Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/1-l1myZBDuHkOr43pgr_tPc1HXII.roa
File: 1-l1myZBDuHkOr43pgr_tPc1HXII.roa (raw, json)
Hash identifier: bXfZcjKRe4ueKENjAnpGoOIkMH8Y0fZKvjvQhg2hHXQ=
Subject key identifier: FA:5D:66:C9:90:43:B8:79:0E:AF:8D:E9:82:BF:ED:3D:CD:47:5C:82
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 03A5D47C
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/1-l1myZBDuHkOr43pgr_tPc1HXII.roa
Signing time: Mon 09 May 2022 13:32:35 +0000
ROA not before: Mon 09 May 2022 13:32:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 2.58.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61199484 (0x3a5d47c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: May 9 13:32:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa5d66c99043b8790eaf8de982bfed3dcd475c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e0:bc:ff:38:3b:de:d3:e2:d6:b7:77:a0:84:
f1:78:a6:de:d1:7d:f3:a7:63:ef:37:13:ee:d2:95:
5b:29:24:07:01:4c:0c:6a:3b:6a:61:92:03:92:52:
52:1a:20:ff:df:52:58:4c:f2:cb:4a:7f:9c:28:47:
d6:ac:c7:28:f0:05:6e:2f:b7:b3:bc:5b:60:37:fb:
b5:3e:7a:8c:33:44:02:ef:28:bb:f8:6d:25:20:e8:
4b:01:39:8a:77:30:1e:94:74:97:33:aa:89:ec:9e:
b9:a3:67:d5:cb:97:a7:51:84:d3:9b:6a:77:11:15:
44:2a:4d:86:52:61:59:8b:7b:73:82:a8:7e:d5:1e:
35:0e:b7:06:f3:39:33:73:64:a3:85:60:28:c7:29:
95:3b:09:9e:65:ba:2f:38:1c:44:4b:81:de:1b:8e:
18:36:23:76:6e:3a:6a:4d:7b:bf:01:06:a5:a6:40:
2f:f3:d9:27:56:da:40:09:ed:a2:d3:63:c0:d3:63:
ea:53:4f:db:45:46:85:35:c2:48:ad:14:ac:d6:95:
4b:3a:f8:88:22:b9:29:5a:79:aa:60:a3:9a:50:ca:
7c:3f:46:b8:96:3f:57:06:02:d1:04:2f:82:f2:85:
4f:4b:e5:b5:6b:09:49:b2:7b:91:00:00:de:f4:7c:
ff:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:5D:66:C9:90:43:B8:79:0E:AF:8D:E9:82:BF:ED:3D:CD:47:5C:82
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/1-l1myZBDuHkOr43pgr_tPc1HXII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.66.0/23
Signature Algorithm: sha256WithRSAEncryption
12:41:93:96:11:78:80:c0:20:e4:74:1b:0e:c6:d8:bf:8f:c7:
a4:2f:2a:1f:e7:f8:e4:01:7c:51:fc:d8:37:4b:39:92:83:ac:
f1:6f:37:64:04:5b:f4:78:9f:97:a3:aa:64:c4:4d:d7:c1:55:
6d:83:18:e1:d7:e9:65:a1:d3:de:64:62:09:df:d6:ed:9a:18:
03:a7:2c:cf:94:77:86:ad:1a:e8:29:76:c0:a5:5a:0b:1c:12:
11:9f:d7:7a:2d:e5:ec:be:ee:77:38:db:a7:f6:91:3a:f2:20:
2c:07:93:99:b7:69:e9:75:96:7a:cc:a0:c4:ce:3d:92:90:f1:
1a:d3:8b:04:85:a6:bf:2f:73:4e:66:02:3b:2f:ed:1f:20:38:
e7:53:7d:89:35:c9:df:46:b5:cf:ba:4c:14:cb:12:88:cf:58:
be:da:39:21:9a:ad:ba:83:15:cf:4b:3e:54:79:7a:1b:cc:10:
bc:79:19:3b:2b:b2:b5:0e:2a:71:ee:6a:df:db:8a:7f:0d:e2:
09:67:99:f8:ea:45:73:31:cc:83:bd:38:ed:f8:26:aa:8c:13:
e1:3d:6a:cc:b8:1f:d4:4a:2a:9e:70:51:ff:7a:ee:c9:f9:af:
93:50:46:00:89:9c:e0:39:d9:36:60:7f:78:1a:ee:ed:e5:50:
ac:52:df:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:29 2023 by rpki-client on console-fra.rpki-client.org