Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/fTBHQIJFvPDjAYFTzvlCZCCbjFc.roa
File: fTBHQIJFvPDjAYFTzvlCZCCbjFc.roa (raw, json)
Hash identifier: TQmvP5JkhXaPub+XbVILNMauC9zeVAaDVyHMb1JFPhc=
Subject key identifier: 7D:30:47:40:82:45:BC:F0:E3:01:81:53:CE:F9:42:64:20:9B:8C:57
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 351305EF
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/fTBHQIJFvPDjAYFTzvlCZCCbjFc.roa
Signing time: Sat 01 Jan 2022 05:58:42 +0000
ROA not before: Sat 01 Jan 2022 05:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61191
IP address blocks: 5.56.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890439151 (0x351305ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 1 05:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d3047408245bcf0e3018153cef94264209b8c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:ed:17:c7:d3:e6:83:a4:d1:85:d0:4a:8f:
c4:4a:26:b2:a6:37:12:a8:91:78:9e:d7:c8:e4:17:
2c:9b:9e:15:9f:59:04:57:74:a6:f3:91:60:a7:4e:
73:96:f5:01:33:9f:08:ad:aa:63:4e:0e:46:84:28:
d0:d0:76:db:e1:82:83:66:d0:4f:7e:6f:da:2a:ac:
f6:f5:57:5a:21:2b:ce:e8:a1:06:44:e9:8f:06:8c:
0c:95:18:1e:5e:d3:5c:23:af:16:d0:78:12:ca:62:
2c:56:28:12:64:72:b1:5a:93:b4:19:1d:df:84:f1:
95:ca:f0:95:2c:b7:0b:3f:b6:1e:7c:e0:d5:a9:2b:
cc:3b:73:25:23:9a:87:85:a0:c8:6e:a9:f9:a0:67:
2a:e7:a0:1b:ef:eb:a9:2e:73:c1:a6:cf:ff:8a:b1:
1f:8d:f6:38:8f:77:d5:2c:48:3d:55:e5:45:7b:aa:
5d:a7:e9:31:5d:c9:af:e0:f9:4c:7e:97:85:ea:66:
c0:bd:40:0a:25:51:43:af:6c:c9:1f:bc:7b:93:bc:
81:7a:51:56:ed:45:ed:48:c8:86:d5:eb:f9:23:cc:
9a:de:95:6c:4e:36:b8:41:09:74:b8:83:c4:17:0e:
a2:03:82:96:4d:92:ab:0f:4f:4c:02:2b:ac:ea:ca:
60:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:30:47:40:82:45:BC:F0:E3:01:81:53:CE:F9:42:64:20:9B:8C:57
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/fTBHQIJFvPDjAYFTzvlCZCCbjFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:49:a4:97:03:df:e7:85:d7:28:a0:56:11:4c:9d:8c:72:20:
f7:63:45:c6:15:a8:79:eb:4e:2f:d7:50:40:72:20:58:7a:fe:
6e:b4:a3:40:45:d2:73:73:56:7a:d9:99:11:40:ab:c5:3b:3f:
ea:56:50:14:6e:ed:2a:e0:40:89:67:7e:7e:bc:90:33:3b:43:
72:f7:37:16:d0:f7:89:c3:16:b4:bd:73:45:db:e6:29:a0:e2:
c2:78:6a:bb:47:a5:f5:3d:69:54:f4:20:22:d2:29:0f:bd:35:
d6:f2:08:6f:f8:51:db:37:d4:b6:4f:c3:30:d7:23:95:e8:45:
39:d9:1f:a9:a4:1a:53:c8:06:37:b4:45:4f:8e:e3:24:e5:38:
49:a3:09:23:13:a9:18:28:a4:07:39:00:38:3b:b4:96:57:80:
4c:1a:b3:1b:4d:a8:e2:89:6c:2d:61:d3:e4:ca:f6:ef:4d:ce:
bd:5e:bc:1d:6b:55:c9:72:23:7f:5d:bb:64:67:7d:37:b8:83:
5e:b4:9e:40:d0:04:eb:b8:fc:2a:78:ca:ad:0a:f4:03:98:21:
f7:1a:7c:68:06:27:93:e0:e2:00:9a:a2:a9:09:87:03:a8:bc:
77:07:7b:98:ff:55:3c:62:67:7d:33:28:74:ba:df:48:dc:f8:
d2:e9:57:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENRMF7zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MmJmNjQ2NGNlNmUxOWE0ZGNmOGEzMmIyN2EyZjFjYmUxNTUxMDU1MB4XDTIyMDEw
MTA1NTg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2QzMDQ3NDA4MjQ1
YmNmMGUzMDE4MTUzY2VmOTQyNjQyMDliOGM1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVL7RfH0+aDpNGF0EqPxEomsqY3EqiReJ7XyOQXLJueFZ9Z
BFd0pvORYKdOc5b1ATOfCK2qY04ORoQo0NB22+GCg2bQT35v2iqs9vVXWiErzuih
BkTpjwaMDJUYHl7TXCOvFtB4EspiLFYoEmRysVqTtBkd34TxlcrwlSy3Cz+2Hnzg
1akrzDtzJSOah4WgyG6p+aBnKuegG+/rqS5zwabP/4qxH432OI931SxIPVXlRXuq
XafpMV3Jr+D5TH6XhepmwL1ACiVRQ69syR+8e5O8gXpRVu1F7UjIhtXr+SPMmt6V
bE42uEEJdLiDxBcOogOClk2Sqw9PTAIrrOrKYEkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR9MEdAgkW88OMBgVPO+UJkIJuMVzAfBgNVHSMEGDAWgBSSv2Rkzm4ZpNz4
oysnovHL4VUQVTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tyOWtaTTV1R2FUYy1LTXJKNkx4eS1GVkVGVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvZjFkNjk3LWJjOGUtNGYxNC04YjM3LWI1M2UzMGUxNDEyYS8x
L2ZUQkhRSUpGdlBEakFZRlR6dmxDWkNDYmpGYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
ZjFkNjk3LWJjOGUtNGYxNC04YjM3LWI1M2UzMGUxNDEyYS8xL2tyOWtaTTV1R2FU
Yy1LTXJKNkx4eS1GVkVGVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAU4hjANBgkqhkiG9w0BAQsFAAOC
AQEALkmklwPf54XXKKBWEUydjHIg92NFxhWoeetOL9dQQHIgWHr+brSjQEXSc3NW
etmZEUCrxTs/6lZQFG7tKuBAiWd+fryQMztDcvc3FtD3icMWtL1zRdvmKaDiwnhq
u0el9T1pVPQgItIpD7011vIIb/hR2zfUtk/DMNcjlehFOdkfqaQaU8gGN7RFT47j
JOU4SaMJIxOpGCikBzkAODu0lleATBqzG02o4olsLWHT5Mr2703OvV68HWtVyXIj
f127ZGd9N7iDXrSeQNAE67j8KnjKrQr0A5gh9xp8aAYnk+DiAJqiqQmHA6i8dwd7
mP9VPGJnfTModLrfSNz40ulXUw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-ams.rpki-client.org