Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bdfd19-201a-444d-8d88-6ef4c7c7470b/1/cfM1LlIgpA9ueH6skqaQAuCrEIs.roa
File: cfM1LlIgpA9ueH6skqaQAuCrEIs.roa (raw, json)
Hash identifier: WQkQa0H191SqWhpB0Xno1foJOUVL9r1uKmt6fT2LLoY=
Subject key identifier: 71:F3:35:2E:52:20:A4:0F:6E:78:7E:AC:92:A6:90:02:E0:AB:10:8B
Certificate issuer: /CN=14c51262fe87f4e295ef9e7f87a1f9e49f57c300
Certificate serial: 1179759A
Authority key identifier: 14:C5:12:62:FE:87:F4:E2:95:EF:9E:7F:87:A1:F9:E4:9F:57:C3:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMUSYv6H9OKV755_h6H55J9XwwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bdfd19-201a-444d-8d88-6ef4c7c7470b/1/cfM1LlIgpA9ueH6skqaQAuCrEIs.roa
Signing time: Sat 01 Jan 2022 06:59:26 +0000
ROA not before: Sat 01 Jan 2022 06:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62024
IP address blocks: 185.50.96.0/24 maxlen: 24
185.50.98.0/24 maxlen: 24
185.50.97.0/24 maxlen: 24
2a01:a3e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293172634 (0x1179759a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c51262fe87f4e295ef9e7f87a1f9e49f57c300
Validity
Not Before: Jan 1 06:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71f3352e5220a40f6e787eac92a69002e0ab108b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:81:43:16:a6:d5:b7:28:73:ed:6e:9d:c8:10:
ba:51:2f:c7:d5:a5:29:30:40:14:1c:bc:7b:70:f9:
e9:f5:e4:bc:24:ad:00:8f:0d:7a:f2:2f:c9:33:38:
76:97:f9:0e:27:0d:62:10:1d:4a:48:cb:e3:d9:60:
fb:ac:bd:6c:64:82:cf:e1:26:8e:5f:28:c2:15:2f:
b9:12:52:de:47:d7:c4:d9:3b:cf:42:07:13:c5:e4:
37:68:03:cd:56:94:86:5f:d3:60:66:9c:de:b5:f3:
67:b3:72:63:97:e5:0e:f7:da:15:0d:45:ff:2b:dc:
c6:44:27:87:d5:ed:04:6f:5d:db:44:1a:f1:d8:ed:
16:4f:01:68:b7:93:f9:18:36:85:fa:e8:af:3d:e3:
af:24:0b:6e:cf:2c:79:b3:0f:b2:8b:1a:6d:57:9d:
f6:4f:42:d8:f6:b2:02:95:aa:e5:40:fd:6a:5d:35:
a6:ef:83:21:24:00:01:bb:2e:84:b2:8d:3c:33:c2:
65:4c:59:f9:e2:f9:59:01:96:61:a4:70:0c:9d:14:
a1:a2:8e:33:75:0f:75:75:60:e4:fc:a8:e2:80:d1:
2c:ca:df:26:9c:bd:7b:cf:57:dc:d6:77:f3:7c:c0:
02:11:bb:89:50:be:9a:4d:3d:37:6a:f8:d9:49:b6:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F3:35:2E:52:20:A4:0F:6E:78:7E:AC:92:A6:90:02:E0:AB:10:8B
X509v3 Authority Key Identifier:
keyid:14:C5:12:62:FE:87:F4:E2:95:EF:9E:7F:87:A1:F9:E4:9F:57:C3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMUSYv6H9OKV755_h6H55J9XwwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bdfd19-201a-444d-8d88-6ef4c7c7470b/1/cfM1LlIgpA9ueH6skqaQAuCrEIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bdfd19-201a-444d-8d88-6ef4c7c7470b/1/FMUSYv6H9OKV755_h6H55J9XwwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.96.0-185.50.98.255
IPv6:
2a01:a3e0::/32
Signature Algorithm: sha256WithRSAEncryption
57:d3:18:ff:fd:9b:e8:39:2c:3f:96:c0:6e:ff:1a:9a:49:79:
d4:d1:06:19:17:c4:0a:a6:b4:a5:62:62:1f:c7:13:64:f5:28:
d5:b7:bf:98:5c:31:8b:44:e2:94:51:3d:65:51:e3:34:29:9e:
1d:60:f9:cc:7d:32:b6:ca:34:44:51:8c:f0:ef:ab:2c:3e:67:
15:a0:b2:8b:1a:84:c2:70:fa:d2:2b:41:6c:dd:f0:c2:88:2f:
c9:94:c0:58:73:21:05:eb:37:07:5e:5b:ea:44:77:b1:e2:32:
ce:5c:2c:3c:f9:40:30:24:25:7e:1d:75:62:36:20:d3:af:ef:
67:27:53:84:07:c3:70:31:ea:7b:61:e2:2d:49:62:b6:2f:3d:
4a:e3:96:9c:7e:e8:83:cc:0f:20:ea:c8:ab:07:5e:e0:50:41:
78:05:24:28:58:e6:8b:d4:e6:5c:6a:a3:15:c7:e6:58:25:61:
4d:fa:4a:a7:4b:91:63:cf:4a:0e:07:0e:ea:db:73:01:52:3d:
65:0e:53:58:e5:c6:f1:f0:95:10:52:2f:4e:82:5f:26:53:74:
8f:1b:be:a9:c4:86:93:af:d7:a2:02:1e:10:32:8e:39:eb:25:
e2:9a:10:ff:f7:c8:f0:2a:4c:d2:f1:d2:20:15:4b:68:ea:3d:
1a:c9:60:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org