Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/A_i8RD9aQnWZy3rNedOa-oCIoGM.roa
File: A_i8RD9aQnWZy3rNedOa-oCIoGM.roa (raw, json)
Hash identifier: x1EolIYNby7SZppA4bzAXREaRUo/65w17x0Dii7ouwc=
Subject key identifier: 03:F8:BC:44:3F:5A:42:75:99:CB:7A:CD:79:D3:9A:FA:80:88:A0:63
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184AEF042E0B4199814BB9D9EEE972A8BFF
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/A_i8RD9aQnWZy3rNedOa-oCIoGM.roa
Signing time: Fri 25 Nov 2022 13:18:12 +0000
ROA not before: Fri 25 Nov 2022 13:18:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 5.10.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:f0:42:e0:b4:19:98:14:bb:9d:9e:ee:97:2a:8b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Nov 25 13:18:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03f8bc443f5a427599cb7acd79d39afa8088a063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:09:69:3d:b8:79:1c:6f:b7:98:aa:9d:85:f2:
ba:eb:16:da:67:41:c5:25:a9:8d:7f:31:d3:10:7f:
bb:12:06:51:03:70:0b:5c:9b:1b:7d:73:83:ef:2c:
34:cf:cd:76:1d:60:dc:2d:99:99:b1:dd:be:ad:3d:
13:8d:38:fd:c1:cc:fa:f1:5e:ec:77:62:38:ed:50:
99:f5:f8:bc:fc:d6:b6:48:6f:31:2b:bb:e4:d9:de:
a6:a7:2c:2d:95:0d:46:ad:ef:76:eb:d3:e0:6b:bf:
ec:f1:7b:08:da:95:08:07:73:79:01:61:7d:72:9c:
ec:62:c8:6c:bf:a2:b5:06:d8:61:86:7c:e9:a3:c2:
a9:19:e0:a5:f9:2b:bb:1b:3d:bf:d3:61:74:21:61:
14:bf:bb:1e:d5:1e:e4:be:df:2a:32:f5:b2:8c:6b:
3c:4a:49:6f:47:f1:c1:f3:a8:7d:cd:14:79:a1:23:
ad:b6:85:b8:38:10:8a:9c:db:f2:76:b4:30:b1:79:
52:2d:55:04:9f:d7:24:92:77:3d:9a:9a:f6:09:dd:
1e:b4:a0:50:51:7b:cb:b9:72:dd:f4:ac:c9:b0:6b:
a1:8c:18:69:66:73:af:7b:fd:e6:04:75:5f:fc:50:
f8:ef:22:8d:63:04:65:f1:f8:ab:b6:c0:d4:84:f2:
40:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F8:BC:44:3F:5A:42:75:99:CB:7A:CD:79:D3:9A:FA:80:88:A0:63
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/A_i8RD9aQnWZy3rNedOa-oCIoGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:e5:0b:c6:0c:9c:ee:d7:02:2d:49:06:ba:91:21:fc:33:53:
f2:60:ea:c9:b8:31:ac:94:ee:0b:b2:0d:8a:5f:a7:38:a4:9f:
ed:7a:a3:ce:d2:b5:59:81:01:13:db:41:38:10:94:15:85:66:
29:0b:3f:d9:e2:80:09:bc:f1:eb:18:ae:91:7e:ee:88:ac:fb:
29:1c:4c:c9:18:c4:8d:86:7b:71:fb:06:d6:c2:d5:b6:5f:d8:
34:5a:ac:96:8a:66:a0:53:29:2c:fa:52:08:1b:36:2b:d7:1b:
4c:35:ea:7c:66:82:d7:15:d3:3e:8f:84:0a:31:5b:c7:5c:ac:
56:85:db:db:7a:43:c5:b5:0f:53:fb:b4:c4:a0:33:8f:40:3f:
08:ba:65:27:76:08:4a:83:c8:fc:9e:52:70:22:cd:01:88:55:
4f:e9:33:87:04:af:f8:64:f2:0e:63:b1:3b:4c:61:82:d0:4c:
2d:1f:9f:c5:50:d9:41:9d:5b:e0:c7:81:90:38:dd:03:db:83:
ea:b1:f8:f9:c5:bf:d1:87:86:d0:3c:06:4e:10:aa:00:c6:68:
8c:95:9d:f3:58:9d:52:79:11:37:8d:e6:54:c9:0d:bf:c3:4f:
a1:43:0a:6c:a2:b4:8a:a4:09:3f:91:e5:15:f9:72:95:5b:5a:
0a:24:da:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org