Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/M0izWafZNsYRrqIpbCD-XtFocaY.roa
File: M0izWafZNsYRrqIpbCD-XtFocaY.roa (raw, json)
Hash identifier: PkVzzYLNiX6+craj4seCb/HX5GxDb4n7c76d6dhbtH0=
Subject key identifier: 33:48:B3:59:A7:D9:36:C6:11:AE:A2:29:6C:20:FE:5E:D1:68:71:A6
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0E6A7630
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/M0izWafZNsYRrqIpbCD-XtFocaY.roa
Signing time: Wed 18 May 2022 08:41:17 +0000
ROA not before: Wed 18 May 2022 08:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8561
IP address blocks: 195.253.66.0/24 maxlen: 24
195.253.74.0/24 maxlen: 24
195.253.88.0/21 maxlen: 24
195.253.96.0/19 maxlen: 24
185.119.136.0/22 maxlen: 24
194.77.54.0/23 maxlen: 23
195.253.64.0/24 maxlen: 24
2a01:5b0:d::/48 maxlen: 48
2a01:5b0:3::/48 maxlen: 48
2a01:5b0:8::/46 maxlen: 48
2a01:5b0:10::/45 maxlen: 48
2a01:5b0:20::/43 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241858096 (0xe6a7630)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: May 18 08:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3348b359a7d936c611aea2296c20fe5ed16871a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:47:62:c1:db:d6:96:42:53:b4:33:a2:d8:
bf:52:c8:8b:86:0e:74:0b:b8:37:4f:08:65:96:5e:
c5:66:e0:2d:29:4d:4a:2f:77:ab:53:b3:8d:b8:68:
eb:a3:13:aa:83:cc:24:16:60:9c:61:23:01:6f:f5:
2a:6d:0a:ed:11:e0:4e:80:0f:e7:04:ae:cc:fa:5b:
fc:0f:f4:f0:40:30:c2:c1:0b:bb:59:92:dc:09:dc:
b5:f0:65:19:08:f8:01:8f:3a:b0:75:b7:b8:67:5e:
30:ff:dd:e8:40:a4:46:90:ac:af:b3:41:d3:8b:2f:
ce:4a:50:33:c7:78:c6:ac:d8:fe:99:c7:98:08:4a:
3b:12:41:e7:3a:59:83:dd:4c:b5:25:f3:19:f7:2e:
c3:ab:2e:a9:8a:d9:f5:d9:23:c6:ed:d7:74:68:84:
7a:9f:e7:3b:74:1e:ad:23:27:9f:be:fb:02:7e:97:
69:b9:5f:ca:3a:df:71:06:c2:1a:ba:4e:35:dd:1e:
c9:d5:30:7e:90:2e:e2:8f:29:39:88:6a:13:da:fb:
99:78:70:e8:df:63:64:04:04:06:6e:7c:24:02:e4:
ac:24:bf:63:20:34:89:62:3a:29:93:e8:aa:de:8d:
26:81:4b:f1:af:7f:ca:d8:52:24:0e:16:b5:92:94:
64:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:48:B3:59:A7:D9:36:C6:11:AE:A2:29:6C:20:FE:5E:D1:68:71:A6
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/M0izWafZNsYRrqIpbCD-XtFocaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.136.0/22
194.77.54.0/23
195.253.64.0/24
195.253.66.0/24
195.253.74.0/24
195.253.88.0-195.253.127.255
IPv6:
2a01:5b0:3::-2a01:5b0:4:ffff:ffff:ffff:ffff:ffff
2a01:5b0:6::/48
2a01:5b0:8::/46
2a01:5b0:d::/48
2a01:5b0:10::/45
2a01:5b0:20::/43
Signature Algorithm: sha256WithRSAEncryption
66:0c:ff:7e:f6:7c:6b:30:04:18:75:f5:da:f6:38:d5:48:23:
8c:ff:18:a0:db:9f:3e:29:c3:6d:a7:7d:22:22:8b:e3:cd:0a:
fe:69:69:50:89:b2:52:c6:e2:5d:c3:79:b0:26:79:89:94:78:
c8:d5:e7:da:6f:f1:d7:c9:53:3c:54:2f:80:3b:1f:1c:3e:11:
62:e6:23:62:e4:4f:2c:6c:b9:56:36:f3:7a:83:64:4f:31:d7:
47:a1:f3:ce:9b:0e:62:46:c5:e7:3c:27:91:39:d2:cd:26:1d:
3a:a5:a7:ac:39:53:ea:f0:53:a8:83:a4:2e:bc:e2:3f:bd:9b:
58:3a:52:be:2c:13:22:15:2f:51:7f:99:66:6e:ca:ce:bc:92:
51:08:26:fa:4a:16:bc:f7:40:61:38:df:67:a9:1c:59:85:84:
27:9e:f3:56:fa:04:3e:ea:e6:cd:99:f3:b9:73:47:c5:5f:73:
9d:c0:12:d5:97:0c:51:47:22:3d:b1:1c:13:9d:18:58:4d:78:
ab:bf:29:4b:c2:19:90:ca:ca:fb:d0:c5:3d:21:c3:43:ec:c1:
b4:55:6d:e6:90:e9:39:2f:c3:f8:e5:07:00:ef:d1:ec:7a:87:
c2:f5:b1:5b:27:31:b2:bc:8b:5b:c0:64:70:38:f7:c7:fa:11:
d6:a2:c2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org