Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/TBEamdskMLVUjIQn4cthMI9UpZE.roa
File: TBEamdskMLVUjIQn4cthMI9UpZE.roa (raw, json)
Hash identifier: glZvXCbrINRTxGmcZ1xiy16deu+4QaJLo2Qy5VPwdHE=
Subject key identifier: 4C:11:1A:99:DB:24:30:B5:54:8C:84:27:E1:CB:61:30:8F:54:A5:91
Certificate issuer: /CN=93b91eefa6d8046d918e364045604952640bc15d
Certificate serial: 01849EB5B003F3E5CC19858D5F90373B80E5
Authority key identifier: 93:B9:1E:EF:A6:D8:04:6D:91:8E:36:40:45:60:49:52:64:0B:C1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7ke76bYBG2RjjZARWBJUmQLwV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/TBEamdskMLVUjIQn4cthMI9UpZE.roa
Signing time: Tue 22 Nov 2022 09:40:17 +0000
ROA not before: Tue 22 Nov 2022 09:40:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 139.28.157.0/24 maxlen: 24
139.28.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:b5:b0:03:f3:e5:cc:19:85:8d:5f:90:37:3b:80:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b91eefa6d8046d918e364045604952640bc15d
Validity
Not Before: Nov 22 09:40:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c111a99db2430b5548c8427e1cb61308f54a591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:de:17:ff:9f:77:38:c7:5a:2e:c2:33:bd:fb:
82:b8:f9:d1:c7:b0:ca:8e:24:c8:3f:65:41:51:4a:
9e:d2:e1:9a:bd:85:8a:28:28:7a:c1:6d:ea:70:4e:
39:ab:91:5a:f7:f3:a0:cf:d0:3e:90:5a:ec:58:bd:
2d:0c:55:e6:6f:76:e0:ae:66:1b:b7:a4:37:8b:04:
a6:6a:3c:80:2a:4d:05:93:48:d7:68:ff:49:ad:f0:
fa:d6:57:00:bd:06:ac:9f:69:71:1d:0f:67:02:85:
df:9d:84:56:da:02:76:91:f4:cb:cc:a5:66:a0:22:
12:f3:01:d5:97:3c:82:5e:f0:d4:e0:78:e2:d4:4f:
24:26:0f:d2:5e:ac:78:d7:dc:49:9e:37:a4:28:af:
6c:db:df:57:ff:6a:ce:d8:c0:6c:81:37:13:89:04:
95:5d:61:e0:81:48:28:c9:97:29:34:32:d5:26:e7:
95:11:fa:8b:68:1f:34:bd:8e:3b:eb:35:ce:38:46:
e8:3e:96:5d:b2:da:80:1a:32:e0:f4:9c:d5:61:95:
d7:e5:c7:95:1c:bc:95:3f:e8:67:d4:70:41:ab:81:
23:f0:34:f4:89:ae:01:98:c8:c8:81:4e:0f:78:9c:
c0:09:d4:0c:4c:70:3f:bb:11:58:a5:0b:77:5f:b0:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:11:1A:99:DB:24:30:B5:54:8C:84:27:E1:CB:61:30:8F:54:A5:91
X509v3 Authority Key Identifier:
keyid:93:B9:1E:EF:A6:D8:04:6D:91:8E:36:40:45:60:49:52:64:0B:C1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7ke76bYBG2RjjZARWBJUmQLwV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/TBEamdskMLVUjIQn4cthMI9UpZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/babef9-079d-40f4-a211-3586aae13da7/1/k7ke76bYBG2RjjZARWBJUmQLwV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.157.0/24
139.28.159.0/24
Signature Algorithm: sha256WithRSAEncryption
67:84:f2:aa:b4:b9:2d:de:57:fd:be:b8:88:c1:9e:1a:25:d6:
44:84:5f:15:69:ec:d4:70:3c:75:71:a0:f9:d1:eb:a7:42:02:
0c:19:d6:30:4e:19:3f:2b:e1:4d:7b:35:eb:33:9a:15:11:7f:
cb:2c:5f:29:de:a1:d3:8f:ea:13:ed:58:94:8c:a6:a7:5d:ef:
9d:b3:76:e3:1b:bb:49:1e:9c:3a:91:16:48:df:ac:3e:ce:40:
b2:d0:f8:4d:c6:17:a9:7b:27:b2:38:12:55:1b:c7:96:63:44:
48:d8:89:14:bc:76:53:dc:86:07:fd:c8:fb:04:46:ba:bc:44:
2d:31:2a:67:aa:cf:21:aa:95:08:96:36:69:6a:59:fe:94:32:
8b:f4:20:bb:a6:d0:20:85:51:c6:93:4e:58:44:5e:ee:07:4a:
fc:15:1b:db:0a:e0:7f:bd:c2:2b:44:ff:97:75:3f:58:a4:89:
69:99:87:62:9b:ad:ee:92:16:d3:2e:9d:d6:e7:81:45:20:78:
89:d6:10:fc:54:f0:c5:f8:5c:a7:44:90:e7:93:d7:12:5b:16:
06:b3:28:b5:31:f3:86:75:e8:b2:c0:5e:bc:75:d7:ec:8b:d5:
3e:ed:45:7a:bd:00:64:4a:12:23:88:65:ce:f1:2d:12:cc:23:
cd:17:47:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:24 2023 by rpki-client on console-fra.rpki-client.org