Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/JoaH5qjcoUVmizsjiTsj6FU-XsM.roa
File: JoaH5qjcoUVmizsjiTsj6FU-XsM.roa (raw, json)
Hash identifier: C2ihksCl+QkkX0Wgd/sygy3ey0aAQ8GsE0PR9EihTOE=
Subject key identifier: 26:86:87:E6:A8:DC:A1:45:66:8B:3B:23:89:3B:23:E8:55:3E:5E:C3
Certificate issuer: /CN=719e59b5017bfe634411949eff2d70ba0a07c540
Certificate serial: 018286F11181868BD2BA3333CE73E01181B3
Authority key identifier: 71:9E:59:B5:01:7B:FE:63:44:11:94:9E:FF:2D:70:BA:0A:07:C5:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/JoaH5qjcoUVmizsjiTsj6FU-XsM.roa
Signing time: Wed 10 Aug 2022 08:48:41 +0000
ROA not before: Wed 10 Aug 2022 08:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 46.28.58.0/24 maxlen: 24
46.28.59.0/24 maxlen: 24
46.28.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:86:f1:11:81:86:8b:d2:ba:33:33:ce:73:e0:11:81:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=719e59b5017bfe634411949eff2d70ba0a07c540
Validity
Not Before: Aug 10 08:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=268687e6a8dca145668b3b23893b23e8553e5ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:74:79:1d:b5:e9:06:1a:db:9c:c4:c0:44:55:
28:0f:2d:da:0d:2a:87:53:1e:25:4c:d0:17:e6:06:
84:c4:0e:a0:eb:21:89:1f:fa:4d:fd:84:64:6f:a7:
1e:95:66:0e:e4:f2:eb:1c:ed:ed:87:af:c0:77:80:
75:a5:4c:20:f6:47:b0:2e:d4:70:a1:87:4a:94:47:
2b:bf:6d:ba:fa:ac:4b:17:82:f1:6a:8e:87:5e:04:
37:fc:46:57:47:8d:60:23:1d:2f:e8:ac:8d:9c:8b:
d0:53:96:a9:28:1c:84:cf:70:8d:62:69:99:0d:85:
c3:04:fb:f0:50:7d:95:28:51:4f:45:e0:63:a2:b8:
3c:db:87:bd:88:97:dd:19:7c:ff:9a:7a:18:30:90:
4a:80:1a:b0:06:76:5a:ef:af:3e:1f:dd:4a:e1:89:
b9:77:3b:b6:5e:7b:4a:9b:a2:9a:92:c0:a9:0b:2b:
e2:4f:fd:c7:af:07:b5:db:fc:ca:f8:68:5b:f7:15:
60:dd:75:10:e8:fc:f3:7e:64:02:69:59:09:0e:9f:
46:c8:4f:ee:a3:c4:5a:63:c4:27:a8:0c:70:f8:bf:
af:bf:db:28:b5:c3:c8:43:dd:ff:be:17:3d:a8:ec:
3e:80:a9:8b:af:bf:74:9c:04:ec:70:32:0e:47:5a:
af:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:86:87:E6:A8:DC:A1:45:66:8B:3B:23:89:3B:23:E8:55:3E:5E:C3
X509v3 Authority Key Identifier:
keyid:71:9E:59:B5:01:7B:FE:63:44:11:94:9E:FF:2D:70:BA:0A:07:C5:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/JoaH5qjcoUVmizsjiTsj6FU-XsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.58.0/23
46.28.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:b5:36:90:82:88:99:0c:9c:8a:7a:e3:df:57:5a:e9:5a:62:
79:0d:8c:bc:1b:2b:0c:25:0f:a9:89:b7:74:b8:35:40:36:e1:
50:cc:75:7f:95:05:ee:29:6d:dd:ef:12:92:f2:48:fe:79:cd:
b2:3d:ad:8d:8c:68:96:c1:fb:b1:e6:db:ce:2e:d5:de:cf:f7:
45:ff:df:83:60:8d:a0:ab:8b:21:87:2e:2f:65:1c:18:60:72:
6d:fc:25:bd:b6:07:e4:99:e7:d7:07:c1:98:16:15:99:bb:a0:
21:e7:63:82:23:04:18:62:a5:f9:62:32:d6:2a:ed:16:a1:19:
79:17:10:91:fa:6c:8a:e4:6a:e0:19:5a:6a:da:7c:44:4f:5b:
70:64:79:94:bc:2a:cc:29:73:ac:2d:9b:03:77:df:de:c4:c3:
55:84:c2:6e:09:9d:27:80:3a:40:37:5b:2a:51:7d:58:a3:ee:
9c:be:69:16:ac:4b:31:d2:b0:11:9c:62:2e:14:8c:2f:1d:b7:
89:d0:f3:fa:8b:d3:36:a2:eb:4f:fd:cb:b9:ec:37:fc:6a:05:
dd:e4:8c:d5:da:21:d7:a7:62:f8:a9:16:db:eb:fb:7e:fd:8d:
23:f9:39:7b:bf:dd:7d:1f:d5:ba:0c:6a:14:19:de:4c:93:71:
49:da:5c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-fra.rpki-client.org