Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/TeMqw_Ze8IASnatCuPTf4zevkkQ.roa
File: TeMqw_Ze8IASnatCuPTf4zevkkQ.roa (raw, json)
Hash identifier: 9svQc7dQiCbroWoqJ7iAX6oh+Qbz5Qp5BAHyZ/77ERY=
Subject key identifier: 4D:E3:2A:C3:F6:5E:F0:80:12:9D:AB:42:B8:F4:DF:E3:37:AF:92:44
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0E48DFC4
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/TeMqw_Ze8IASnatCuPTf4zevkkQ.roa
Signing time: Wed 04 May 2022 09:39:05 +0000
ROA not before: Wed 04 May 2022 09:39:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50611
IP address blocks: 195.253.65.0/24 maxlen: 24
195.253.66.0/24 maxlen: 24
195.253.88.0/23 maxlen: 23
195.253.96.0/19 maxlen: 24
185.119.136.0/22 maxlen: 24
195.253.64.0/24 maxlen: 24
2a01:5b0:8::/46 maxlen: 48
2a01:5b0:2e::/48 maxlen: 48
2a01:5b0:5::/48 maxlen: 48
2a01:5b0:20::/43 maxlen: 48
2a01:5b0:10::/47 maxlen: 47
2a01:5b0:2b::/48 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
2a01:5b0:2a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239656900 (0xe48dfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: May 4 09:39:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4de32ac3f65ef080129dab42b8f4dfe337af9244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:64:fd:01:3b:fc:ae:d8:d8:36:2b:d4:f9:5b:
57:c5:10:e9:d0:59:6d:c4:b5:72:a7:99:a7:68:57:
be:14:61:11:06:90:91:15:b5:f9:3d:5a:f3:78:77:
70:21:57:51:e7:37:90:a7:30:1e:4a:58:72:63:ec:
b1:33:34:ed:b6:5a:0b:e9:4c:20:93:d4:d7:3c:50:
04:bb:02:03:c1:7a:20:5e:3e:52:a9:d7:f5:19:7d:
f0:9e:54:42:2c:19:9b:66:33:b2:bf:90:0d:25:1b:
85:99:6a:ee:f5:dc:3c:5e:91:01:75:7a:a5:b6:1d:
54:91:be:ce:1e:b3:b5:cf:54:76:2a:a8:05:f4:27:
04:24:24:cd:38:7d:24:f9:82:5d:01:42:44:28:2d:
b1:b1:27:71:99:aa:0a:f1:f2:3f:ff:d5:9f:7f:06:
53:fe:54:1b:bb:2f:fa:34:0d:3c:20:be:95:3f:06:
9c:0d:6e:f7:aa:8b:b4:c9:e7:17:b3:92:0a:4f:9f:
85:e9:8b:e9:bf:d3:4d:e7:fb:a4:f7:86:21:4f:d4:
13:28:5c:af:dd:d4:af:f6:d0:37:ff:37:79:91:c0:
9c:4a:d1:93:8e:e2:4a:b9:85:2e:14:c1:5f:23:bc:
9e:e9:b1:64:4c:43:b2:27:c9:ad:09:0a:4d:26:01:
49:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E3:2A:C3:F6:5E:F0:80:12:9D:AB:42:B8:F4:DF:E3:37:AF:92:44
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/TeMqw_Ze8IASnatCuPTf4zevkkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.136.0/22
195.253.64.0-195.253.66.255
195.253.88.0/23
195.253.96.0/19
IPv6:
2a01:5b0:4::-2a01:5b0:6:ffff:ffff:ffff:ffff:ffff
2a01:5b0:8::/46
2a01:5b0:10::/47
2a01:5b0:20::/43
Signature Algorithm: sha256WithRSAEncryption
0f:f3:a0:41:ec:33:ac:b7:fa:09:d8:4b:dd:1d:46:41:73:11:
