Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PTAq7I_Q6dnQkNAQyyyHGxgnhWo.roa
File: PTAq7I_Q6dnQkNAQyyyHGxgnhWo.roa (raw, json)
Hash identifier: Sbe7q+rDHN7bPxrkQ0G2YdVvlBuatrnKoq9xRrFwRKM=
Subject key identifier: 3D:30:2A:EC:8F:D0:E9:D9:D0:90:D0:10:CB:2C:87:1B:18:27:85:6A
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018451FC74F171E45B32930979BA6C69AE6A
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PTAq7I_Q6dnQkNAQyyyHGxgnhWo.roa
Signing time: Mon 07 Nov 2022 12:06:50 +0000
ROA not before: Mon 07 Nov 2022 12:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 2.58.232.0/22 maxlen: 22
178.239.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:fc:74:f1:71:e4:5b:32:93:09:79:ba:6c:69:ae:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 7 12:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d302aec8fd0e9d9d090d010cb2c871b1827856a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ce:61:19:7f:9d:0d:33:8b:a6:01:b5:fe:36:
31:73:d8:6f:80:2c:2e:0f:f8:10:d2:aa:f3:06:8b:
20:79:e1:49:e3:4c:2d:ea:51:07:f2:0d:56:4e:8c:
ec:b9:e7:2d:1f:d7:7a:50:c2:53:bd:40:cc:dd:fa:
17:71:e9:c6:5a:65:9f:d5:34:c8:bd:c4:48:f7:2f:
15:9c:3b:7e:98:07:28:4c:02:55:7e:fe:b3:8f:54:
c1:ff:20:88:2c:83:95:d4:89:4c:c1:c7:b1:ee:09:
fc:7a:dd:31:a9:16:ea:05:16:86:87:a8:7a:f9:26:
c7:03:66:23:49:5a:90:07:88:e7:43:44:c2:db:8a:
db:93:b1:77:b9:7c:48:42:25:2e:76:bd:6e:b0:c0:
47:6b:92:be:57:08:8c:df:96:e4:29:7e:5e:7a:6e:
14:a7:9b:f8:da:33:fd:04:63:8f:c0:6c:7f:1b:9d:
a4:de:3d:85:04:55:3f:30:74:bd:d0:c7:bc:f6:85:
55:cf:b1:b5:48:80:e1:00:d0:c4:cd:82:29:87:a9:
32:50:08:73:35:79:d1:db:c8:9b:0a:15:76:10:59:
09:fb:a3:01:ca:83:c2:38:d5:be:12:20:25:3f:76:
92:fe:f6:37:b7:80:38:18:7e:e6:75:e1:5f:ce:9e:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:30:2A:EC:8F:D0:E9:D9:D0:90:D0:10:CB:2C:87:1B:18:27:85:6A
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/PTAq7I_Q6dnQkNAQyyyHGxgnhWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.232.0/22
178.239.30.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:fd:0b:c8:1d:e8:cb:f0:07:ae:0b:33:9e:04:1e:da:96:a9:
18:fd:02:61:61:08:6f:72:f0:e4:ef:27:61:b2:36:a6:28:21:
4c:18:3a:87:09:88:28:48:8f:07:08:41:09:fd:bd:f5:02:dc:
ec:99:d1:b5:d7:d2:7d:d6:2d:ae:13:8d:4e:30:6a:b7:84:3f:
1f:e9:81:3e:19:63:67:31:16:a3:c4:b6:73:37:68:c5:31:d6:
a7:c0:c9:7a:d1:a2:cf:76:56:48:ab:02:b3:72:c5:02:ca:a6:
87:9a:a1:8f:e0:ed:e5:e1:d9:5f:eb:a3:45:6f:bb:53:51:b5:
0f:1d:5a:9d:54:90:d0:ed:11:f4:c6:4a:00:e3:32:bc:f2:a4:
0b:92:c2:04:8a:7c:fe:9d:7b:03:19:0a:56:f4:75:b4:88:ae:
db:cd:11:58:13:e5:7e:40:16:34:39:1d:0b:88:dc:91:50:79:
b8:3d:72:0e:bc:34:01:27:f4:f5:78:63:fa:30:97:1e:18:00:
df:e0:30:07:e1:a4:ec:01:7e:b8:85:56:4b:0c:2b:76:ed:a8:
c4:92:d5:14:a0:ca:a1:43:6f:91:9b:91:85:7d:4a:38:18:fb:
0f:ce:d3:a0:ff:87:85:d3:0e:b9:fc:65:ef:6a:31:8a:5e:17:
54:22:d3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org