Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/X7HlNkEMAcSf6RdERpxDLPzux0E.roa
File: X7HlNkEMAcSf6RdERpxDLPzux0E.roa (raw, json)
Hash identifier: ndaMuxuV0gxaEuwsyjvXY/7b8L4GbpG0EM/5VxPv6I4=
Subject key identifier: 5F:B1:E5:36:41:0C:01:C4:9F:E9:17:44:46:9C:43:2C:FC:EE:C7:41
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01849B9CD1610791A096EF7AEED787C7FCF1
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/X7HlNkEMAcSf6RdERpxDLPzux0E.roa
Signing time: Mon 21 Nov 2022 19:14:16 +0000
ROA not before: Mon 21 Nov 2022 19:14:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 269822
IP address blocks: 139.28.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:9c:d1:61:07:91:a0:96:ef:7a:ee:d7:87:c7:fc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Nov 21 19:14:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fb1e536410c01c49fe91744469c432cfceec741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f0:56:9e:c3:5d:33:d8:3d:1d:07:6d:64:09:
9b:2c:4b:04:49:bf:c3:fb:d6:95:81:d5:30:ae:dd:
a1:84:28:79:40:a6:3c:1b:92:8e:88:34:83:99:11:
b9:34:dc:ad:c7:ab:40:65:7d:0c:52:b9:7e:eb:a3:
9d:d0:86:c8:54:6d:fc:ed:18:3c:fd:2e:98:ae:9a:
bc:76:b2:bc:a4:ff:34:d9:37:00:f4:55:76:95:25:
82:b6:18:47:0d:6a:d7:93:b8:f9:0d:53:ec:7a:0b:
e9:c8:26:40:9b:b3:6b:9d:da:bd:91:af:02:47:98:
1a:d1:16:2d:6c:3e:66:e4:97:9a:bc:2f:6b:8f:ce:
13:08:c5:ae:9d:60:93:3b:54:58:43:a9:24:72:c2:
3f:93:52:57:6f:73:75:33:1a:a6:ad:4e:ab:23:c2:
62:7c:72:70:cf:5b:c7:ff:1f:b0:04:92:12:8d:15:
e6:2f:0d:f3:10:66:8f:49:19:b8:a4:d9:67:8a:75:
46:7e:2e:ae:fc:50:33:ea:50:0c:19:97:05:4c:d3:
e7:de:97:3b:2d:5a:ef:99:1f:af:4f:11:9e:e6:36:
59:e2:ff:91:9a:28:9f:90:f9:ca:fc:92:fc:8d:92:
f4:82:1a:e4:b9:cd:5f:04:e7:9b:fa:eb:4c:75:cf:
55:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B1:E5:36:41:0C:01:C4:9F:E9:17:44:46:9C:43:2C:FC:EE:C7:41
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/X7HlNkEMAcSf6RdERpxDLPzux0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.84.0/22
Signature Algorithm: sha256WithRSAEncryption
33:aa:3d:45:85:4f:38:06:cc:4a:a6:1c:be:15:42:07:2f:bb:
78:1a:1c:67:2a:97:59:14:7c:4e:8c:a0:12:5a:5d:05:f0:fd:
3d:2a:85:06:98:58:59:dd:d4:14:3c:98:f6:d2:68:4a:b5:6d:
1a:88:77:5a:bb:cc:22:00:63:62:8a:3f:5a:88:c7:48:be:16:
49:c2:b0:4d:b0:59:44:9b:ff:a8:0b:83:35:50:ec:14:a5:49:
af:1e:93:93:b4:31:44:da:f4:e0:98:52:bf:54:73:47:5d:9d:
17:f5:9a:a8:1a:df:88:73:6b:47:87:3c:a8:63:19:07:5b:24:
9d:e1:6d:c5:3d:c4:36:9f:22:24:7a:57:76:73:d5:b8:24:82:
8e:b4:cd:8f:e6:e2:3b:ab:b4:d5:96:3a:83:30:fa:85:20:18:
16:88:76:9f:41:f9:43:da:51:1e:f8:d0:79:bc:ee:d9:8c:c7:
cc:b1:69:89:f8:7f:52:00:05:72:f7:36:04:b3:12:d4:9f:1b:
73:e9:b1:a1:ac:72:6e:89:43:dd:f9:bb:9e:19:95:e5:3a:bd:
32:e2:25:0b:49:94:d0:83:0d:59:ed:13:06:5f:b0:05:da:3d:
e9:bc:12:44:a8:87:f3:9a:29:fa:43:26:86:14:4e:e1:1c:5d:
7a:4f:71:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org