Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Efmot85BC-c-un8qz71e0iYutzY.roa
File: Efmot85BC-c-un8qz71e0iYutzY.roa (raw, json)
Hash identifier: 79G5rouXb+AQLtxAZAuqDl1KpOIWNwt7EDEqViiZqlU=
Subject key identifier: 11:F9:A8:B7:CE:41:0B:E7:3E:BA:7F:2A:CF:BD:5E:D2:26:2E:B7:36
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A6981A683A618018CDDEC605E1AF4A9
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Efmot85BC-c-un8qz71e0iYutzY.roa
Signing time: Wed 20 Jul 2022 07:01:38 +0000
ROA not before: Wed 20 Jul 2022 07:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200724
IP address blocks: 213.33.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:69:81:a6:83:a6:18:01:8c:dd:ec:60:5e:1a:f4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11f9a8b7ce410be73eba7f2acfbd5ed2262eb736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2f:c6:1e:0c:28:d9:24:66:92:29:84:c3:79:
8e:d0:0d:06:08:d1:7f:88:8b:ea:ea:19:96:f6:dd:
9c:a4:a5:bc:ef:06:ae:5a:bf:50:6a:e9:df:1d:02:
24:64:f6:13:8a:7d:e6:78:8d:5b:49:08:60:b0:fb:
e2:b3:8d:b1:82:b8:82:bd:60:18:a7:a2:54:4a:cc:
64:db:87:bb:78:4f:0b:88:f2:e8:ff:46:90:94:d0:
73:a9:41:43:8a:72:1b:6b:ed:15:ab:d0:32:2c:9e:
d5:4a:17:f1:34:46:11:6a:71:76:02:dd:24:ee:73:
8a:bc:9f:12:f6:c9:03:0b:a5:ae:f3:83:34:8f:e0:
c9:03:23:28:c1:9c:a8:30:6a:56:b1:8f:4c:47:09:
1a:fa:f5:ad:4a:2e:be:4a:99:d0:bd:cf:19:f3:1a:
96:2a:02:0f:21:14:69:e6:93:f6:1e:4d:28:bd:c0:
3a:04:43:b5:aa:60:9b:fb:64:ca:58:5c:b3:03:ca:
c0:be:8a:67:92:b3:71:d5:94:5d:02:59:9b:e9:ab:
76:d4:ff:d9:df:e0:bd:32:4a:95:a8:c6:e3:25:6c:
b3:6b:7b:29:fa:21:47:d3:61:54:cb:49:30:f4:7a:
84:38:8b:0d:d7:af:2d:03:74:60:ff:9b:23:67:31:
bb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F9:A8:B7:CE:41:0B:E7:3E:BA:7F:2A:CF:BD:5E:D2:26:2E:B7:36
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Efmot85BC-c-un8qz71e0iYutzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.33.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:c7:d0:a6:7e:cc:d0:3f:fb:fa:99:2b:a7:38:d6:70:1c:18:
61:97:f4:44:c5:40:b6:74:87:3f:2f:2d:c9:91:da:ed:75:54:
8f:ff:11:c5:90:37:b8:c9:71:97:b6:9f:a5:c2:25:7f:12:db:
ed:69:91:6e:d5:05:ae:8c:b3:9d:bb:fb:32:fa:40:4a:e0:92:
a4:0e:24:45:83:ab:e8:67:9d:a1:67:4e:38:79:0a:ab:3b:81:
52:92:d7:ff:9f:96:45:b2:75:95:fb:ec:ec:4a:63:fc:60:d6:
67:cf:f0:44:8d:7f:32:3b:d8:7c:77:be:34:cd:64:3c:bc:f1:
3f:00:66:f2:d0:53:9c:9c:e5:c7:89:54:b9:96:7f:68:f3:af:
06:33:3d:f9:94:13:68:dc:8e:1d:28:9b:a8:86:9b:7e:33:a8:
4a:c7:7c:da:3b:0c:58:68:64:b4:4c:69:71:98:92:95:21:59:
6a:09:f5:0f:d0:40:dc:57:14:6f:b4:a6:aa:e1:af:ac:2e:11:
54:39:27:1e:87:3e:73:3e:77:3b:94:0b:cd:67:de:c5:68:41:
ca:6a:73:be:ab:62:5f:a8:cd:2d:82:d5:a5:c0:36:09:39:b4:
28:24:9c:1b:ad:f0:4e:d1:e4:c8:2b:37:fa:47:e0:7f:3e:aa:
f5:80:a3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-ams.rpki-client.org