Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/i6VNx6Va23Ia9UmpoynrgcIEBGs.roa
File: i6VNx6Va23Ia9UmpoynrgcIEBGs.roa (raw, json)
Hash identifier: KxrBRqvgf09T6QL8ula1Zd1/q+74p/fKOVA/k6KzA50=
Subject key identifier: 8B:A5:4D:C7:A5:5A:DB:72:1A:F5:49:A9:A3:29:EB:81:C2:04:04:6B
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E5B934
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/i6VNx6Va23Ia9UmpoynrgcIEBGs.roa
Signing time: Sat 01 Jan 2022 13:04:11 +0000
ROA not before: Sat 01 Jan 2022 13:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208121
IP address blocks: 139.28.84.0/23 maxlen: 23
139.28.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65386804 (0x3e5b934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ba54dc7a55adb721af549a9a329eb81c204046b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:45:b2:38:74:b9:d6:55:3a:f7:3f:77:0d:e5:
92:fc:3d:b7:87:c8:0e:7e:f2:cb:96:b3:7b:f9:60:
d5:8b:0f:5e:6c:a5:cc:71:7a:61:f9:3d:20:41:0a:
79:aa:8a:02:af:12:1a:12:fc:0b:a8:1f:17:7d:ff:
38:a1:df:61:e8:c5:dc:bc:14:08:ae:e4:34:70:bb:
c7:a0:b5:f8:39:7d:25:47:cb:93:65:98:31:9f:85:
41:c0:76:bd:8c:e4:fc:3f:a1:da:e0:17:1f:19:ca:
3f:01:f3:d3:70:c2:32:55:09:01:63:bb:02:b7:7e:
51:5d:ea:c3:06:1d:11:25:39:eb:a2:c6:f9:10:c3:
bb:61:f6:79:d6:2b:dc:40:e6:2c:d3:14:8b:f0:11:
d8:be:5f:f8:0b:d5:25:29:bd:d6:5b:5b:34:a4:14:
a2:95:e6:31:5e:31:29:6a:e6:98:78:d8:ce:12:1a:
c4:5a:ba:77:2c:e4:dc:ac:59:5a:8a:6b:f9:8a:78:
83:92:f3:ca:8f:af:1f:a6:d4:ab:bd:d3:4b:04:3f:
d4:15:ff:e6:9a:be:b1:6c:79:36:28:7a:1c:0b:fe:
f1:a4:53:ba:00:94:ea:c2:19:b8:60:e9:55:b7:37:
7c:07:ed:75:e3:a5:be:6d:d3:7c:ba:2d:2d:d1:f3:
60:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A5:4D:C7:A5:5A:DB:72:1A:F5:49:A9:A3:29:EB:81:C2:04:04:6B
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/i6VNx6Va23Ia9UmpoynrgcIEBGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.84.0/22
Signature Algorithm: sha256WithRSAEncryption
28:b5:20:bf:13:a1:68:47:ba:b3:50:93:ea:b4:3a:37:57:db:
9e:b6:58:82:12:9c:44:df:e8:45:1b:24:57:b3:c3:6a:7b:dd:
51:34:b7:65:34:87:3e:8d:ce:22:eb:34:ea:65:12:02:88:e4:
19:ba:73:7a:55:58:d4:92:33:d3:c7:72:a5:66:82:bf:a5:9e:
d2:0e:b3:fc:68:44:19:1f:4f:d0:88:72:77:ed:d2:c8:56:82:
1d:3b:b1:88:e0:c7:02:72:c7:27:97:5f:ec:cd:7b:e1:12:10:
81:69:42:ee:26:5c:41:de:f8:cb:4b:30:93:4d:79:60:58:ab:
4b:71:c6:bb:6f:ec:30:a8:00:a4:9a:d0:ec:66:06:66:bf:e8:
ab:1d:50:6c:9a:a3:2e:68:3c:5d:21:9f:0e:29:32:64:1c:36:
30:81:1c:e0:d4:07:19:06:30:0f:52:6c:d1:52:8a:f4:3c:f2:
4f:bc:8f:94:44:44:8a:68:83:b0:cc:37:2f:f7:bb:85:a4:02:
1c:ba:58:b2:2d:79:c7:9f:93:28:4e:88:d3:6c:00:b9:12:8c:
96:e0:48:f8:ea:88:0e:31:35:b5:d1:42:02:bd:92:af:9d:f2:
53:3c:1f:25:81:a9:84:25:9d:7b:14:53:a3:bb:84:11:24:8f:
2a:60:3a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org