Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/Ar0aHt6FblszMrtdK32T8DIl3yo.roa
File: Ar0aHt6FblszMrtdK32T8DIl3yo.roa (raw, json)
Hash identifier: qENLbroqnEbMVy3p5s58/5uNifzkRK1cVdnC7IbzTaw=
Subject key identifier: 02:BD:1A:1E:DE:85:6E:5B:33:32:BB:5D:2B:7D:93:F0:32:25:DF:2A
Certificate issuer: /CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Certificate serial: 09123C6F
Authority key identifier: FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/Ar0aHt6FblszMrtdK32T8DIl3yo.roa
Signing time: Sat 01 Jan 2022 11:02:25 +0000
ROA not before: Sat 01 Jan 2022 11:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35133
IP address blocks: 2.58.59.0/24 maxlen: 24
2a09:e240:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152190063 (0x9123c6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Validity
Not Before: Jan 1 11:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02bd1a1ede856e5b3332bb5d2b7d93f03225df2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:7e:7f:73:58:1a:ee:d7:72:db:a8:cb:67:
26:1b:41:36:42:68:85:d4:76:a7:72:6e:a6:24:80:
4c:43:1f:58:80:b1:94:77:d7:3f:bf:e7:c1:68:f2:
a5:4d:82:1e:92:53:0d:43:6d:11:29:12:e0:32:87:
54:53:b9:a0:98:1f:c0:06:57:b7:63:a1:30:3a:51:
ff:57:f4:af:95:44:6a:46:7e:71:c5:3a:77:8f:68:
9f:10:0e:5d:7e:f5:ad:3d:33:3c:36:2c:79:d9:f6:
6e:f6:9b:70:c9:f6:9e:f7:7e:31:5b:b4:ba:22:30:
88:6e:9f:46:bb:f7:b1:8d:d1:b5:71:24:55:4d:ba:
6d:10:76:51:2c:78:cc:78:64:fb:8e:10:fb:83:4c:
ea:18:64:a6:05:88:2f:0f:ad:74:2f:b5:fa:97:fd:
51:5b:d7:a6:32:e6:5f:b8:da:97:4d:cf:47:98:48:
9a:3b:e5:d5:b0:70:51:62:d4:fe:45:60:f2:1b:e4:
f6:b4:3a:d7:7c:12:22:92:22:67:f2:f2:06:46:8d:
03:33:c7:36:eb:ef:16:2f:f8:99:3e:73:5c:c9:e1:
03:36:db:ff:68:3a:99:7e:d1:fc:f6:e5:19:4b:33:
c6:c2:96:df:4a:b7:5c:ae:d0:b3:98:82:01:4f:40:
47:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BD:1A:1E:DE:85:6E:5B:33:32:BB:5D:2B:7D:93:F0:32:25:DF:2A
X509v3 Authority Key Identifier:
keyid:FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/Ar0aHt6FblszMrtdK32T8DIl3yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/1-3RABurDCEv4jxKDSbDnM7s9eeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.59.0/24
IPv6:
2a09:e240:1::/48
Signature Algorithm: sha256WithRSAEncryption
6a:59:60:a7:6f:b1:6d:9d:2b:8a:3e:39:dd:cc:86:b6:cc:a6:
cd:c9:dd:ea:b1:43:d5:ec:78:fa:54:6e:a3:74:55:8c:38:cd:
70:24:e8:34:c5:25:0a:8d:26:00:42:e9:84:50:b0:b3:51:03:
c2:a6:1d:42:a8:a2:9b:ea:a4:85:30:cd:7e:db:da:9b:4b:2b:
49:ef:20:63:f7:78:b2:bf:b5:c7:b2:58:bb:2c:c9:59:1a:b6:
9b:28:38:c3:43:32:fd:fc:c8:e3:b3:e4:60:e6:90:52:60:9f:
1b:aa:24:d0:5d:bb:d8:a3:dd:bd:3d:69:9f:af:52:6c:ef:42:
8c:48:92:c2:80:a4:ee:a5:fa:be:23:71:91:e8:9a:43:ca:97:
77:a7:65:6e:72:91:50:6f:e4:3c:02:36:ad:d0:61:5a:c9:84:
55:aa:b4:a4:ae:71:06:a8:81:c1:61:a7:c2:18:74:8c:ab:d4:
58:d2:e6:3c:92:d6:1a:c7:c5:cd:9c:21:29:2f:15:96:67:c7:
89:0a:8b:ab:33:e8:d9:de:bc:f0:6a:ca:ba:df:0d:a6:8e:ec:
97:7c:23:b6:6f:bf:26:45:42:6d:58:72:a2:03:df:18:0e:01:
1a:f3:c9:38:ee:0a:78:29:dd:1a:7c:3c:8e:50:b2:4a:7e:20:
5c:fa:a1:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:00 2023 by rpki-client on console-fra.rpki-client.org