Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_IHeEkAubAvj9k4lDV-fpudvW3A.roa
File: _IHeEkAubAvj9k4lDV-fpudvW3A.roa (raw, json)
Hash identifier: HDd+hQHouEIu6xAaqg2T6AA1xsmeXdusYq34NBO+id4=
Subject key identifier: FC:81:DE:12:40:2E:6C:0B:E3:F6:4E:25:0D:5F:9F:A6:E7:6F:5B:70
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17CA735F
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_IHeEkAubAvj9k4lDV-fpudvW3A.roa
Signing time: Sat 01 Jan 2022 00:54:26 +0000
ROA not before: Sat 01 Jan 2022 00:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5518
IP address blocks: 80.233.128.0/17 maxlen: 24
80.233.146.0/24 maxlen: 24
62.63.128.0/18 maxlen: 24
62.63.141.0/24 maxlen: 24
78.154.128.0/19 maxlen: 19
80.233.232.0/24 maxlen: 24
80.233.255.0/24 maxlen: 24
62.63.159.0/24 maxlen: 24
78.154.146.0/24 maxlen: 24
194.19.224.0/24 maxlen: 24
194.19.224.0/19 maxlen: 19
194.19.246.0/24 maxlen: 24
185.87.204.0/22 maxlen: 22
78.28.240.0/24 maxlen: 24
78.28.252.0/24 maxlen: 24
78.28.251.0/24 maxlen: 24
213.175.64.0/18 maxlen: 24
78.28.197.0/24 maxlen: 24
78.28.195.0/24 maxlen: 24
78.28.192.0/18 maxlen: 24
78.28.211.0/24 maxlen: 24
78.28.212.0/24 maxlen: 24
2a02:16d8:101::/48 maxlen: 48
2a02:16d8:104::/48 maxlen: 48
2a02:16d8:105:9::/64 maxlen: 64
2a02:16d8:102::/48 maxlen: 48
2a02:16d8::/32 maxlen: 48
2a02:16d8:b400::/38 maxlen: 38
2a02:16d8:103::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399143775 (0x17ca735f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc81de12402e6c0be3f64e250d5f9fa6e76f5b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:2a:9b:bd:6b:29:e1:07:df:51:8b:02:21:
37:02:c5:38:db:65:f4:85:87:a1:a7:56:32:fb:6a:
1d:d2:ea:93:2f:57:1f:f3:95:b4:30:b2:ae:b4:14:
a2:02:43:cd:f1:d0:6f:c4:52:1c:29:50:50:5c:63:
20:b1:c7:50:a4:6d:34:e9:f8:d3:78:be:12:69:99:
9a:9d:93:40:7b:85:81:d1:80:46:7e:03:f0:d2:59:
ed:7e:0e:e6:7f:3c:36:47:ed:ec:99:e1:a2:53:20:
7c:4d:a3:15:ed:14:fa:bc:e7:3c:ac:0a:44:16:3a:
c7:aa:18:02:c8:33:e5:36:d8:da:75:71:9c:cf:53:
87:08:0f:28:87:c4:c5:09:66:b2:a9:50:ae:09:bb:
b6:f8:df:c4:79:93:be:2b:9f:66:67:ea:f5:3e:ad:
d7:37:ab:4e:39:d5:9d:7b:eb:a7:f2:fc:36:7b:31:
39:f3:30:10:d8:3b:2e:b8:9b:3e:18:d8:53:7d:d2:
82:f2:6b:0d:9b:c5:75:47:e1:13:9d:c4:a6:ab:70:
1f:17:59:c7:b3:df:53:5a:76:10:94:e7:e4:01:6c:
0d:44:52:1c:01:72:f4:de:57:18:f1:18:31:3f:88:
9d:98:e0:ce:55:b1:f1:3e:19:cf:27:45:1a:4e:05:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:81:DE:12:40:2E:6C:0B:E3:F6:4E:25:0D:5F:9F:A6:E7:6F:5B:70
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_IHeEkAubAvj9k4lDV-fpudvW3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.63.128.0/18
78.28.192.0/18
78.154.128.0/19
80.233.128.0/17
185.87.204.0/22
194.19.224.0/19
213.175.64.0/18
IPv6:
2a02:16d8::/32
Signature Algorithm: sha256WithRSAEncryption
28:6b:ac:28:89:9a:bf:cb:76:1c:d2:29:17:63:35:73:b5:2a:
13:6e:14:42:03:9e:98:6d:b5:37:96:fd:b0:70:60:7a:29:7b:
9a:e8:d5:28:b8:67:16:7a:b0:aa:4a:ad:ed:1c:1b:cc:f2:64:
99:5d:58:54:4f:55:9e:c2:57:c8:6c:d9:9c:43:58:ec:2e:ab:
13:17:3c:f8:0c:99:f4:17:d0:4b:d1:ba:08:c9:62:ea:f2:5e:
e5:f1:c5:49:56:86:bb:7b:4f:2e:97:8c:8c:e3:c8:6d:7e:28:
e5:86:6a:c1:16:73:f1:89:d9:2a:f3:6c:ef:b5:ba:c2:8a:ce:
88:ff:ac:b1:e9:df:3f:68:b6:c0:1a:ad:df:da:d3:b1:d2:73:
a7:25:44:fa:4e:e2:45:2b:61:92:e3:4f:ef:24:17:1d:ad:f4:
d5:d4:b0:85:a4:df:d4:2d:73:ff:3a:83:71:03:a0:66:ee:1e:
40:83:64:73:f9:74:5c:2f:cd:8a:3e:3d:99:28:ed:ae:19:9a:
a3:75:90:3c:c3:14:95:0c:e2:2c:18:ce:d7:20:81:da:c3:e1:
26:71:8f:38:3b:ff:ed:09:8a:bd:19:10:cd:8e:d4:65:d6:28:
cd:fd:64:aa:d1:15:a1:0f:d8:3c:c2:fd:32:f2:95:0f:19:a7:
0c:fb:e0:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org