Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/0697c0-98ae-44ab-b4ab-b615c5c60652/1/fGGyvNqLHqNh653cpHqGzzSOldU.roa
File: fGGyvNqLHqNh653cpHqGzzSOldU.roa (raw, json)
Hash identifier: xXkVGn8PplLD9QjmeQFq+ndHrSzaTLtC7EVwkAMc4uw=
Subject key identifier: 7C:61:B2:BC:DA:8B:1E:A3:61:EB:9D:DC:A4:7A:86:CF:34:8E:95:D5
Certificate issuer: /CN=96dcebaa8cd32dc4bf1d66d0873a1b6f3d73498f
Certificate serial: 0986EC37
Authority key identifier: 96:DC:EB:AA:8C:D3:2D:C4:BF:1D:66:D0:87:3A:1B:6F:3D:73:49:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ltzrqozTLcS_HWbQhzobbz1zSY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/0697c0-98ae-44ab-b4ab-b615c5c60652/1/fGGyvNqLHqNh653cpHqGzzSOldU.roa
Signing time: Sat 01 Jan 2022 02:01:13 +0000
ROA not before: Sat 01 Jan 2022 02:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209621
IP address blocks: 139.28.116.0/22 maxlen: 22
2a07:5fc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159837239 (0x986ec37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96dcebaa8cd32dc4bf1d66d0873a1b6f3d73498f
Validity
Not Before: Jan 1 02:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c61b2bcda8b1ea361eb9ddca47a86cf348e95d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:02:a5:66:f4:45:76:b5:bd:d8:c3:d3:1c:
7a:1d:f1:e3:26:2e:52:05:7b:97:4c:a4:17:d4:c4:
dd:00:41:56:48:f9:a5:85:3f:87:d4:e3:16:d0:d7:
4c:31:7d:5c:47:29:eb:ca:00:ac:32:fd:5a:da:32:
5e:92:d1:6d:ba:e5:2a:ab:b6:95:78:b6:c9:bf:d7:
6c:67:c5:e9:87:b8:04:ec:d3:c2:fe:2d:ce:61:90:
7a:75:75:30:31:8b:cf:e6:38:d5:45:c9:e7:9d:bb:
64:aa:cd:7c:7d:04:f5:7a:2d:72:ea:eb:d8:d2:c6:
f5:c3:47:12:0f:1e:5c:96:05:8a:4e:d2:fa:4a:a6:
cc:6d:0d:01:91:60:3b:17:a5:83:c3:02:b1:04:6e:
2f:2f:16:1a:f6:9f:97:e2:ff:8c:d6:bf:46:48:c2:
0f:95:6d:3a:a5:7c:e2:1b:13:bc:b6:84:6c:00:de:
39:b0:69:64:83:60:ac:ea:ad:c1:28:c1:80:e0:dd:
cd:56:04:af:2f:b4:4a:fe:51:df:18:fa:ec:63:f0:
c4:5f:a5:1b:9f:bf:f2:34:15:a9:fd:4f:f1:64:2e:
b6:4e:a8:c8:00:09:a4:f0:f2:b0:98:71:4c:18:0d:
7f:15:72:27:5c:5a:a7:2e:54:97:96:a7:1e:0b:6a:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:61:B2:BC:DA:8B:1E:A3:61:EB:9D:DC:A4:7A:86:CF:34:8E:95:D5
X509v3 Authority Key Identifier:
keyid:96:DC:EB:AA:8C:D3:2D:C4:BF:1D:66:D0:87:3A:1B:6F:3D:73:49:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ltzrqozTLcS_HWbQhzobbz1zSY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0697c0-98ae-44ab-b4ab-b615c5c60652/1/fGGyvNqLHqNh653cpHqGzzSOldU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0697c0-98ae-44ab-b4ab-b615c5c60652/1/ltzrqozTLcS_HWbQhzobbz1zSY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.116.0/22
IPv6:
2a07:5fc0::/29
Signature Algorithm: sha256WithRSAEncryption
73:db:8a:56:44:b1:df:68:04:a4:a3:a4:27:91:16:bd:38:00:
ec:a3:30:34:95:2c:7e:99:2c:03:8f:fa:94:1e:33:ff:44:26:
f3:7c:da:e8:10:de:34:61:d1:9c:91:cc:70:0a:a5:14:2c:1c:
1c:e8:1f:7b:30:42:ad:bc:3e:34:6a:fb:db:eb:00:74:7d:15:
23:0a:cf:0c:ce:30:d9:ae:c1:4b:c0:97:af:57:df:c3:9e:da:
ca:a1:c9:0a:0e:57:63:75:fc:98:16:53:5c:b5:17:a3:51:f7:
2d:c2:d2:51:e6:bd:bd:83:d8:dd:cd:00:d8:fb:f9:29:b5:f4:
ed:89:3d:1e:31:3c:28:24:2d:c7:02:25:76:e5:a7:ff:68:99:
f1:e7:4e:6a:6a:06:d7:14:12:d2:3e:15:9d:62:67:c1:74:1d:
a7:a5:05:9a:7f:c1:ca:55:50:9c:83:b3:d2:90:57:dc:9e:58:
45:df:11:53:e5:90:2a:a0:4d:86:d8:70:80:0d:eb:23:65:42:
09:4f:60:0a:2a:a4:33:d4:bd:93:4a:f8:63:ef:11:5c:f8:61:
8e:65:f7:f1:99:94:26:42:59:a1:0c:fa:bd:c4:19:5c:ce:78:
72:a5:5c:45:3b:6c:94:27:4b:e5:d9:2b:d4:6c:4d:bb:81:e8:
4b:e8:ea:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org