Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/my1otsU1ZX7qT7yR4Ia0Gl7djF4.roa
File: my1otsU1ZX7qT7yR4Ia0Gl7djF4.roa (raw, json)
Hash identifier: ft6ifKqOLs36LEvW+2Kks4IxS+P+WaibJMM6QqvhkCQ=
Subject key identifier: 9B:2D:68:B6:C5:35:65:7E:EA:4F:BC:91:E0:86:B4:1A:5E:DD:8C:5E
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17DFC297
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/my1otsU1ZX7qT7yR4Ia0Gl7djF4.roa
Signing time: Sat 01 Jan 2022 00:54:39 +0000
ROA not before: Sat 01 Jan 2022 00:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57318
IP address blocks: 80.233.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400540311 (0x17dfc297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b2d68b6c535657eea4fbc91e086b41a5edd8c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:d0:c3:3e:7d:d8:c7:ae:1c:f7:98:00:83:
dc:70:ed:ca:b4:de:a2:53:46:5f:13:ff:3e:6c:82:
af:dd:e5:04:17:27:4c:47:1a:d8:51:75:28:7a:39:
ac:2d:74:d4:73:2b:9e:6f:b4:27:e8:bd:53:1b:79:
b3:16:7f:44:51:4f:e7:93:39:dd:ff:26:14:ec:83:
73:b9:d9:e9:0d:d9:cb:df:50:07:58:32:05:47:b0:
d2:59:6b:66:72:59:04:47:da:e1:89:73:1e:35:9c:
b9:f6:24:12:bf:a0:12:7d:f2:57:fd:ab:be:45:7b:
9e:00:08:f6:92:ea:62:ae:5c:78:a5:fa:b3:65:d4:
bc:92:37:01:0d:63:62:1d:c5:57:c4:59:24:25:08:
eb:8a:7b:e9:46:41:70:8b:a0:c9:88:71:eb:4b:25:
d5:c1:41:15:e4:53:b4:cd:15:eb:be:87:4d:88:c6:
99:52:94:be:09:a2:80:28:d6:f7:b5:3c:ca:aa:a7:
1d:24:8d:f7:98:a9:00:1c:fe:3d:fe:a5:9e:25:22:
99:2a:d1:bc:76:6a:62:51:0c:15:10:57:46:94:da:
b2:25:aa:44:8c:00:6e:08:15:ac:ca:ff:20:45:2f:
32:73:9d:e8:3b:dd:28:04:70:f3:b3:9b:f9:a6:b8:
98:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:2D:68:B6:C5:35:65:7E:EA:4F:BC:91:E0:86:B4:1A:5E:DD:8C:5E
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/my1otsU1ZX7qT7yR4Ia0Gl7djF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.130.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:cd:d6:2a:8c:06:bd:ab:26:a5:67:5f:b0:55:88:cd:1a:fc:
a3:29:a3:0d:06:de:47:89:a2:45:8b:86:50:79:76:2b:49:bc:
f2:be:57:26:75:a4:e8:bb:05:bc:cb:6f:08:39:fe:71:f9:e7:
07:46:d2:02:8b:7d:d6:73:15:ec:4e:dd:3a:d7:d3:e2:c1:a0:
94:ba:6d:36:a6:e3:78:3a:e8:00:79:8a:90:52:31:d1:68:72:
d0:99:0f:1a:3d:93:1f:03:29:1c:28:dc:d3:00:d4:c6:fe:76:
30:7c:01:df:05:1e:7b:3b:14:b2:6e:02:c6:71:66:d6:19:63:
12:9d:58:2b:d9:03:89:59:e8:31:92:c6:6d:72:18:08:8c:b1:
17:1e:d0:3b:15:39:80:e5:dc:c5:a0:8c:0e:cc:26:d9:79:0a:
33:4f:62:5d:b1:86:e0:8a:c4:37:3c:bf:57:da:4b:d1:5f:5b:
41:85:0d:1c:97:f7:5c:c4:8c:6e:52:c1:12:e2:9b:11:f3:e5:
e6:f8:bd:34:8f:9b:5b:33:39:e2:ed:b1:b9:08:6e:1c:f8:63:
18:04:92:0a:58:9b:af:3b:47:b4:f9:65:6c:ec:ac:b1:e7:b9:
99:f9:b7:a4:e5:76:76:c6:9b:ec:e2:84:1d:d6:b0:a3:e2:46:
63:da:56:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org