Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/QSZVjko1RNE0USYUMdALbG8Ry1c.roa
File: QSZVjko1RNE0USYUMdALbG8Ry1c.roa (raw, json)
Hash identifier: 8t9pjmRTBGrvy4oj4lpKM6OyBgtlgp0299L0dB5S3T8=
Subject key identifier: 41:26:55:8E:4A:35:44:D1:34:51:26:14:31:D0:0B:6C:6F:11:CB:57
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 06AA46DA
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/QSZVjko1RNE0USYUMdALbG8Ry1c.roa
Signing time: Tue 31 May 2022 11:54:13 +0000
ROA not before: Tue 31 May 2022 11:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204035
IP address blocks: 37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
185.101.92.0/22 maxlen: 22
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/22 maxlen: 22
185.107.193.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
185.245.168.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111822554 (0x6aa46da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: May 31 11:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4126558e4a3544d13451261431d00b6c6f11cb57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:05:ff:98:73:bb:d7:eb:e8:2e:7e:29:a9:d4:
d1:25:d2:3b:95:86:64:15:57:a6:5d:da:1d:76:63:
b8:07:4a:9b:0b:24:40:39:ed:ae:0b:65:13:d4:d8:
ee:f7:2d:87:30:fe:c1:12:00:19:08:ac:7f:8f:76:
71:16:5c:fe:77:1c:24:53:76:f7:42:94:48:51:2e:
6f:49:50:6d:b3:5d:4e:0c:5a:23:e2:ad:f1:68:7b:
f1:bc:4a:eb:69:e8:f3:5f:5a:a1:70:3c:b0:df:1c:
81:d2:2a:ae:6c:d5:83:f2:c6:5e:70:1f:73:eb:24:
9f:80:c8:75:62:e2:c0:cd:52:7d:2e:4f:89:6d:46:
c9:43:6d:6a:d9:d3:49:ed:02:40:a9:44:12:d2:95:
4d:b5:c8:49:c4:70:cd:d9:aa:6e:cf:8b:cc:f1:08:
0a:b6:d4:72:1a:53:d0:83:0b:a8:f2:f6:3e:53:0f:
c9:09:a8:9b:08:b9:ca:9a:90:b6:d9:f9:b4:2c:7f:
8a:c3:57:16:90:e5:90:3a:5e:93:80:93:a1:6f:17:
22:09:bd:24:9e:a6:b4:4f:64:05:26:73:d9:06:18:
44:04:93:0c:c3:56:fe:bd:3a:72:9f:a3:c8:2f:dc:
72:e5:e5:ce:9f:d2:30:84:81:77:59:3a:de:ff:d8:
d6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:26:55:8E:4A:35:44:D1:34:51:26:14:31:D0:0B:6C:6F:11:CB:57
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/QSZVjko1RNE0USYUMdALbG8Ry1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.156.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
8f:b2:8e:3f:4c:75:2b:52:a6:cd:d0:c3:68:98:41:dc:54:e1:
1b:86:b4:3b:8d:16:92:4d:31:34:92:bc:27:16:ef:9e:1a:9b:
98:61:17:33:09:ca:3b:eb:c3:da:f6:97:2e:b0:cf:0e:a2:d7:
84:27:28:eb:0a:a3:21:1e:aa:11:b2:d2:c3:27:b1:98:cb:90:
f9:ab:0b:8a:70:f9:81:9b:aa:54:62:b7:e2:55:1d:c9:2d:fb:
d6:aa:8f:13:a6:e8:7d:ec:98:61:7c:19:91:1f:f8:60:a0:d3:
9a:ab:fe:0d:1c:02:81:3d:1b:3a:19:0b:85:52:54:cb:65:37:
d5:64:26:fe:8a:1f:25:74:e3:65:23:4e:f2:f5:ab:77:fd:00:
60:3f:d2:8d:02:4a:90:36:15:e8:e6:60:2f:13:23:7f:ee:85:
4f:a1:53:25:86:91:df:5b:17:a9:ba:78:21:ff:6f:b4:61:cd:
53:dd:1a:26:96:8a:c1:c6:35:83:83:ad:a0:f0:fd:47:3f:ed:
a9:66:fc:b6:02:55:0c:69:22:06:0f:08:56:c7:07:29:42:c6:
73:3b:6b:c9:1a:b7:8a:6f:41:59:be:cc:ec:05:6d:98:78:29:
4a:07:cc:53:21:08:51:3e:10:29:60:e4:af:1b:ee:40:58:b9:
4c:ea:84:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:35 2025 by rpki-client