Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/WSuZrd-YZ_5-AanRlrfVE22WlyY.roa
File: WSuZrd-YZ_5-AanRlrfVE22WlyY.roa (raw, json)
Hash identifier: W2xTmwVJeopb6jXsnf+FGmxWVyaPRqpU/fIqB46dGXM=
Subject key identifier: 59:2B:99:AD:DF:98:67:FE:7E:01:A9:D1:96:B7:D5:13:6D:96:97:26
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 0392E656
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/WSuZrd-YZ_5-AanRlrfVE22WlyY.roa
Signing time: Wed 04 May 2022 15:15:44 +0000
ROA not before: Wed 04 May 2022 15:15:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60602
IP address blocks: 2.58.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59958870 (0x392e656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: May 4 15:15:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=592b99addf9867fe7e01a9d196b7d5136d969726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:67:04:85:3b:54:41:e1:17:3b:4d:9d:08:
45:3e:a7:d6:37:66:bf:fb:4c:31:26:17:a2:3f:12:
9e:4b:99:f9:ae:6d:9e:f9:5d:b5:94:80:52:96:58:
50:27:8b:94:e4:30:14:3a:76:5e:58:63:dd:dd:83:
92:f9:78:f2:6e:72:43:8c:0d:69:96:71:ae:a4:67:
c1:f7:7e:45:5f:0a:ca:86:53:82:e3:b6:3e:f4:0f:
7a:2c:64:21:25:15:1a:67:58:1f:4e:d5:01:96:c3:
19:29:ae:e1:4b:64:cd:c8:73:d0:1b:8d:4c:df:8e:
8a:bf:31:7b:ea:bb:65:2c:a3:08:75:07:1b:03:c2:
1b:f6:3a:58:3f:d2:b3:f8:9a:9b:01:75:8a:05:39:
e2:93:61:11:00:6b:75:98:ad:64:09:1b:79:05:09:
f2:8e:c9:ce:8d:58:1b:7e:e7:69:56:58:0e:6c:e4:
ed:ff:09:c0:4a:94:76:dd:a4:e6:86:83:77:45:2a:
dc:da:8f:98:db:7f:82:4a:ee:9e:28:e5:25:82:9f:
01:c2:1d:12:d1:13:ba:12:87:af:7c:13:54:75:8b:
6a:ad:0c:bd:95:ba:a4:37:fa:35:09:57:79:3b:9a:
fd:f7:79:93:78:5f:1c:61:71:6b:a1:da:06:da:fd:
9f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2B:99:AD:DF:98:67:FE:7E:01:A9:D1:96:B7:D5:13:6D:96:97:26
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/WSuZrd-YZ_5-AanRlrfVE22WlyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.66.0/23
Signature Algorithm: sha256WithRSAEncryption
64:23:e8:1f:56:fb:03:15:49:ab:58:ed:9b:ee:2d:12:b7:7e:
26:e9:f7:f4:61:bd:35:e4:99:90:84:18:bc:79:82:2c:ee:d2:
b0:e7:ab:2c:2c:32:08:ab:71:3e:d0:ac:f3:26:e8:eb:df:29:
c8:1a:1c:ed:49:e7:72:19:b6:c1:a6:2f:b2:4b:6e:e1:04:5a:
a0:f2:f9:c1:6e:90:35:d5:8a:78:57:ae:dd:71:3e:d3:b4:2c:
c1:0e:25:c1:e5:e2:de:36:96:64:e2:0b:4a:67:d5:be:4c:b3:
93:d1:4b:5b:5a:ee:05:96:1f:db:ca:cf:23:65:bd:1e:8d:d5:
b3:a7:29:c1:b2:ff:17:a2:f2:08:89:e0:d6:ec:10:d9:14:dd:
58:cd:b7:c8:79:27:6e:21:06:46:38:03:94:58:11:db:d7:e4:
75:c6:28:ed:54:47:a5:70:73:2d:9a:ee:8f:2c:13:a7:28:8a:
59:05:44:39:15:a4:6a:9c:5f:be:9b:05:d0:c4:64:43:91:2c:
dc:cb:d1:3f:0d:41:1d:63:02:aa:a8:a7:a4:cc:25:47:56:1a:
cf:65:ff:cf:88:d5:f3:45:12:17:e1:c0:0c:32:cc:cf:05:7a:
22:a4:39:2b:65:f8:e9:ad:b3:12:de:39:c3:33:69:e9:9d:46:
62:c7:20:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org