Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/8b93a4-868d-4f30-b44f-fce3d590c6db/1/b7TVEVFAIbWlPLv7w1DOw08OLKg.roa
File: b7TVEVFAIbWlPLv7w1DOw08OLKg.roa (raw, json)
Hash identifier: grvb6IcGCRnt5dZeXADLz5DpZpFDMcdQ4s9LPQe4vPo=
Subject key identifier: 6F:B4:D5:11:51:40:21:B5:A5:3C:BB:FB:C3:50:CE:C3:4F:0E:2C:A8
Certificate issuer: /CN=0ff8e93f3472ea6be58f3feb74495470095a177d
Certificate serial: 092E0373
Authority key identifier: 0F:F8:E9:3F:34:72:EA:6B:E5:8F:3F:EB:74:49:54:70:09:5A:17:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_jpPzRy6mvljz_rdElUcAlaF30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/8b93a4-868d-4f30-b44f-fce3d590c6db/1/b7TVEVFAIbWlPLv7w1DOw08OLKg.roa
Signing time: Sat 01 Jan 2022 06:59:34 +0000
ROA not before: Sat 01 Jan 2022 06:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198930
IP address blocks: 139.28.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154010483 (0x92e0373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff8e93f3472ea6be58f3feb74495470095a177d
Validity
Not Before: Jan 1 06:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fb4d511514021b5a53cbbfbc350cec34f0e2ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b2:8c:2d:c1:ba:43:e4:b1:f9:e4:bb:21:e8:
ac:ef:8b:96:bb:96:d0:f0:fb:ce:6f:7b:a0:83:5c:
b5:8b:e8:a3:7d:c0:2c:9c:fe:e7:7e:e9:e8:38:cb:
cb:50:b2:d3:63:37:48:c5:e9:a1:25:2a:33:4d:02:
78:b6:20:20:a2:0a:d6:68:7f:87:3f:84:66:16:c2:
2c:9a:c8:21:e7:09:46:92:b8:5c:4c:b6:4d:62:e4:
a3:b8:b0:e4:3b:c6:a9:9a:de:c4:88:62:66:ad:b6:
09:c1:b2:14:25:28:fb:06:47:9f:f1:a8:be:c9:4f:
60:54:24:c2:8f:53:01:3c:5d:b4:ec:0f:e8:0c:40:
d2:07:b8:e0:37:60:f2:05:d8:fd:a0:70:d2:3e:0b:
ef:62:29:14:a1:0c:9b:3d:b1:36:48:a3:d0:d6:f7:
db:bb:05:ca:32:48:9d:36:d2:37:00:47:f6:6c:97:
af:de:ae:e4:24:10:e6:ed:b1:d3:14:4a:ee:3c:76:
9f:1d:44:0a:5b:77:96:e6:87:dc:65:87:5f:0c:b2:
a6:a3:5e:e4:d0:50:8e:dd:68:1b:5c:02:c1:89:96:
a5:33:ae:8d:ce:d6:90:e1:7d:90:8e:87:a8:21:48:
4b:1a:f7:21:c3:b1:bb:68:82:ea:9b:5a:b9:56:61:
19:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B4:D5:11:51:40:21:B5:A5:3C:BB:FB:C3:50:CE:C3:4F:0E:2C:A8
X509v3 Authority Key Identifier:
keyid:0F:F8:E9:3F:34:72:EA:6B:E5:8F:3F:EB:74:49:54:70:09:5A:17:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_jpPzRy6mvljz_rdElUcAlaF30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/8b93a4-868d-4f30-b44f-fce3d590c6db/1/b7TVEVFAIbWlPLv7w1DOw08OLKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/8b93a4-868d-4f30-b44f-fce3d590c6db/1/D_jpPzRy6mvljz_rdElUcAlaF30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.152.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:53:6d:b4:0e:c2:5e:7b:2b:ab:d1:a0:a3:f3:04:f5:67:39:
81:a4:3c:06:37:90:42:d0:35:fc:1e:9b:dd:b8:c9:f6:9f:3e:
bb:59:4b:88:03:a4:95:89:3b:35:48:a0:83:68:f2:00:20:48:
0a:b5:93:60:9d:0b:66:2e:bd:9d:df:d2:98:dc:20:4b:9e:77:
0a:c5:fe:fd:29:50:c9:2a:3d:27:72:04:dc:ca:02:51:dd:cb:
5e:79:e3:cf:e2:ca:3f:ea:bf:23:80:60:50:0e:5c:7b:10:0f:
a0:0a:a1:bf:26:8d:a5:e2:0b:00:a1:11:7b:a6:9d:c4:23:54:
bf:13:f3:ba:7f:d1:22:a6:5f:bb:77:fd:c4:44:39:df:4b:62:
12:58:dd:e2:e0:d2:25:00:6e:ec:71:aa:0f:ae:50:d4:62:94:
49:53:2e:05:e9:96:63:b7:2e:5f:00:9e:8d:16:b1:eb:b6:1f:
fd:f6:02:34:a0:f4:23:32:08:9c:e7:4d:57:10:a6:0e:ef:ff:
71:db:c3:9b:fa:5d:f4:1c:8f:b0:04:95:81:bd:23:29:e0:d3:
e1:ce:f8:2f:7d:4b:d8:f7:68:d8:40:91:26:e4:c4:7f:93:f8:
33:e2:b3:9f:e8:44:f7:e8:b7:f8:09:5e:f8:91:54:c8:bc:31:
91:b0:89:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:23 2024 by rpki-client on console-ams.rpki-client.org