5:4e:4b:99:73:1c:10:
e1:88:4b:ef:09:3b:fe:0d:6f:1e:08:d9:51:fc:9f:
33:db:92:33:b6:91:65:a1:78:77:ef:bd:1b:e1:b8:
66:05:3a:2f:bd:c9:81:e3:0c:54:85:39:79:85:43:
5f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E8:70:4B:8E:28:61:5A:1A:D7:4B:AF:0F:60:B8:E5:56:48:EE:A6
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/xuhwS44oYVoa10uvD2C45VZI7qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.113.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5a:bb:60:aa:76:5d:2c:4c:95:a7:bd:5a:7b:e0:a1:ad:7c:
db:1a:e5:93:4a:cd:5e:db:29:d1:21:c5:85:ef:5a:d6:c0:2e:
0b:b1:ef:f8:0b:39:15:f7:0f:f2:73:3b:27:5e:d2:ca:be:c2:
b7:03:c9:13:f2:07:fa:39:76:5d:87:0d:f4:14:bd:36:e0:e3:
fa:0b:b7:b5:c0:da:a2:d9:a8:54:fa:6b:49:c7:ab:34:05:f0:
8b:2f:56:76:03:e6:c6:8c:95:88:c9:db:cf:08:85:0f:14:5a:
59:d5:71:35:44:8c:d7:77:d8:78:04:1d:86:7e:2d:5e:32:c9:
89:f0:a7:fd:e0:b0:59:0b:22:42:50:20:2c:61:66:92:23:10:
92:98:4d:e6:df:53:24:ce:ee:e0:eb:80:3b:be:92:a6:bd:6b:
1d:4d:b4:2f:e0:83:d0:b1:d9:2e:00:5c:a9:bb:a2:ff:9e:f1:
22:97:46:98:0a:fa:e4:8c:23:ef:18:4b:dc:c3:45:55:25:89:
c9:fd:b9:ca:f7:a8:58:86:1d:c1:dc:23:15:08:fc:c7:7a:9a:
69:9f:9a:e6:d1:9f:eb:7d:26:66:8c:64:1c:65:53:f6:3f:de:
c2:9c:6c:2c:68:93:ba:f3:2f:2d:0e:1d:cb:7b:2a:e0:43:bb:
b4:08:8d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org