Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Mra7fd_6jNmCT1WlA0LDOMkAiPE.roa
File: Mra7fd_6jNmCT1WlA0LDOMkAiPE.roa (raw, json)
Hash identifier: C7tGGfZxjsXN4WkRmy3mSmLKLzxJwAeWQeBvn9uXEtY=
Subject key identifier: 32:B6:BB:7D:DF:FA:8C:D9:82:4F:55:A5:03:42:C3:38:C9:00:88:F1
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E37C3B
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Mra7fd_6jNmCT1WlA0LDOMkAiPE.roa
Signing time: Sat 01 Jan 2022 00:54:41 +0000
ROA not before: Sat 01 Jan 2022 00:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200709
IP address blocks: 80.233.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400784443 (0x17e37c3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32b6bb7ddffa8cd9824f55a50342c338c90088f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e7:e3:10:90:74:e4:b0:95:3c:4b:7e:4c:08:
38:d3:19:92:f5:e1:ea:ff:f2:d9:9f:50:78:4e:e8:
9b:1b:40:16:f0:49:1d:89:7f:5d:c1:a4:78:03:b2:
d5:4a:65:4f:c2:0d:17:8c:dd:73:23:08:47:23:02:
bb:fe:fe:50:8b:0b:75:8b:c7:25:0e:44:ed:c3:c2:
62:ec:13:3d:76:43:e3:45:22:e9:fe:0b:1d:8e:db:
c8:bd:75:20:fd:a7:a2:3b:16:42:da:df:20:be:2a:
be:27:7c:a6:fc:70:84:a5:f8:f5:15:78:22:d4:31:
38:35:5b:ec:a9:00:35:3d:7a:6f:e7:db:a5:94:a4:
fb:5a:6a:5e:cf:d9:7c:69:c0:2e:f5:58:18:6a:c1:
27:fa:c0:d3:d3:17:b0:26:f0:92:df:7f:13:e6:5e:
c9:a3:ae:8c:1e:f5:a7:0c:7d:58:3c:11:d6:ed:60:
2f:8c:be:cc:9d:d5:10:f5:29:6d:da:26:90:90:f8:
67:f1:16:00:fc:a4:46:5a:0c:83:21:e9:cd:04:ad:
2b:51:97:fb:c5:83:89:ec:77:d9:93:bf:06:bd:3f:
93:9d:99:35:9f:04:a6:a7:9e:6b:16:5a:f1:a9:72:
2c:39:9a:55:cd:70:d8:61:fa:ee:79:97:3e:c6:fa:
63:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B6:BB:7D:DF:FA:8C:D9:82:4F:55:A5:03:42:C3:38:C9:00:88:F1
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Mra7fd_6jNmCT1WlA0LDOMkAiPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.134.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:2d:56:2d:73:1f:12:7b:ab:31:49:f5:69:11:e1:e2:83:70:
68:e9:58:18:3d:ab:25:c8:c5:0b:ad:d5:04:5e:b0:78:46:74:
8e:7d:da:cf:54:f6:e2:7e:dc:46:a5:93:7c:5b:75:be:1c:9d:
57:53:81:f0:d8:ca:95:a6:08:6c:b7:17:d5:7f:97:da:69:38:
b0:7c:fd:d5:c6:cb:af:39:a6:a2:12:73:02:33:74:59:8f:b7:
6f:b4:fc:a4:18:d2:4e:13:ee:43:6c:06:06:30:43:3b:3b:95:
bb:b8:cf:5e:11:cd:7f:8a:77:94:16:20:ee:25:9b:fc:83:7e:
c9:f6:75:e7:8b:9d:83:ca:69:f1:1b:c9:78:f5:5e:7b:2f:f1:
46:68:33:04:b2:6c:ea:43:4b:f6:5b:33:1b:dd:59:f5:d4:70:
76:3d:36:d5:81:ee:33:19:bc:2e:c3:47:34:80:61:d6:26:1f:
c2:3f:36:13:10:7b:60:c7:92:9f:ee:ca:82:08:e4:23:bc:79:
bf:f2:34:e2:45:f4:e1:54:4c:ed:96:63:f4:d3:31:cc:67:fd:
0a:b2:c4:5e:d1:5b:cd:37:6f:2e:46:2c:5c:d2:01:a9:5f:fb:
2c:20:8b:b8:ea:65:a6:6e:20:eb:75:f5:7f:3b:c5:fa:46:2f:
b0:4b:6c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org