Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/IVViU6uwnjN0dCK5pgmPM7bfkxs.roa
File: IVViU6uwnjN0dCK5pgmPM7bfkxs.roa (raw, json)
Hash identifier: 61gPBYp4KXzUguM10nyyGxGIIjgbEP552/Jnl1a5qMM=
Subject key identifier: 21:55:62:53:AB:B0:9E:33:74:74:22:B9:A6:09:8F:33:B6:DF:93:1B
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0D8A666E
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/IVViU6uwnjN0dCK5pgmPM7bfkxs.roa
Signing time: Thu 10 Feb 2022 16:14:59 +0000
ROA not before: Thu 10 Feb 2022 16:14:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50611
IP address blocks: 195.253.65.0/24 maxlen: 24
195.253.66.0/24 maxlen: 24
195.253.96.0/19 maxlen: 24
185.119.138.0/23 maxlen: 23
195.253.64.0/24 maxlen: 24
2a01:5b0:2e::/48 maxlen: 48
2a01:5b0:5::/48 maxlen: 48
2a01:5b0:20::/43 maxlen: 48
2a01:5b0:2b::/48 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:9::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
2a01:5b0:2a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227173998 (0xd8a666e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: Feb 10 16:14:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21556253abb09e33747422b9a6098f33b6df931b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e6:ed:e9:cf:cf:a1:f3:b7:9d:e5:d5:ce:89:
1f:e3:13:66:95:a0:36:3d:17:69:d9:9b:94:a0:dd:
b1:d6:01:3e:1d:23:86:a0:2c:47:5f:fa:39:cd:0a:
4f:18:77:bb:57:31:8e:c2:66:1e:b3:be:25:83:27:
a8:38:b8:22:93:e4:a1:ea:75:e0:9d:d5:ab:ee:91:
e7:e0:57:70:ef:91:26:9a:3d:c5:da:ef:01:65:64:
2b:d1:c9:f6:23:c1:93:36:6a:f8:60:34:82:46:48:
09:bd:c5:57:2b:61:31:10:5f:9a:50:83:29:6b:d7:
dd:f7:eb:06:4e:37:4f:8d:70:64:f3:46:cf:98:d5:
55:45:72:b1:b9:f9:13:ce:30:77:ab:4a:bb:a3:ad:
90:ca:12:31:30:b5:31:79:bb:35:c3:bf:32:8c:c5:
c3:0d:1c:8b:9c:45:01:61:9b:87:74:15:2e:77:84:
6b:0d:1d:ea:ff:c1:80:51:21:c8:d4:88:ef:e0:76:
3d:6e:79:2b:5f:32:f0:3e:f1:10:f2:66:db:3c:e4:
1f:d6:20:4e:c5:7f:0e:21:f8:f9:18:ac:1c:d6:6d:
bb:06:6a:c7:ca:cc:6a:f2:9d:2b:97:41:e2:53:bf:
54:95:29:3f:e7:ed:8d:2c:fe:1a:fc:9f:c8:f1:f4:
ba:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:55:62:53:AB:B0:9E:33:74:74:22:B9:A6:09:8F:33:B6:DF:93:1B
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/IVViU6uwnjN0dCK5pgmPM7bfkxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.138.0/23
195.253.64.0-195.253.66.255
195.253.96.0/19
IPv6:
2a01:5b0:4::-2a01:5b0:6:ffff:ffff:ffff:ffff:ffff
2a01:5b0:9::/48
2a01:5b0:20::/43
Signature Algorithm: sha256WithRSAEncryption
5a:cb:d5:3c:3d:4b:bd:c2:76:8a:12:b3:e2:78:97:3b:33:a3:
2c:d4:c7:0d:98:e2:41:48:cd:d8:b1:20:09:77:17:34:40:6c:
3d:9c:66:82:43:c6:8a:69:bf:37:5e:fa:fc:2d:3d:75:f0:d9:
c6:c5:7b:bb:4a:4b:1c:ff:78:6c:6b:c3:94:8b:d2:0f:e1:32:
3a:a5:af:9f:eb:e6:f8:b2:bf:e7:6e:33:2d:26:79:ff:9e:6b:
c1:67:ef:ca:97:77:e1:b6:e5:92:c0:a8:d0:2d:cd:10:1b:07:
06:9f:53:6e:d4:b8:c7:22:a7:aa:94:7b:2b:b6:08:db:f6:37:
cd:d6:43:e1:a6:3c:c0:37:0a:04:6a:f6:fd:62:64:1d:38:64:
ae:52:78:5f:4d:19:2d:df:9b:d5:86:2c:ca:ca:fb:0a:1a:c9:
b3:bd:c4:dc:01:25:9f:a6:de:26:a2:24:b4:25:d4:2f:1a:14:
58:3e:70:38:83:5a:37:49:e7:85:4a:0b:64:47:a8:ab:01:20:
31:4a:0b:75:ae:26:ce:d2:a4:3d:32:59:6b:54:9a:a0:6b:e1:
b8:5e:28:47:4c:75:27:18:f5:f0:4c:d8:54:7a:7a:68:b1:76:
5e:77:0a:b4:94:31:d2:88:c3:6d:03:9d:24:1e:76:fd:f5:f3:
0a:17:f0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:31 2024 by rpki-client on console-ams.rpki-client.org