Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DSbIsgpita8KrkbjjKNa786nW2g.roa
File: DSbIsgpita8KrkbjjKNa786nW2g.roa (raw, json)
Hash identifier: 8+tZ57rh/Yhg26q66I+hZ5d45nTm/gFYRF8XgRJ+59Q=
Subject key identifier: 0D:26:C8:B2:0A:62:B5:AF:0A:AE:46:E3:8C:A3:5A:EF:CE:A7:5B:68
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184AEF12A89793077C860F1BC012AB8BF7A
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DSbIsgpita8KrkbjjKNa786nW2g.roa
Signing time: Fri 25 Nov 2022 13:19:11 +0000
ROA not before: Fri 25 Nov 2022 13:19:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60458
IP address blocks: 5.10.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:f1:2a:89:79:30:77:c8:60:f1:bc:01:2a:b8:bf:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Nov 25 13:19:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d26c8b20a62b5af0aae46e38ca35aefcea75b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c8:2c:eb:9b:0d:6a:0f:74:ba:41:78:30:bd:
e7:e4:b6:cc:e6:69:bd:fd:2f:82:25:13:37:34:25:
55:d7:d5:af:a3:5f:13:43:eb:b3:a3:2f:22:f4:a9:
8d:d3:3a:cf:29:ee:99:92:54:ae:31:73:07:14:7d:
61:c9:f9:ea:c8:bf:1a:46:19:33:0a:ce:80:7c:09:
7a:1e:02:54:a0:03:d3:e2:01:a2:1a:db:20:14:24:
fa:38:8d:89:3b:1d:88:75:ab:ee:dc:d0:db:8f:6c:
24:c6:b3:7e:3e:2d:a9:39:c2:f4:a9:51:63:ec:33:
f3:9d:16:50:07:e3:c2:f7:d7:7b:26:10:a1:be:46:
31:b1:e6:a2:d9:67:6a:ed:c5:0c:1c:d9:b3:35:5b:
a5:a2:6e:f7:93:10:8d:e9:87:6e:cc:8d:ab:c7:82:
ff:57:c5:13:bf:67:d5:f1:35:f3:22:5c:e5:cd:92:
b3:e2:e5:54:92:d5:bf:34:66:39:86:a6:24:8a:1e:
c5:a9:0f:41:60:83:b3:11:ec:65:45:7e:71:ae:fe:
15:91:45:ea:3c:de:22:61:57:44:a9:42:e7:9f:a1:
6e:1f:55:a2:62:09:59:0a:9d:0b:8a:be:80:cb:fe:
63:21:1b:64:07:25:db:0e:63:e2:6d:e4:11:71:eb:
41:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:26:C8:B2:0A:62:B5:AF:0A:AE:46:E3:8C:A3:5A:EF:CE:A7:5B:68
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/DSbIsgpita8KrkbjjKNa786nW2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.248.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:c7:33:f9:03:fb:96:38:7e:3b:03:3e:26:be:2c:ab:4f:da:
91:27:f3:7e:78:76:b0:83:ef:8d:8f:9d:dd:59:a8:01:7b:c5:
59:f9:67:0b:dc:0c:b3:95:b1:c4:f5:11:96:50:29:c0:9e:80:
78:c3:14:85:db:74:56:ad:8a:9e:49:6b:aa:58:99:50:6f:09:
e1:49:70:c5:13:93:9d:08:53:e4:92:51:1b:0d:2d:e4:f3:54:
94:af:b2:ee:04:9b:3c:33:47:2c:e0:9e:93:3b:c2:dc:2b:5e:
7b:38:94:c4:a4:7b:4b:7e:a7:f6:90:ab:b4:04:8e:3f:17:de:
46:9c:3a:26:de:3b:48:d3:27:e1:2e:f7:19:cb:74:06:63:95:
d6:8b:bf:b9:47:87:0c:d9:a7:97:5c:aa:4b:93:13:ea:90:c7:
07:6e:19:00:33:13:31:b6:94:6d:9e:af:a0:82:42:9a:6e:4b:
28:f8:92:09:1e:f5:fa:20:57:b0:72:c0:1a:13:a2:3e:db:b3:
9f:f2:9f:fe:c5:2c:f3:a9:85:3e:2b:de:3a:cc:91:73:72:c5:
e1:42:26:42:bf:93:db:4c:ed:77:64:7e:1d:a4:2d:2d:ea:a5:
d2:07:b6:bd:2c:d5:78:8e:ed:47:08:9c:9d:3e:35:1e:f2:fd:
02:8f:5f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org