Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VQ7K4DhkBbLeTjgFWbLoJnw5ou8.roa
File: VQ7K4DhkBbLeTjgFWbLoJnw5ou8.roa (raw, json)
Hash identifier: p6N4dLLxGt6vyzoERy7zQ0vHay0MrcRqaWAPr7PUBAQ=
Subject key identifier: 55:0E:CA:E0:38:64:05:B2:DE:4E:38:05:59:B2:E8:26:7C:39:A2:EF
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 02A4B327
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VQ7K4DhkBbLeTjgFWbLoJnw5ou8.roa
Signing time: Fri 11 Feb 2022 13:19:51 +0000
ROA not before: Fri 11 Feb 2022 13:19:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 5.10.244.0/24 maxlen: 24
5.10.241.0/24 maxlen: 24
5.10.247.0/24 maxlen: 24
5.10.250.0/24 maxlen: 24
5.10.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44348199 (0x2a4b327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 11 13:19:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=550ecae0386405b2de4e380559b2e8267c39a2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:36:46:eb:c9:e3:f1:11:92:26:42:37:5f:
b8:91:a6:b0:58:0d:13:ce:2b:ac:30:da:02:b2:61:
d3:b9:50:d8:70:66:ca:d6:d2:9b:46:5c:57:e4:95:
f3:35:37:c5:ea:50:f7:fb:f9:2b:ab:10:54:70:92:
c9:a0:f5:15:15:af:d3:3e:51:7a:7f:d8:a7:91:26:
28:29:b1:55:8b:8d:7a:75:c3:e5:07:b2:21:ca:4b:
ef:45:ee:8f:fb:25:a4:0b:38:3e:40:1c:10:4d:d6:
af:e9:6a:1c:7d:28:53:5f:3d:a0:aa:d0:82:6c:dc:
3f:5f:be:dc:dd:92:15:23:c7:33:79:62:80:ea:48:
0d:32:82:47:b5:53:cc:e1:e5:44:f8:68:45:0d:ac:
a7:f6:c7:38:1d:dd:be:71:40:69:8a:b7:ff:5d:d7:
14:5a:49:59:af:7c:36:01:1d:54:d3:a9:cb:6a:72:
d9:cc:5c:3c:b2:88:4c:d3:e4:83:5c:19:a8:16:5d:
ab:24:23:d1:e8:da:c5:47:65:83:c9:f1:6f:ab:02:
63:25:08:12:6c:22:05:c1:73:5d:02:37:29:c7:0a:
ae:04:94:8a:aa:4f:55:c7:6d:a3:8d:1c:f6:53:18:
58:c1:a3:b7:37:80:f8:ee:3e:1f:52:0d:13:07:cc:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0E:CA:E0:38:64:05:B2:DE:4E:38:05:59:B2:E8:26:7C:39:A2:EF
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/VQ7K4DhkBbLeTjgFWbLoJnw5ou8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.241.0/24
5.10.244.0/24
5.10.247.0/24
5.10.250.0/24
5.10.253.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a2:9e:5b:5e:fd:09:2d:18:df:a1:27:6d:eb:19:2b:e1:3a:
6f:42:08:bc:96:8f:6b:6c:78:97:59:5a:81:ad:dd:2e:8a:0e:
dd:5c:e6:bb:4a:bf:77:09:fb:76:38:77:b7:4c:b9:c7:fe:bb:
f4:1d:d6:a4:08:45:28:6c:75:8a:d6:2f:c1:61:9e:7a:68:e7:
ff:17:4c:f7:1a:91:5f:ff:34:6a:ae:50:0e:07:52:89:60:44:
48:56:a4:a8:64:a2:85:07:e9:b1:8a:2e:f7:d1:db:5e:93:90:
23:ce:34:e6:25:c8:f3:9e:55:0d:eb:15:0c:e2:6a:43:9c:fb:
67:f9:b6:3c:3a:53:04:8f:e1:1a:e1:41:d8:36:d0:83:10:01:
fc:48:8c:0c:2c:7a:05:a4:a3:04:18:80:4c:ac:ed:88:89:fb:
97:cf:de:0a:01:cd:3a:da:c5:3e:2d:4e:65:1f:1e:96:3e:30:
2a:7b:bd:9b:7f:b0:6c:bf:7e:f7:53:83:39:db:65:12:d4:a3:
aa:65:eb:2e:0a:13:e6:dd:d0:df:94:8a:13:86:ab:b2:be:99:
0b:18:e4:81:2d:f0:aa:1d:2a:f7:4f:7c:39:60:a7:cf:c9:11:
6c:42:6e:2e:b3:0b:ed:50:ff:92:4f:7f:cc:12:96:57:1f:8e:
c0:35:d3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org