Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/lzAElrNUxcSgPfT2vbBGRU_QG98.roa
File: lzAElrNUxcSgPfT2vbBGRU_QG98.roa (raw, json)
Hash identifier: aOhRPvQfnKQeog2PIUqSYXG9xVH3869fBQe+6osyawc=
Subject key identifier: 97:30:04:96:B3:54:C5:C4:A0:3D:F4:F6:BD:B0:46:45:4F:D0:1B:DF
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0182438F5708ED53712D0AE18CB4D3CB871C
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/lzAElrNUxcSgPfT2vbBGRU_QG98.roa
Signing time: Thu 28 Jul 2022 06:47:23 +0000
ROA not before: Thu 28 Jul 2022 06:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25052
IP address blocks: 83.229.80.0/24 maxlen: 24
31.133.101.0/24 maxlen: 24
185.162.127.0/24 maxlen: 24
109.207.77.0/24 maxlen: 24
109.207.78.0/24 maxlen: 24
185.220.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:8f:57:08:ed:53:71:2d:0a:e1:8c:b4:d3:cb:87:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jul 28 06:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97300496b354c5c4a03df4f6bdb046454fd01bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e0:7d:ce:6b:f2:42:cc:56:47:ab:29:da:78:
13:63:74:ba:5e:06:a7:57:fd:21:77:a4:2b:fb:aa:
49:ff:d0:bc:5f:57:38:be:b9:f6:2f:33:aa:df:e3:
be:13:c4:e4:90:35:22:47:6c:16:df:61:72:b3:7c:
59:95:f1:96:97:31:14:7e:b1:9e:fd:e2:f1:9d:a7:
d7:fc:ff:b0:9a:11:f5:02:7f:2e:d5:99:a2:82:42:
5c:68:7d:63:2a:db:14:23:4e:68:4c:1c:c7:e5:ae:
00:43:fd:5b:72:78:b9:e9:e0:b9:b8:f6:f7:84:84:
b5:8c:38:24:71:9e:b1:4d:fd:bc:ba:f9:69:df:5b:
05:1c:fd:94:22:11:57:a6:0f:87:0b:72:88:a6:f1:
5e:66:6c:95:1f:7e:ce:a9:b1:b7:ba:ef:b4:39:27:
f5:1e:c6:db:af:57:7a:90:65:e9:cf:bd:31:82:5b:
8d:ba:0a:af:41:ea:7a:7d:ae:31:65:52:4e:0b:9d:
f6:b2:7c:7c:e0:4f:99:09:d1:30:c4:21:2b:89:f6:
79:4a:50:57:72:ac:b8:4f:46:ea:9d:74:f3:7a:dc:
f4:d1:25:da:47:b2:88:73:4c:8c:02:ff:16:c5:fb:
51:20:c3:02:e1:82:77:6c:55:ce:20:05:84:ad:6a:
29:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:30:04:96:B3:54:C5:C4:A0:3D:F4:F6:BD:B0:46:45:4F:D0:1B:DF
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/lzAElrNUxcSgPfT2vbBGRU_QG98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.101.0/24
83.229.80.0/24
109.207.77.0-109.207.78.255
185.162.127.0/24
185.220.206.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c2:86:d0:76:3f:d3:bc:75:64:84:30:3f:c7:f7:82:bc:f0:
a9:f3:e8:3c:85:a1:2a:5d:3c:09:06:75:e4:29:d3:f0:35:31:
a5:b5:04:75:6e:c4:6b:b1:8f:a9:65:9b:60:3d:bb:3f:0f:b1:
9e:63:9b:1c:20:5a:3d:a6:73:89:7e:d0:fc:de:67:a9:d7:0c:
5b:c8:f7:bd:d9:da:5f:d2:5a:a8:9e:2e:57:bd:08:9f:da:23:
b8:0c:0f:a3:a2:e1:05:53:c6:cf:4d:ee:e2:6d:52:de:fa:e8:
74:c2:59:8a:db:51:98:0d:32:22:8c:11:a2:4c:3e:2f:95:17:
ef:fc:53:66:0f:67:6e:2e:f6:2f:4b:a3:28:39:46:59:d3:e8:
47:30:62:e0:82:a5:00:8c:9d:f5:7b:59:e5:79:97:0c:2a:30:
26:72:bb:1c:f4:b6:bd:e1:62:f0:cc:4f:34:c8:46:af:20:08:
38:31:20:77:9a:d7:51:5e:05:b0:0e:f0:63:e5:17:f9:f4:90:
0c:07:4e:c8:81:44:75:1e:b7:4e:cc:e8:58:05:c8:86:6c:ca:
a6:57:6c:eb:4e:29:42:b2:81:e2:34:9f:c2:05:46:91:a7:82:
28:76:09:32:2d:a0:2a:39:3c:37:e7:1c:79:14:9f:bf:f5:38:
85:b6:7d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:25 2023 by rpki-client on console-ams.rpki-client.org