Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/P4X2_FErC0gEkNk78QGlJjhSMY0.roa
File: P4X2_FErC0gEkNk78QGlJjhSMY0.roa (raw, json)
Hash identifier: tE39ZIzZsupOjhNO+DHSjuOyhaxEYorLdySVjIL1za0=
Subject key identifier: 3F:85:F6:FC:51:2B:0B:48:04:90:D9:3B:F1:01:A5:26:38:52:31:8D
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0D2EA683
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/P4X2_FErC0gEkNk78QGlJjhSMY0.roa
Signing time: Sat 01 Jan 2022 06:01:42 +0000
ROA not before: Sat 01 Jan 2022 06:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8561
IP address blocks: 195.253.66.0/24 maxlen: 24
195.253.74.0/24 maxlen: 24
195.253.96.0/24 maxlen: 24
195.253.96.0/19 maxlen: 24
195.253.97.0/24 maxlen: 24
195.253.98.0/24 maxlen: 24
195.253.99.0/24 maxlen: 24
195.253.100.0/24 maxlen: 24
195.253.102.0/24 maxlen: 24
194.77.54.0/23 maxlen: 23
195.253.64.0/24 maxlen: 24
2a01:5b0:d::/48 maxlen: 48
2a01:5b0:3::/48 maxlen: 48
2a01:5b0:23::/48 maxlen: 48
2a01:5b0:21::/48 maxlen: 48
2a01:5b0:22::/48 maxlen: 48
2a01:5b0:20::/43 maxlen: 48
2a01:5b0:20::/48 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:26::/48 maxlen: 48
2a01:5b0:24::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221161091 (0xd2ea683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: Jan 1 06:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f85f6fc512b0b480490d93bf101a5263852318d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:2a:0c:05:af:33:6b:66:ae:6a:43:de:8e:
f8:b5:a1:85:df:ad:b7:cb:65:46:c1:88:c5:3b:63:
e1:e6:90:6f:a7:fb:db:91:93:67:df:bf:25:f4:cc:
9d:43:8d:e9:81:d1:70:3b:2c:2f:80:32:f0:d7:82:
06:81:b6:8a:0f:52:ee:48:a1:3a:08:86:16:ec:c7:
48:24:fe:84:b5:bc:33:d1:05:a8:72:d2:cb:91:dd:
7c:e9:4d:48:89:df:21:0b:7d:e8:aa:92:32:e3:7d:
b8:f6:08:76:c8:04:28:fa:3d:6b:2b:a7:6b:e3:2c:
68:4e:d9:3d:5d:d6:e1:b6:a6:29:6c:66:39:29:30:
62:3c:d8:e2:ff:20:db:d9:f9:c9:b8:d1:01:7f:60:
f2:a7:48:7f:ba:83:8d:dd:cc:2c:47:a9:f6:be:7e:
9d:c8:b3:84:71:6c:35:ab:03:69:be:63:25:43:1b:
0a:72:0a:dc:e0:bf:16:23:10:5e:3c:96:5f:07:ff:
db:a5:14:33:bc:06:40:04:68:4c:ea:ab:55:07:3d:
a7:51:58:97:34:97:b4:01:60:d4:6b:48:07:b9:fa:
ee:6a:b4:ac:cd:21:d2:bf:f5:a8:27:bc:66:d8:69:
58:f9:e3:86:da:5d:92:82:48:80:2b:65:fa:f2:bd:
06:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:85:F6:FC:51:2B:0B:48:04:90:D9:3B:F1:01:A5:26:38:52:31:8D
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/P4X2_FErC0gEkNk78QGlJjhSMY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.77.54.0/23
195.253.64.0/24
195.253.66.0/24
195.253.74.0/24
195.253.96.0/19
IPv6:
2a01:5b0:3::-2a01:5b0:4:ffff:ffff:ffff:ffff:ffff
2a01:5b0:6::/48
2a01:5b0:d::/48
2a01:5b0:20::/43
Signature Algorithm: sha256WithRSAEncryption
8b:ef:82:4a:3e:a2:85:f4:a3:f4:1c:2c:8f:f9:0c:66:79:a9:
ca:68:bd:2b:3e:29:be:96:db:b3:26:98:57:57:f8:b8:dd:75:
82:11:6e:41:ea:69:ea:57:10:b9:3f:85:b3:6a:84:c1:8c:06:
cb:f0:e8:07:31:6b:0a:7c:b1:db:ab:ae:83:cf:bc:01:d1:a5:
56:00:00:b4:75:a7:1d:92:ee:fa:77:a0:9a:23:df:64:77:67:
b8:bc:e0:1f:c9:65:61:09:59:e8:36:19:7a:e8:37:b6:7d:5c:
25:7e:27:4f:2f:8c:1b:71:93:8c:f2:c3:b3:63:cf:a3:af:74:
04:fa:e6:a0:dd:65:69:7e:fa:ac:e4:ca:c1:7c:d3:ef:20:af:
f8:2b:ce:a7:ad:89:a7:98:75:46:43:5f:a1:5b:bf:91:a1:80:
f8:3d:26:07:5c:7b:14:06:e3:9c:f3:12:01:2e:c3:ab:f1:d9:
98:3d:c8:7a:b4:b2:b6:23:e1:2c:3a:6a:6c:e5:8e:cb:ec:57:
1f:62:e6:31:c1:3b:58:c5:84:ea:f8:55:95:cb:ba:26:02:d0:
38:7d:34:ec:85:87:87:77:55:3e:03:04:d6:95:5d:c8:6c:cf:
46:fa:83:01:0d:8d:b7:79:e4:26:87:bb:8d:2e:65:12:3d:58:
8a:a0:b3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org