Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/gX_J5DGdPTcxEqEVADbrNxXMGQc.roa
File: gX_J5DGdPTcxEqEVADbrNxXMGQc.roa (raw, json)
Hash identifier: hp6Yo4v73L+c4+tWDMWet80aeXoh4bLHQXXQRogimrI=
Subject key identifier: 81:7F:C9:E4:31:9D:3D:37:31:12:A1:15:00:36:EB:37:15:CC:19:07
Certificate issuer: /CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Certificate serial: 01842D19B8BE65223003E6F8CFF55C22CFD8
Authority key identifier: FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/gX_J5DGdPTcxEqEVADbrNxXMGQc.roa
Signing time: Mon 31 Oct 2022 08:12:51 +0000
ROA not before: Mon 31 Oct 2022 08:12:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57706
IP address blocks: 2.58.58.0/24 maxlen: 24
2a09:e240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:19:b8:be:65:22:30:03:e6:f8:cf:f5:5c:22:cf:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb744006eac3084bf88f128349b0e733bb3d79e3
Validity
Not Before: Oct 31 08:12:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=817fc9e4319d3d373112a1150036eb3715cc1907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:78:e9:4a:26:31:0a:cd:83:eb:2f:6b:53:d1:
17:ad:38:20:7d:0c:76:06:81:dc:34:2a:12:2a:51:
1c:b5:d0:60:c8:e0:5f:5d:ca:25:ae:c5:78:1f:d2:
53:69:6c:db:b0:c5:d3:75:96:5a:e1:13:62:4d:6a:
70:dc:27:72:b0:29:bf:c2:c3:e5:6c:55:d7:6d:db:
01:27:9a:8f:b7:4e:59:01:bd:b5:52:f2:64:36:56:
7c:f5:ed:2d:59:8f:47:e7:b0:ac:a3:68:04:01:db:
59:17:4e:e8:3e:8b:ef:c9:fb:d3:f0:07:39:38:02:
e1:27:77:6f:86:e7:e1:11:ce:6a:8a:7c:af:db:78:
94:59:ab:bb:7c:e5:d8:bd:b6:38:71:9a:42:c3:a2:
74:e8:71:36:ed:91:54:26:c5:df:00:ff:29:d2:46:
96:04:61:3a:f6:03:cd:e8:44:c1:e6:7f:ca:39:cb:
61:4b:7a:a0:f6:8a:d1:f6:21:0c:a5:82:83:ba:a2:
fd:1f:dc:3e:1c:b3:66:e1:43:dd:59:45:ca:4e:d0:
45:10:a7:8b:65:db:46:ac:72:4c:a3:54:a5:d1:60:
56:9a:b2:b5:38:37:57:67:1e:d0:7b:67:40:55:23:
e1:5b:db:e9:6a:7e:ed:f6:8a:c9:b3:49:6f:a7:66:
51:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7F:C9:E4:31:9D:3D:37:31:12:A1:15:00:36:EB:37:15:CC:19:07
X509v3 Authority Key Identifier:
keyid:FB:74:40:06:EA:C3:08:4B:F8:8F:12:83:49:B0:E7:33:BB:3D:79:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3RABurDCEv4jxKDSbDnM7s9eeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/gX_J5DGdPTcxEqEVADbrNxXMGQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/17836a-d678-41ca-8fb2-5eb7bef9a7a8/1/1-3RABurDCEv4jxKDSbDnM7s9eeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.58.0/24
IPv6:
2a09:e240::/48
Signature Algorithm: sha256WithRSAEncryption
b1:ff:d2:8f:92:d2:e4:a8:58:e1:53:16:71:13:27:22:6d:81:
f4:2b:1c:77:35:52:6c:e8:3e:b4:7d:d3:98:8d:88:e8:fb:90:
1c:28:db:85:27:74:11:36:b7:b2:59:30:a1:0b:25:31:14:f6:
7d:d3:fa:fb:6c:2e:62:72:17:d2:7d:cc:04:30:45:73:28:24:
82:b8:0c:f2:88:37:23:9d:13:79:e1:cf:35:cc:68:b4:df:6e:
9a:b7:1b:7a:66:d3:d6:42:00:b2:48:a7:b2:2e:03:96:17:73:
ac:e9:fd:c2:cb:30:d3:aa:d6:ce:ad:b9:37:3e:f8:bd:58:77:
48:9d:c5:62:00:51:f8:7c:a0:eb:87:b8:2c:d6:4a:ec:e7:3f:
fd:82:78:4e:84:41:5c:25:af:ab:5a:fc:ec:8d:d4:35:e4:64:
67:c9:29:41:a2:e9:dc:9f:7f:5a:a4:d9:2d:63:b2:09:e6:2b:
8f:dd:cd:54:d7:58:a5:9c:6b:f8:e5:89:75:2a:24:b7:48:6c:
3c:62:9e:19:48:df:f0:dd:78:64:c3:29:55:c5:16:03:bb:f4:
89:9a:6d:d6:3d:e7:1b:da:a0:27:7e:d6:25:e7:4f:ab:bc:ea:
ca:a3:fc:3f:44:c9:ba:84:25:54:e8:fa:95:f7:8a:6c:ef:b7:
9f:94:1f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:50 2023 by rpki-client on console-ams.rpki-client.org