Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/M8VNzPFU7o9K_aFFLM4-0SC2bX4.roa
File: M8VNzPFU7o9K_aFFLM4-0SC2bX4.roa (raw, json)
Hash identifier: LNsIpbGgIresR2YGXmUEX/mZSNwEPUd5Uw8J/Vi+yI0=
Subject key identifier: 33:C5:4D:CC:F1:54:EE:8F:4A:FD:A1:45:2C:CE:3E:D1:20:B6:6D:7E
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 065B2D6D
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/M8VNzPFU7o9K_aFFLM4-0SC2bX4.roa
Signing time: Wed 30 Mar 2022 06:06:02 +0000
ROA not before: Wed 30 Mar 2022 06:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203420
IP address blocks: 194.50.176.0/24 maxlen: 24
2a0a:4540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106638701 (0x65b2d6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Mar 30 06:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33c54dccf154ee8f4afda1452cce3ed120b66d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a4:54:80:06:12:4d:6f:6f:39:c9:bb:6f:ad:
c0:f9:e8:11:6c:c2:be:06:1e:bd:6c:74:08:34:5d:
23:e1:bb:8d:49:20:04:93:9b:5e:6d:4b:79:53:aa:
f6:2a:5a:f2:20:82:93:1d:f5:f4:0f:3e:f5:3f:ad:
16:3c:35:8b:e6:bc:08:c5:63:5b:48:72:6c:8d:dd:
c6:52:31:07:d5:56:a8:f0:0c:bd:69:5c:6f:a0:6a:
8c:b7:a2:f5:74:19:6d:f1:b8:1a:40:fe:6f:9f:96:
03:e8:09:1f:0b:04:33:bd:50:4f:45:a7:8b:7f:82:
64:08:10:c1:5f:f6:73:03:e0:6e:b0:a0:6d:94:62:
b4:bc:43:be:d3:a4:81:be:0e:16:4c:2d:22:50:ca:
e4:34:47:89:1a:48:70:f2:d7:a4:87:12:b0:cf:01:
f1:28:36:7b:e9:84:5f:50:80:de:a7:90:c4:dc:2d:
f0:c1:cb:7a:29:8d:0f:c5:78:39:00:f3:08:a5:71:
17:94:38:40:54:8b:52:43:c7:1f:26:2a:f1:83:10:
b5:d6:cd:63:3f:83:91:fb:6c:76:d0:52:1b:9b:31:
db:7c:d6:eb:b0:02:4d:24:1c:b5:0d:2e:42:c9:a4:
9e:7d:43:ba:4a:43:af:08:9d:1d:49:4b:5f:13:2f:
49:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C5:4D:CC:F1:54:EE:8F:4A:FD:A1:45:2C:CE:3E:D1:20:B6:6D:7E
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/M8VNzPFU7o9K_aFFLM4-0SC2bX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.176.0/24
IPv6:
2a0a:4540::/48
Signature Algorithm: sha256WithRSAEncryption
30:0c:20:55:17:62:14:91:0a:a9:44:97:22:94:13:7b:1e:4e:
41:9d:b8:d1:a7:d5:8f:06:6e:94:74:26:40:2a:ef:5b:52:64:
22:0a:1a:c6:7c:9a:b6:73:51:8b:2b:5c:c2:e0:4e:70:2d:30:
9f:71:64:a5:d1:de:36:3a:e0:a3:54:62:5f:19:2f:5f:a6:2b:
c3:20:db:32:4c:87:6f:4e:0d:86:de:a3:85:7d:4b:65:0a:53:
09:86:41:34:df:c9:a0:44:0d:5f:2a:36:c5:76:1f:84:83:7e:
b4:52:44:04:b8:41:a4:a3:d6:c3:8e:f8:53:4c:1f:ae:72:bc:
d9:1d:b4:1f:c9:08:c4:fa:b9:0c:b3:23:9c:c6:a9:cd:02:f4:
b2:07:f2:0e:b3:46:6b:04:9e:1d:78:cf:b5:1c:88:de:ff:b6:
57:cd:56:92:a6:b2:f5:cc:fd:8d:27:12:c6:4f:ef:78:f1:74:
91:49:79:66:56:a4:77:6c:e0:6d:02:11:02:4c:f3:0b:ea:cc:
48:3c:37:a2:12:3d:08:eb:07:66:46:b2:e1:ce:98:6c:26:36:
e9:ac:26:ff:9d:65:22:96:99:d4:dd:72:e0:3a:60:43:e1:21:
4b:b0:eb:95:8f:23:0b:1b:45:a0:e9:dd:d6:4e:08:46:a8:c1:
80:2d:15:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org