d1:34:78:9d:9c:18:5c:e5:92:18:b2:18:fa:a2:af:e1:64:3f:
03:28:4a:1e:2f:e7:ab:aa:53:d9:0c:66:ea:30:d7:5b:51:2a:
f7:f5:1c:2d:88:f7:91:2d:4b:2a:8f:09:4e:57:f1:4e:cd:94:
63:a8:0b:20:31:99:5d:08:3b:0c:72:5d:c3:13:9d:81:0f:e4:
50:e5:50:09:c9:5c:b8:f6:eb:bf:db:1d:6a:60:c9:8c:16:b7:
9b:9c:a7:b3:08:38:3d:52:dc:c5:f5:e8:75:2d:93:30:3d:31:
3f:ea:ff:51:be:ea:16:c5:db:5d:b6:44:82:d8:33:4a:0b:5f:
52:50:a2:8f:30:f4:f5:7d:6a:83:c7:eb:59:0b:89:f0:46:34:
ec:30:e6:02:f1:16:12:c8:b5:4d:4b:c1:16:72:07:9e:02:be:
55:26:e8:4d:eb:be:ed:c7:d8:4e:40:b4:3c:c4:ca:5c:84:7d:
8d:46:27:fc:9a:31:e9:78:95:57:14:29:f2:2d:6d:7d:74:22:
c7:7b:c4:b1:f7:c8:9e:ad:a1:e6:d1:db:24:c7:bc:54:52:32:
77:f2:36:18:69:4d:fa:3d:34:1b:7e:58:3f:5f:03:af:b6:6e:
b3:74:a2:a7
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIEDkjfxDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MGMxZTQyNmY1OGU0MmFlMzBlNTZjZGI3ZmY0ZDhmOWRkZDg1YjMwMB4XDTIyMDUw
NDA5MzkwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGRlMzJhYzNmNjVl
ZjA4MDEyOWRhYjQyYjhmNGRmZTMzN2FmOTI0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRk/QE7/K7Y2DYr1PlbV8UQ6dBZbcS1cqeZp2hXvhRhEQaQ
kRW1+T1a83h3cCFXUec3kKcwHkpYcmPssTM07bZaC+lMIJPU1zxQBLsCA8F6IF4+
UqnX9Rl98J5UQiwZm2Yzsr+QDSUbhZlq7vXcPF6RAXV6pbYdVJG+zh6ztc9Udiqo
BfQnBCQkzTh9JPmCXQFCRCgtsbEncZmqCvHyP//Vn38GU/5UG7sv+jQNPCC+lT8G
nA1u96qLtMnnF7OSCk+fhemL6b/TTef7pPeGIU/UEyhcr93Ur/bQN/83eZHAnErR
k47iSrmFLhTBXyO8numxZExDsifJrQkKTSYBSYECAwEAAaOCAlowggJWMB0GA1Ud
DgQWBBRN4yrD9l7wgBKdq0K49N/jN6+SRDAfBgNVHSMEGDAWgBRQweQm9Y5CrjDl
bNt/9Nj53dhbMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VNSGtKdldPUXE0dzVXemJmX1RZLWQzWVd6QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvOWM2ZGFkLTM3N2EtNDQ0ZS1iMGRjLTA2M2NlNmNmNDYwZC8x
L1RlTXF3X1plOElBU25hdEN1UFRmNHpldmtrUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
OWM2ZGFkLTM3N2EtNDQ0ZS1iMGRjLTA2M2NlNmNmNDYwZC8xL1VNSGtKdldPUXE0
dzVXemJmX1RZLWQzWVd6QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBw
BggrBgEFBQcBBwEB/wRhMF8wJgQCAAEwIAMEArl3iDAMAwQGw/1AAwQAw/1CAwQB
w/1YAwQFw/1gMDUEAgACMC8wEgMHAioBBbAABAMHACoBBbAABgMHAioBBbAACAMH
ASoBBbAAEAMHBSoBBbAAIDANBgkqhkiG9w0BAQsFAAOCAQEAD/OgQewzrLf6CdhL
3R1GQXMR0TR4nZwYXOWSGLIY+qKv4WQ/AyhKHi/nq6pT2Qxm6jDXW1Eq9/UcLYj3
kS1LKo8JTlfxTs2UY6gLIDGZXQg7DHJdwxOdgQ/kUOVQCclcuPbrv9sdamDJjBa3
m5ynswg4PVLcxfXodS2TMD0xP+r/Ub7qFsXbXbZEgtgzSgtfUlCijzD09X1qg8fr
WQuJ8EY07DDmAvEWEsi1TUvBFnIHngK+VSboTeu+7cfYTkC0PMTKXIR9jUYn/Jox
6XiVVxQp8i1tfXQix3vEsffInq2h5tHbJMe8VFIyd/I2GGlN+j00G35YP18Dr7Zu
s3Sipw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org