Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/XYGPN5RGVM9UnJeblZlmcGOnrog.roa
File: XYGPN5RGVM9UnJeblZlmcGOnrog.roa (raw, json)
Hash identifier: /EmFdG/CUSdMOzmDx/n85fHKriNaoOI0Me1GU96hp9c=
Subject key identifier: 5D:81:8F:37:94:46:54:CF:54:9C:97:9B:95:99:66:70:63:A7:AE:88
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17D7FBD1
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/XYGPN5RGVM9UnJeblZlmcGOnrog.roa
Signing time: Sat 01 Jan 2022 00:54:33 +0000
ROA not before: Sat 01 Jan 2022 00:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43956
IP address blocks: 80.233.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400030673 (0x17d7fbd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d818f37944654cf549c979b9599667063a7ae88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ec:e5:d8:49:fe:d7:b8:54:2c:c9:93:72:8c:
c6:54:9c:25:17:81:22:96:c4:49:a1:2f:f4:3a:99:
b7:e1:c6:1d:0a:cc:90:38:ed:e9:7b:8c:2a:09:fe:
5d:8b:df:ef:92:78:8e:79:77:59:c6:77:12:0c:e4:
2f:77:8f:41:73:f0:7c:86:79:ce:0b:b2:2e:24:04:
2c:27:5d:83:29:58:97:03:db:ae:1d:b7:8a:e5:2e:
c3:10:a0:ef:3b:2e:e1:79:7d:75:5e:e8:0a:ee:b8:
44:66:a6:f3:44:11:4f:c8:b2:a7:ec:81:83:90:07:
d0:c1:fa:be:db:07:16:6a:d1:d2:45:c3:c6:b1:6c:
0e:cf:47:18:ea:01:af:06:cd:87:87:7d:0d:e4:7b:
1c:ea:3a:6a:58:88:c7:95:11:f1:29:9e:8f:bd:df:
54:bf:6e:e0:98:59:cd:15:33:85:1d:e2:8e:14:be:
fd:31:dc:a5:85:3b:a4:3c:d6:d8:9b:b9:c5:4d:f6:
3f:34:87:e4:16:e3:c6:11:8a:9c:b7:f0:d1:2e:0e:
c9:9f:c2:df:79:85:41:b8:d1:58:ad:b6:f0:49:ad:
e5:bc:70:05:c1:44:f0:ac:d9:52:77:2a:88:a0:87:
62:ca:37:b3:4a:8c:18:87:6a:d3:d5:94:08:57:74:
c9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:81:8F:37:94:46:54:CF:54:9C:97:9B:95:99:66:70:63:A7:AE:88
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/XYGPN5RGVM9UnJeblZlmcGOnrog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.249.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:5a:88:2e:3e:fd:53:2f:c4:fa:b2:be:9a:fb:d3:35:56:ca:
aa:3a:1a:05:dc:53:7e:69:5a:8f:38:27:c6:fd:42:af:e7:bd:
5e:d7:63:c4:4a:98:15:57:e0:ee:e5:10:9c:06:e0:45:0f:c1:
bb:69:90:69:23:7a:1f:2f:c8:42:48:c3:70:a0:10:b7:56:48:
6a:4a:17:62:83:2e:8d:f8:8f:89:99:a2:ca:f6:9b:52:04:ec:
72:97:de:25:69:dc:f8:8c:0f:62:0f:10:46:0d:da:ff:c1:4c:
19:b6:9c:72:d7:aa:42:29:7a:c2:19:cc:6a:a1:cc:76:6d:57:
87:c8:86:0f:95:2c:73:52:25:5d:83:c8:ea:7d:87:4f:46:11:
5a:01:1f:3c:ec:0b:f9:2e:4e:9f:85:77:38:34:64:2d:b3:34:
93:5d:a9:6e:0a:9b:58:e6:7b:30:d9:8b:87:cf:79:ea:13:86:
3e:89:3b:17:8c:d1:63:38:a0:3a:05:12:46:d4:fa:4f:53:26:
c1:99:2b:b8:8e:85:07:a6:8b:08:c0:ec:52:03:88:55:bd:bf:
c1:a1:62:4b:46:d6:0c:60:91:3e:ed:d7:d4:47:3d:d3:0c:37:
ab:73:2c:13:88:ad:1f:a6:15:ab:ee:5b:61:11:12:a0:2d:b1:
3f:cd:91:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org