Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3RTPqLCnDtEEb3_UJx6nqIyO4DU.roa
File: 3RTPqLCnDtEEb3_UJx6nqIyO4DU.roa (raw, json)
Hash identifier: zTmbC9zctQDJQ4LWFGAu52dbRQLQ2ffdrwNY9+Y+D4A=
Subject key identifier: DD:14:CF:A8:B0:A7:0E:D1:04:6F:7F:D4:27:1E:A7:A8:8C:8E:E0:35
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182166C767707CE73AAFC25B1CD9C3F0E92
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3RTPqLCnDtEEb3_UJx6nqIyO4DU.roa
Signing time: Tue 19 Jul 2022 12:26:23 +0000
ROA not before: Tue 19 Jul 2022 12:26:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49944
IP address blocks: 2.58.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:6c:76:77:07:ce:73:aa:fc:25:b1:cd:9c:3f:0e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 19 12:26:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd14cfa8b0a70ed1046f7fd4271ea7a88c8ee035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5f:2d:b4:a2:00:40:aa:16:f4:c3:da:95:41:
3b:da:b8:69:eb:4c:8d:c4:ba:9f:c7:85:34:02:bd:
ea:ee:81:f3:ec:1b:9f:c7:cb:67:9c:60:e4:56:4d:
e5:b1:8f:10:eb:a8:63:fb:a2:e0:11:dc:d2:22:48:
a9:01:22:c4:94:81:13:2d:a2:b2:74:02:11:ea:82:
24:07:31:99:9b:bd:bf:77:b5:32:2a:ce:f0:ae:48:
b3:65:b5:5f:94:bb:81:50:af:70:5d:f7:2c:c2:fe:
85:bc:77:11:93:c9:1e:23:e8:14:93:5a:75:aa:97:
fc:90:2b:bb:08:2b:4a:75:7f:87:8a:30:64:73:2a:
b0:4e:d0:1f:24:39:98:91:6e:f3:c0:7e:83:17:71:
d1:0a:22:55:33:b4:a2:2c:50:02:59:25:e5:b5:94:
be:36:47:a0:d8:31:69:a4:69:d0:47:39:8a:12:75:
62:ee:7c:6b:f3:5b:64:da:87:3e:00:b4:14:60:b9:
73:71:be:07:7a:c8:c4:21:c4:b2:ae:80:70:52:47:
4b:a5:25:4b:d3:87:f2:88:b2:9c:dc:58:d9:ed:9e:
20:40:11:ce:04:38:34:71:32:69:d9:9e:53:c7:b4:
c4:64:e4:8c:62:2b:ee:ab:a5:dd:fe:08:44:e9:d0:
e7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:14:CF:A8:B0:A7:0E:D1:04:6F:7F:D4:27:1E:A7:A8:8C:8E:E0:35
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3RTPqLCnDtEEb3_UJx6nqIyO4DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:25:c5:50:cd:d6:28:49:bc:87:bd:94:11:28:5b:ee:c6:80:
6e:f4:0d:e9:8b:a1:d0:ea:9c:df:5b:33:36:03:cb:67:a8:95:
80:5e:fc:44:8e:f2:69:11:3b:62:a4:43:6a:28:9b:d6:9f:b6:
e5:7e:d2:37:9c:76:a1:77:e8:7b:e2:7e:31:b9:69:9a:13:01:
cc:d9:cf:05:4e:55:be:76:06:b4:8f:f6:fa:b3:d6:e6:55:4d:
5e:e8:c8:0b:3b:19:15:20:91:b4:c4:75:78:19:ad:d4:3e:5d:
e4:6b:d4:40:c3:11:3e:23:aa:37:38:aa:88:a9:eb:bf:2b:1f:
d9:a6:6c:ee:fd:80:62:ff:69:ba:22:94:cd:01:6e:7a:1b:c8:
fd:69:01:12:e3:a2:a7:67:7d:86:8e:04:3d:be:62:25:b6:12:
9d:6b:16:d1:7c:fa:2b:e9:83:b4:d4:e2:7f:3a:51:2a:72:aa:
f5:47:e8:67:ef:e5:77:44:1a:00:03:6c:d0:22:6d:86:17:f4:
c9:62:03:57:db:76:ea:93:bd:42:56:b8:82:b8:00:9a:89:97:
e3:26:a0:21:55:70:39:fd:99:ea:2d:2f:d4:02:2e:92:60:56:
59:5e:82:bd:bc:f5:45:d7:c8:d4:26:64:ca:79:aa:2e:ef:40:
07:e9:ef:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIWbHZ3B85zqvwlsc2cPw6SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjIwNzE5MTIyNjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDE0Y2ZhOGIwYTcwZWQxMDQ2ZjdmZDQyNzFlYTdhODhjOGVlMDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkV8ttKIAQKoW9MPalUE72rhp60yN
xLqfx4U0Ar3q7oHz7Bufx8tnnGDkVk3lsY8Q66hj+6LgEdzSIkipASLElIETLaKy
dAIR6oIkBzGZm72/d7UyKs7wrkizZbVflLuBUK9wXfcswv6FvHcRk8keI+gUk1p1
qpf8kCu7CCtKdX+HijBkcyqwTtAfJDmYkW7zwH6DF3HRCiJVM7SiLFACWSXltZS+
Nkeg2DFppGnQRzmKEnVi7nxr81tk2oc+ALQUYLlzcb4HesjEIcSyroBwUkdLpSVL
04fyiLKc3FjZ7Z4gQBHOBDg0cTJp2Z5Tx7TEZOSMYivuq6Xd/ghE6dDniwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN0Uz6iwpw7RBG9/1Ccep6iMjuA1MB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvM1JUUHFMQ25EdEVFYjNfVUp4Nm5xSXlPNERVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCAjqoMA0G
CSqGSIb3DQEBCwUAA4IBAQAaJcVQzdYoSbyHvZQRKFvuxoBu9A3pi6HQ6pzfWzM2
A8tnqJWAXvxEjvJpETtipENqKJvWn7blftI3nHahd+h74n4xuWmaEwHM2c8FTlW+
dga0j/b6s9bmVU1e6MgLOxkVIJG0xHV4Ga3UPl3ka9RAwxE+I6o3OKqIqeu/Kx/Z
pmzu/YBi/2m6IpTNAW56G8j9aQES46KnZ32GjgQ9vmIlthKdaxbRfPor6YO01OJ/
OlEqcqr1R+hn7+V3RBoAA2zQIm2GF/TJYgNX23bqk71CVriCuACaiZfjJqAhVXA5
/ZnqLS/UAi6SYFZZXoK9vPVF18jUJmTKeaou70AH6e+s
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:00 2023 by rpki-client on console-fra.rpki-client.org