Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/YQFmYfLdugdMWAbzxT8ZGYQa_tk.roa
File: YQFmYfLdugdMWAbzxT8ZGYQa_tk.roa (raw, json)
Hash identifier: 1xVXhJeUY1Y1BjC6JQatHgOQesO6t9eaFkwBzeJjsVA=
Subject key identifier: 61:01:66:61:F2:DD:BA:07:4C:58:06:F3:C5:3F:19:19:84:1A:FE:D9
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E5FC64
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/YQFmYfLdugdMWAbzxT8ZGYQa_tk.roa
Signing time: Sat 01 Jan 2022 00:54:42 +0000
ROA not before: Sat 01 Jan 2022 00:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209271
IP address blocks: 80.233.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400948324 (0x17e5fc64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61016661f2ddba074c5806f3c53f1919841afed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7d:4f:43:84:5a:34:4c:6d:7e:70:26:29:fc:
47:58:8c:f3:36:8d:f0:27:2b:49:d0:c6:e4:00:84:
9d:cc:6d:2a:88:3d:2b:31:a0:8e:15:56:ea:0b:ca:
a4:51:3b:be:2f:0d:e7:b6:21:d9:f6:98:39:a9:9f:
d1:c4:31:33:80:48:8d:d0:63:48:91:be:69:b3:95:
19:53:28:1f:69:c2:fa:04:5d:15:b1:3b:0e:3c:f9:
eb:ff:59:2a:49:58:41:39:03:ea:a4:dc:30:1f:ce:
85:b6:d0:73:d3:01:b8:28:80:cf:10:48:31:37:0e:
ee:a7:3c:87:cb:de:52:03:c6:2e:1d:4e:e0:ca:f9:
e0:66:52:b2:4c:26:e1:59:44:90:bb:eb:32:ae:ae:
6e:66:91:e5:f9:6e:ef:3d:02:2e:c8:f2:a1:77:88:
c7:60:45:a7:ec:2e:d4:9b:5c:a3:52:7d:de:90:27:
bf:f5:00:01:ee:c3:33:98:e5:0d:3b:90:dc:96:61:
0b:09:7c:ce:6d:bc:17:8d:79:cf:16:c8:a3:e0:ad:
7f:1d:af:cf:52:1e:64:5e:9f:6e:cf:fe:ae:52:21:
e0:63:b0:ee:25:7f:ad:14:9c:c2:52:32:e1:55:56:
c4:f9:8f:9b:04:85:58:36:54:9e:9d:c8:f2:0c:3c:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:01:66:61:F2:DD:BA:07:4C:58:06:F3:C5:3F:19:19:84:1A:FE:D9
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/YQFmYfLdugdMWAbzxT8ZGYQa_tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.140.0/24
Signature Algorithm: sha256WithRSAEncryption
66:da:b6:81:56:0e:ba:63:29:15:b2:db:eb:f4:3f:e5:83:2e:
39:9b:43:00:3f:b6:97:49:47:e3:70:a7:cf:33:eb:3a:fc:44:
13:20:8b:e1:67:d2:c8:9e:59:36:b1:a2:aa:80:06:6f:21:1f:
9e:34:ed:99:5e:ed:d2:b9:98:4b:89:6e:3c:bc:95:59:e2:26:
7b:0e:41:53:19:fc:cf:bd:46:2a:b8:12:07:bd:b7:91:c9:22:
01:35:25:32:a0:34:c2:8b:08:85:51:4f:f6:c1:13:70:8f:fd:
d6:c6:d5:4f:f4:ea:a7:f7:4d:31:b0:31:94:16:56:97:bc:40:
1b:44:e0:5a:42:a2:b7:2b:27:8a:07:8e:14:9a:8e:14:c6:91:
49:4e:23:f3:76:c6:01:38:c6:97:05:a4:97:2a:ae:29:d1:4e:
42:33:89:33:46:5f:be:73:4c:cd:88:f9:97:6b:6a:9c:ac:88:
9a:32:e5:da:9e:cc:f2:bd:6f:ce:07:54:2d:f1:d8:98:f6:73:
2f:1b:57:bf:8e:4b:87:1b:c5:de:cd:67:0a:bb:53:1a:7d:7a:
06:4a:18:09:ac:24:65:78:10:cf:4c:a3:b3:10:96:99:c2:24:
b2:1d:c6:b9:a4:2c:77:02:52:78:fa:72:96:12:e4:1d:b5:cf:
e1:10:46:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org