Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/3NbtKdEJ-x3tERzpoI8qXP2tNUA.roa
File: 3NbtKdEJ-x3tERzpoI8qXP2tNUA.roa (raw, json)
Hash identifier: YVkHNhvR0viRNrx/TvXYbX0XNE81FoXR6Dz3ibrCs88=
Subject key identifier: DC:D6:ED:29:D1:09:FB:1D:ED:11:1C:E9:A0:8F:2A:5C:FD:AD:35:40
Certificate issuer: /CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Certificate serial: 09138B00
Authority key identifier: FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/3NbtKdEJ-x3tERzpoI8qXP2tNUA.roa
Signing time: Sat 01 Jan 2022 11:02:26 +0000
ROA not before: Sat 01 Jan 2022 11:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57706
IP address blocks: 2.58.58.0/24 maxlen: 24
2.58.59.0/24 maxlen: 24
2a09:e240:2::/48 maxlen: 48
2a09:e240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152275712 (0x9138b00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Validity
Not Before: Jan 1 11:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcd6ed29d109fb1ded111ce9a08f2a5cfdad3540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:c2:50:37:a5:90:44:53:37:ec:ca:d7:ea:
65:ae:48:63:82:43:3f:a8:e3:92:a9:5d:c0:96:ea:
e2:f8:b1:1d:89:18:d1:08:be:56:1f:45:5a:f7:81:
4e:b1:cd:e1:9a:2b:51:58:ba:37:3d:5c:0a:35:2f:
80:1d:d5:66:f7:90:5b:db:88:2c:2a:0d:77:ec:c9:
ca:78:59:40:bf:59:2a:c0:38:c3:61:8d:db:df:ef:
fd:51:a5:18:b1:49:e4:ef:a4:a9:43:ff:bb:45:cc:
b5:a0:da:4f:70:8e:46:11:7c:39:40:32:0f:96:31:
d4:f2:b2:fd:8c:1b:62:4d:7d:01:56:95:c2:fe:6c:
29:54:5b:d2:d6:4a:cf:34:cd:9d:1e:25:df:77:e1:
98:ca:c9:9a:8d:24:53:6c:e6:12:cf:60:c5:4a:a6:
8a:47:d0:45:cd:79:64:52:a5:49:6e:b1:cc:34:f2:
17:16:1e:c5:4c:1e:5d:a0:f5:73:de:b5:24:08:66:
ed:97:e8:58:16:08:9d:97:3f:d8:7b:96:b4:42:c7:
d2:87:2a:9d:83:eb:fa:ae:c9:ab:a4:65:34:0d:ca:
33:92:e8:42:46:18:93:ae:6f:98:33:8f:7e:5c:ce:
d7:43:21:0d:ed:20:8d:40:b3:a4:53:30:92:82:d3:
24:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D6:ED:29:D1:09:FB:1D:ED:11:1C:E9:A0:8F:2A:5C:FD:AD:35:40
X509v3 Authority Key Identifier:
keyid:FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/3NbtKdEJ-x3tERzpoI8qXP2tNUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/1-3RABurDCEv4jxKDSbDnM7s9eeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.58.0/23
IPv6:
2a09:e240::/48
2a09:e240:2::/48
Signature Algorithm: sha256WithRSAEncryption
5a:59:52:2f:14:14:76:aa:d2:c5:2c:03:5d:89:09:47:b4:6f:
fb:48:b6:32:67:5a:e7:a3:ef:46:35:3b:2a:68:5f:e2:7b:48:
11:3d:a7:8e:9c:b9:65:0b:c2:63:06:e2:2f:10:18:b8:c1:b9:
22:81:6e:5c:86:67:d3:2e:85:ca:d0:19:31:7b:cf:b0:4f:3e:
22:02:0b:5f:fc:49:66:d5:6a:e1:8d:bb:95:26:31:0e:e4:98:
95:53:41:0e:36:17:52:f9:40:26:da:15:2c:ad:b4:81:8e:00:
e9:0d:f4:f2:bd:34:78:14:32:80:a0:6b:3c:0f:ff:0e:97:db:
e7:62:8d:ba:32:95:6b:1b:d2:b1:95:9f:b7:84:5d:4e:95:44:
d6:41:25:e0:57:eb:72:47:24:91:f9:7f:78:9c:99:49:50:08:
d1:5e:e9:dc:8f:18:27:ee:fb:56:1a:ee:05:d6:6d:fc:87:88:
02:cf:d9:4e:bc:11:d9:79:00:9d:ff:f3:ac:a0:86:ad:dc:40:
91:1e:55:c2:ca:ac:05:1f:aa:66:21:35:ed:79:91:3e:50:f3:
a2:a1:c1:42:93:59:72:50:95:c7:c4:27:48:e9:46:4a:03:a5:
61:c1:e4:49:15:72:6c:e4:aa:11:0a:91:ac:21:ea:3b:77:46:
12:22:c3:42
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:00 2023 by rpki-client on console-fra.rpki-client.org