Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5FnorKVtfLK_t3mVMulqXZe6nTU.roa
File: 5FnorKVtfLK_t3mVMulqXZe6nTU.roa (raw, json)
Hash identifier: AeGBRvSekl++IxCP2Xztbshy94TCq0wzX/PLewsJ8GI=
Subject key identifier: E4:59:E8:AC:A5:6D:7C:B2:BF:B7:79:95:32:E9:6A:5D:97:BA:9D:35
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 05488E60
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5FnorKVtfLK_t3mVMulqXZe6nTU.roa
Signing time: Wed 25 May 2022 15:58:13 +0000
ROA not before: Wed 25 May 2022 15:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208121
IP address blocks: 139.28.84.0/23 maxlen: 23
139.28.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88641120 (0x5488e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 25 15:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e459e8aca56d7cb2bfb7799532e96a5d97ba9d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c8:b1:ba:7e:19:04:d5:9f:20:11:16:b6:a9:
1f:43:d9:86:00:69:c5:a0:91:85:1b:c4:c7:39:2f:
be:7c:d5:1e:cd:bd:d9:a4:ea:e9:79:a8:0c:39:7e:
3a:04:51:29:1c:98:63:f8:30:83:9c:9d:54:d7:bd:
1d:f4:1a:1a:d8:ae:35:45:5d:02:5e:97:02:90:cc:
27:99:7c:d9:cf:98:65:fd:ca:dd:a5:9f:af:e4:e3:
1c:31:f3:57:95:5c:0a:47:af:30:30:47:9e:ec:2c:
1d:1b:36:a2:ee:e2:c4:bc:db:ea:24:22:fa:0b:e3:
a6:7c:bd:a6:ed:a1:e4:2a:a8:48:1d:6f:48:f2:8c:
d3:fc:f4:de:53:be:cf:7d:a8:a1:10:34:c3:05:8e:
40:7d:e7:12:81:f9:66:cd:37:c2:48:ba:63:4c:bd:
21:b7:d0:28:14:4a:b4:f4:b9:95:64:a4:c6:70:8f:
77:81:cd:fc:6e:a8:d4:44:30:73:5c:93:c4:ce:0c:
ab:55:df:e8:3a:08:2b:f5:bd:38:e9:aa:43:0a:ba:
bf:1a:b9:a7:c4:8f:96:98:85:f0:31:ce:30:df:12:
a9:10:db:ff:37:78:15:18:e0:14:12:3b:1e:52:a5:
19:c2:d6:33:2c:94:52:4a:31:16:4c:c0:77:6a:e2:
ac:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:59:E8:AC:A5:6D:7C:B2:BF:B7:79:95:32:E9:6A:5D:97:BA:9D:35
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5FnorKVtfLK_t3mVMulqXZe6nTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.84.0/22
Signature Algorithm: sha256WithRSAEncryption
33:c2:1e:4f:9c:3a:ab:78:9e:27:af:6c:8b:ab:d8:93:58:ed:
b9:7c:f5:3a:01:fe:39:4a:7f:b6:79:40:84:2e:c6:fd:a0:f7:
fb:12:f4:10:be:e4:79:2a:6b:d5:c7:a6:30:c0:29:4f:48:b0:
3b:30:41:07:35:36:a2:87:66:ec:5e:32:60:99:1e:02:fc:8e:
9f:55:b5:6f:48:61:63:1d:26:e7:d3:35:fe:34:fc:c0:f4:3e:
2f:70:37:b8:a4:28:19:a4:8b:af:8e:97:5c:49:84:12:3b:4f:
1a:24:f0:c5:bc:cb:32:26:3d:9e:02:7c:6e:80:d6:bc:6e:1d:
37:ce:f6:55:73:13:60:91:10:46:1b:54:fd:dc:f9:83:37:08:
75:2a:7f:49:2b:26:f1:af:0c:12:32:6f:15:9c:1f:7f:79:24:
bd:bb:7a:a4:1f:0b:84:4d:16:c1:83:56:0d:1d:92:fc:51:4c:
03:ce:e2:b3:3a:56:b3:73:05:e1:35:7a:f3:15:fd:58:5b:48:
37:21:b9:fd:7e:99:9d:b9:e3:df:22:9e:3e:66:f2:dd:0b:5c:
31:ef:72:c0:f3:47:0c:da:6a:e4:ab:36:70:93:c8:22:1d:cf:
16:67:81:e6:0a:e0:b3:96:94:05:e9:4f:df:c2:b9:c6:50:e3:
7d:f7:63:3e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBUiOYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTM0YzQ5ZmNmYThhNDUwNDFkOTVlZDRkOGQ0ZmM2OWM3MjdhNDY3MB4XDTIyMDUy
NTE1NTgxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTQ1OWU4YWNhNTZk
N2NiMmJmYjc3OTk1MzJlOTZhNWQ5N2JhOWQzNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/Isbp+GQTVnyARFrapH0PZhgBpxaCRhRvExzkvvnzVHs29
2aTq6XmoDDl+OgRRKRyYY/gwg5ydVNe9HfQaGtiuNUVdAl6XApDMJ5l82c+YZf3K
3aWfr+TjHDHzV5VcCkevMDBHnuwsHRs2ou7ixLzb6iQi+gvjpny9pu2h5CqoSB1v
SPKM0/z03lO+z32ooRA0wwWOQH3nEoH5Zs03wki6Y0y9IbfQKBRKtPS5lWSkxnCP
d4HN/G6o1EQwc1yTxM4Mq1Xf6DoIK/W9OOmqQwq6vxq5p8SPlpiF8DHOMN8SqRDb
/zd4FRjgFBI7HlKlGcLWMyyUUkoxFkzAd2rirCUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTkWeispW18sr+3eZUy6Wpdl7qdNTAfBgNVHSMEGDAWgBQFNMSfz6ikUEHZ
XtTY1PxpxyekZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JUVEVuOC1vcEZCQjJWN1UyTlQ4YWNjbnBHYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvMGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8x
LzVGbm9yS1Z0ZkxLX3QzbVZNdWxxWFplNm5UVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
MGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8xL0JUVEVuOC1vcEZC
QjJWN1UyTlQ4YWNjbnBHYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAoscVDANBgkqhkiG9w0BAQsFAAOC
AQEAM8IeT5w6q3ieJ69si6vYk1jtuXz1OgH+OUp/tnlAhC7G/aD3+xL0EL7keSpr
1cemMMApT0iwOzBBBzU2oodm7F4yYJkeAvyOn1W1b0hhYx0m59M1/jT8wPQ+L3A3
uKQoGaSLr46XXEmEEjtPGiTwxbzLMiY9ngJ8boDWvG4dN872VXMTYJEQRhtU/dz5
gzcIdSp/SSsm8a8MEjJvFZwff3kkvbt6pB8LhE0WwYNWDR2S/FFMA87iszpWs3MF
4TV68xX9WFtINyG5/X6Znbnj3yKePmby3QtcMe9ywPNHDNpq5Ks2cJPIIh3PFmeB
5grgs5aUBelP38K5xlDjffdjPg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org