Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/40h5jDqGlMJKSDyIyDTURPh5408.roa
File: 40h5jDqGlMJKSDyIyDTURPh5408.roa (raw, json)
Hash identifier: XCF332d/POLwn/Yuzxo74eHU5OXEk5pPAPkS8F7p/No=
Subject key identifier: E3:48:79:8C:3A:86:94:C2:4A:48:3C:88:C8:34:D4:44:F8:79:E3:4F
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 018BD289A26ADEC6105201282D35661E819C
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/40h5jDqGlMJKSDyIyDTURPh5408.roa
Signing time: Wed 15 Nov 2023 10:31:57 +0000
ROA not before: Wed 15 Nov 2023 10:31:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 193.56.173.0/24 maxlen: 24
37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
193.56.126.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.192.0/24 maxlen: 24
185.107.193.0/24 maxlen: 24
185.107.194.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
185.245.168.0/22 maxlen: 22
185.101.95.0/24 maxlen: 24
185.101.92.0/22 maxlen: 22
185.101.93.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
185.116.159.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:7f80:3::/48 maxlen: 48
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:89:a2:6a:de:c6:10:52:01:28:2d:35:66:1e:81:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Nov 15 10:31:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e348798c3a8694c24a483c88c834d444f879e34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:d8:b1:37:20:35:03:e7:87:7a:7d:83:69:
15:97:42:82:bc:b8:ae:18:3b:8d:5f:b2:48:c9:4f:
7d:50:3c:02:68:b8:e7:c2:9f:16:35:8f:9d:bf:51:
99:e3:66:50:8d:84:5b:01:b9:fe:33:ec:7e:8f:2f:
85:46:0e:ca:8e:db:e1:35:3a:4e:fd:0e:3a:cd:b0:
ff:a0:e3:03:94:3c:5e:08:2a:f0:e8:58:98:31:d6:
1c:8c:48:7b:d4:c7:3f:d2:ff:1a:77:69:de:4c:c8:
7b:7a:c4:b4:b8:93:34:0b:eb:a4:9c:3b:80:f1:a8:
26:19:d1:34:0d:35:b1:31:76:16:1e:f6:e2:1e:f5:
f5:2b:3c:5a:e3:6c:45:a5:be:78:36:86:0c:d0:31:
bd:f0:e3:d3:39:d3:b8:53:d5:58:85:63:4a:5a:f1:
2c:4a:d2:63:13:93:87:88:f9:68:c6:a0:c5:c6:53:
07:90:2f:40:4c:83:a7:86:1a:38:23:6d:3f:28:ef:
df:35:97:f4:cf:94:a8:de:68:b6:9b:10:77:00:4c:
31:ad:ae:10:ad:1c:a9:21:84:d1:06:b8:cd:01:43:
bd:99:46:15:39:d7:26:64:ac:fe:00:51:7b:8f:fd:
d2:91:aa:79:e0:d3:6e:52:85:81:e6:90:ae:49:af:
18:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:48:79:8C:3A:86:94:C2:4A:48:3C:88:C8:34:D4:44:F8:79:E3:4F
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/40h5jDqGlMJKSDyIyDTURPh5408.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.126.0/24
193.56.156.0/24
193.56.173.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
b8:33:62:5f:3f:06:1b:f0:bd:8c:62:58:a2:91:7e:8e:f9:c6:
0a:ae:9f:e8:05:22:03:d3:60:32:3c:d3:1b:34:cf:99:5f:b2:
79:2c:9c:0c:55:76:bf:72:8a:9b:d3:f1:de:bb:40:00:8c:f7:
2b:19:eb:28:fa:c1:6d:ff:61:63:e2:7a:1a:84:b1:ee:9b:d8:
93:6d:09:91:5d:e6:c4:b5:6b:1c:05:dd:cf:ec:8d:cb:72:8e:
63:db:a1:41:59:49:a5:b4:67:ad:2e:81:d6:1b:a4:50:49:ab:
c9:ea:bc:b6:29:41:f3:2b:76:17:80:4d:ea:9f:e9:08:0a:3d:
0b:ae:eb:8e:6b:e3:bc:05:83:89:25:c4:09:f7:9b:d2:6d:f1:
9c:7c:be:b1:a9:88:28:6b:50:fe:80:35:45:e7:10:57:cb:f5:
f5:74:4f:e9:06:ef:45:d1:40:44:c1:b2:87:71:05:72:17:dc:
de:0b:c9:80:14:55:d0:3d:b8:a3:e1:2f:68:79:80:1d:5e:15:
d4:fd:b4:8d:88:98:e1:64:e2:60:5e:1f:33:81:83:aa:8d:8a:
16:40:d0:c6:30:f0:31:cb:5f:75:cf:63:d9:7c:16:1a:6d:46:
5f:32:00:ae:a0:08:1d:72:32:5f:dc:86:77:78:a2:97:75:66:
e7:ad:f6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:18 2025 by rpki-client