Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/FxSLQfFZs3esSI1Dcp65GWj9Cwc.roa
File: FxSLQfFZs3esSI1Dcp65GWj9Cwc.roa (raw, json)
Hash identifier: JGzl2Y/qUoS3ALtFSGKGNlw85q4ufq1WmaPVNSj0Vzk=
Subject key identifier: 17:14:8B:41:F1:59:B3:77:AC:48:8D:43:72:9E:B9:19:68:FD:0B:07
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 018BF801FBFDB4B541AFD2AD8629B490540B
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/FxSLQfFZs3esSI1Dcp65GWj9Cwc.roa
Signing time: Wed 22 Nov 2023 17:09:21 +0000
ROA not before: Wed 22 Nov 2023 17:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 193.56.173.0/24 maxlen: 24
37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
193.56.126.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.192.0/24 maxlen: 24
185.107.193.0/24 maxlen: 24
185.107.194.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
185.245.168.0/22 maxlen: 22
185.101.95.0/24 maxlen: 24
185.101.92.0/22 maxlen: 22
185.101.93.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
185.116.159.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:7f80:3::/48 maxlen: 48
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f8:01:fb:fd:b4:b5:41:af:d2:ad:86:29:b4:90:54:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Nov 22 17:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17148b41f159b377ac488d43729eb91968fd0b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d0:38:14:52:77:62:f2:48:73:5f:f7:27:68:
13:a0:25:83:b4:c7:52:5f:ac:65:32:36:70:d8:0c:
b9:a8:8b:c9:f6:ac:0f:81:27:17:cd:0c:5a:fb:de:
e4:34:0a:bf:c7:cc:eb:04:7d:6e:a0:70:3c:10:84:
b3:3f:dd:ae:a2:92:bb:0d:db:88:19:ad:fa:d0:88:
7f:fb:b9:0b:a1:84:54:25:35:38:f1:5e:8e:60:56:
ae:8e:cc:a4:f8:3f:02:14:b4:3b:0b:fc:3f:de:d7:
25:b7:70:9c:d1:7b:d7:0a:9c:dc:78:aa:86:44:3c:
a8:fb:9c:63:54:93:9f:86:c5:7e:79:d5:36:d6:02:
4e:51:9b:ad:a7:f2:19:8d:9d:0e:b5:c8:e7:85:ee:
d7:76:7d:17:9e:6a:5d:91:3a:62:91:fc:e6:40:84:
6e:e5:5f:eb:9c:6e:35:9c:c7:4d:07:6b:ac:65:24:
13:59:1a:4f:b0:9c:a9:3f:1a:21:6b:c9:70:f8:c0:
4a:6f:82:fb:e6:22:a3:bf:cd:98:96:43:42:d1:f4:
25:0a:d8:c2:bf:72:a3:f9:1b:63:20:44:0c:be:9e:
c7:3d:7d:cd:8d:be:85:0e:43:1b:10:1b:40:4a:2b:
35:49:d9:37:34:88:e8:a7:71:06:d7:49:80:8f:f2:
d3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:14:8B:41:F1:59:B3:77:AC:48:8D:43:72:9E:B9:19:68:FD:0B:07
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/FxSLQfFZs3esSI1Dcp65GWj9Cwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.126.0/24
193.56.156.0/24
193.56.173.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
b4:c4:9f:a9:26:ae:89:21:23:18:f4:9b:c8:ed:2c:21:19:73:
77:c4:2f:2a:ac:aa:08:1a:e5:10:99:ba:a1:8d:1e:01:87:39:
b5:b4:04:24:70:79:74:47:a1:1a:0c:dd:b9:96:16:11:b5:31:
87:60:bf:37:b8:22:e0:21:0e:50:0a:d6:f7:2b:37:ff:51:b8:
19:e2:a6:8d:24:f1:4e:ee:b7:6b:fe:44:3f:12:77:9c:1f:0d:
f3:9e:49:e8:db:d1:95:ce:ef:64:92:f5:eb:00:6b:b6:60:02:
6f:51:be:38:43:a6:cb:a4:87:3c:2c:14:4e:17:2b:ed:cd:58:
ea:6d:b7:73:16:90:fc:c0:f9:fc:8d:a9:ff:42:0f:31:9b:11:
a6:ad:1b:e9:ea:c9:90:49:27:c7:64:80:16:cc:6c:10:f7:ed:
40:e4:8c:83:0a:53:17:6f:0e:56:8e:b7:91:41:2a:59:0d:86:
ad:ec:b1:29:88:55:ce:d0:ea:0b:29:34:90:68:03:a3:f5:f8:
d4:bb:ca:a8:17:7a:6e:65:6d:87:b1:67:72:cd:45:d4:37:4c:
63:34:d2:17:d4:78:71:80:a8:86:19:42:48:35:a8:af:12:f1:
5a:fc:34:9b:e6:96:50:3b:30:b9:71:ba:6b:b7:65:c7:bb:c8:
5d:79:6c:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:47 2025 by rpki-client