Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/l5umrfS_49wWz3Kn45_AamiWsUY.roa
File: l5umrfS_49wWz3Kn45_AamiWsUY.roa (raw, json)
Hash identifier: D8/5bu0WOpsmz/aYqpCZPbSDJoW4O9HIOg9JwQ5lGy8=
Subject key identifier: 97:9B:A6:AD:F4:BF:E3:DC:16:CF:72:A7:E3:9F:C0:6A:68:96:B1:46
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17D35B55
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/l5umrfS_49wWz3Kn45_AamiWsUY.roa
Signing time: Sat 01 Jan 2022 00:54:31 +0000
ROA not before: Sat 01 Jan 2022 00:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35407
IP address blocks: 80.233.251.0/25 maxlen: 25
80.233.251.128/26 maxlen: 26
80.233.251.128/25 maxlen: 25
80.233.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399727445 (0x17d35b55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=979ba6adf4bfe3dc16cf72a7e39fc06a6896b146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:59:6b:b3:e1:0b:fb:58:9f:26:ec:1b:17:fc:
37:f5:3d:fc:42:46:0f:47:b6:9d:2e:50:a3:32:67:
37:82:50:2a:22:e3:0d:c3:72:12:68:65:88:a8:6d:
bf:bd:e2:cf:47:19:a5:4b:bb:40:3f:3d:e4:ca:19:
23:17:51:1a:cc:2b:86:81:6d:1b:64:54:55:5a:9f:
ef:9f:08:b4:14:b2:c9:fd:42:72:5e:b9:03:c4:79:
09:b2:9f:5c:10:ef:ed:03:6a:2a:04:3b:e8:c7:6b:
4a:46:15:8e:70:a2:4b:8f:29:56:e8:65:4c:d6:b6:
4d:52:01:d4:41:71:32:15:13:77:1d:fe:3c:23:2e:
c7:13:89:c5:33:cf:13:f5:79:58:9c:6e:56:e7:b4:
27:19:31:b4:ab:8c:fb:af:1b:8f:af:d6:e4:aa:3c:
92:13:13:bd:fd:5a:39:9a:87:66:29:8f:3c:79:2a:
fc:c3:cc:34:63:81:e6:22:21:0f:ad:bb:f9:0f:18:
aa:15:d1:96:2d:10:96:d7:14:0b:78:41:9c:ac:b2:
a3:56:af:93:f7:7f:c5:02:66:5b:3c:f8:a5:e6:19:
e1:4f:ea:31:ab:af:e6:bc:ee:21:8a:59:ea:1c:aa:
0d:5d:69:4a:e0:0d:7d:76:50:10:74:45:ab:d0:4d:
fc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9B:A6:AD:F4:BF:E3:DC:16:CF:72:A7:E3:9F:C0:6A:68:96:B1:46
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/l5umrfS_49wWz3Kn45_AamiWsUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.251.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:fb:b3:08:2f:95:18:c7:ed:93:85:5c:29:22:a9:53:e0:73:
c0:bd:7e:aa:0f:22:b6:c8:31:ca:76:76:4d:33:3c:94:4b:0b:
86:bf:95:70:2e:87:20:d0:aa:90:08:6b:cc:b9:0d:72:11:b8:
08:0e:e1:13:ac:50:66:bd:4e:f7:5b:83:79:af:18:df:f0:47:
5f:17:88:90:c7:8b:c6:1d:fc:dd:c5:5c:8a:8e:20:42:a2:6d:
aa:23:fc:ea:7a:d2:5e:b0:a3:73:36:76:3a:a6:6e:c2:ce:87:
dc:a1:f1:af:92:de:3e:c8:24:a5:6b:a8:46:ff:ea:05:16:42:
85:00:fc:b0:83:cc:cc:7d:9e:cc:dc:3c:b4:27:2e:cc:fc:48:
d9:22:be:d3:88:bd:7f:f3:ca:2c:01:63:98:31:1d:c8:ee:da:
b6:b9:78:85:fb:3e:e8:31:a1:75:98:b6:2c:51:b4:7a:a8:ac:
ed:df:02:60:29:41:f4:e2:7d:9b:a0:10:4e:0a:33:ec:58:99:
d6:1b:8d:64:b3:82:ab:13:9c:b5:be:9a:77:84:9d:9c:2f:a5:
29:1a:66:44:c8:c1:2d:47:7b:4f:63:4d:86:46:c5:ea:7d:c0:
a2:2e:8b:77:b1:fa:8e:16:d0:1e:d1:a4:c6:17:9c:09:a7:a7:
9c:fc:63:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-ams.rpki-client.org