Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/qW3ezX5UZ0blrrGEUBwRU8XB8LI.roa
File: qW3ezX5UZ0blrrGEUBwRU8XB8LI.roa (raw, json)
Hash identifier: EZlRbxzLkRx1UeDYj46vvpCFH9cymVw3XGc8Rp1tVKg=
Subject key identifier: A9:6D:DE:CD:7E:54:67:46:E5:AE:B1:84:50:1C:11:53:C5:C1:F0:B2
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E7E323
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/qW3ezX5UZ0blrrGEUBwRU8XB8LI.roa
Signing time: Sat 01 Jan 2022 00:54:43 +0000
ROA not before: Sat 01 Jan 2022 00:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211424
IP address blocks: 80.233.132.0/24 maxlen: 24
80.233.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401072931 (0x17e7e323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a96ddecd7e546746e5aeb184501c1153c5c1f0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:81:c2:62:db:61:8f:7e:aa:2b:58:97:eb:3c:
a5:b9:50:13:3b:8e:03:47:e1:0b:ed:95:65:9d:fc:
67:17:db:6d:84:1b:40:9b:77:1e:b7:b6:fd:d9:86:
83:17:dc:08:ec:f8:8a:ef:32:99:24:fe:4a:bb:a2:
52:33:0b:54:8d:83:4f:05:bb:54:10:e7:da:60:81:
e0:7f:71:fb:31:2d:86:df:94:0f:fe:f3:af:21:81:
6f:88:26:c1:50:0d:d7:6a:47:65:fe:c4:a8:80:5c:
62:40:55:7d:33:a6:0c:09:80:e5:a9:20:e1:3a:b5:
1e:4b:b4:05:41:12:d4:eb:f6:c7:9e:00:48:0d:7b:
10:cd:c9:e9:05:f6:0b:24:c9:18:20:52:06:d2:ed:
68:ac:bf:c4:34:18:44:40:df:90:01:70:dd:0d:03:
a1:7c:ce:63:96:d8:c8:d6:88:66:f1:cb:50:01:18:
23:af:bf:de:0f:c1:44:6d:2c:ab:71:c7:a9:20:11:
b2:0e:9f:fe:ec:90:a3:5b:eb:95:90:5a:e9:f8:a2:
11:d1:87:79:19:dc:b8:89:4e:01:ea:e5:9a:ee:22:
3c:b2:d8:33:f3:e0:74:c4:da:b8:cb:7b:46:0d:54:
5d:c9:49:33:ca:77:1d:a1:7e:20:b5:5e:21:c5:c6:
14:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:6D:DE:CD:7E:54:67:46:E5:AE:B1:84:50:1C:11:53:C5:C1:F0:B2
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/qW3ezX5UZ0blrrGEUBwRU8XB8LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.132.0/24
80.233.177.0/24
Signature Algorithm: sha256WithRSAEncryption
74:0b:7c:04:82:df:c4:e7:b4:27:11:ff:29:44:9f:63:d7:5b:
12:bd:d9:87:ce:47:c2:da:eb:e0:66:ee:1d:f1:cc:6a:d0:7f:
28:aa:79:c5:56:f3:34:69:c1:d4:13:a6:a3:a5:2f:1f:43:c2:
87:e3:c8:a2:c5:d9:79:63:8f:4c:a5:4f:48:ec:6b:7b:ec:94:
a5:7a:b8:c9:d5:01:4d:b4:d0:91:74:eb:27:78:58:29:bc:26:
d2:0b:e8:53:3a:87:6f:97:03:70:f7:24:8e:16:c9:38:06:4a:
8e:94:10:a3:7b:5b:5d:da:84:f4:37:a7:c7:8f:ba:bd:e6:f2:
ae:a4:7f:a0:b6:1d:17:5c:34:b7:b1:7c:00:36:ea:65:f5:c5:
98:cd:f0:c5:a3:9d:be:c8:75:8f:45:be:e1:f6:89:2a:d2:0a:
72:30:3d:05:b6:8a:6d:af:ee:2d:19:02:4e:bf:d0:d0:3f:41:
0c:63:3c:7f:97:7d:2a:7f:f6:ed:ee:2f:7d:c3:4e:a1:ac:1d:
52:2b:16:9a:cb:51:ef:c7:6d:b5:38:1d:17:3e:11:c1:f5:30:
47:be:50:d5:08:bb:ab:cb:8a:ac:d0:7e:ac:ef:a2:00:b4:f2:
c1:2f:4e:37:e2:47:0d:16:c8:cf:14:12:be:a9:d1:5d:7d:64:
fb:3d:79:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-ams.rpki-client.org