Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/p9hbJe_uNknQZFtcuerqqsROBJs.roa
File: p9hbJe_uNknQZFtcuerqqsROBJs.roa (raw, json)
Hash identifier: 7H5TDCM9QcuJnAXS5Z1IOcpuPQ6zx5iA/Vc7sqWE2Jk=
Subject key identifier: A7:D8:5B:25:EF:EE:36:49:D0:64:5B:5C:B9:EA:EA:AA:C4:4E:04:9B
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0D3217B8
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/p9hbJe_uNknQZFtcuerqqsROBJs.roa
Signing time: Sat 01 Jan 2022 06:01:44 +0000
ROA not before: Sat 01 Jan 2022 06:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50611
IP address blocks: 195.253.65.0/24 maxlen: 24
195.253.66.0/24 maxlen: 24
195.253.96.0/19 maxlen: 24
195.253.104.0/24 maxlen: 24
195.253.105.0/24 maxlen: 24
195.253.103.0/24 maxlen: 24
185.119.138.0/23 maxlen: 23
195.253.106.0/24 maxlen: 24
195.253.107.0/24 maxlen: 24
195.253.64.0/24 maxlen: 24
2a01:5b0:28::/48 maxlen: 48
2a01:5b0:2e::/48 maxlen: 48
2a01:5b0:27::/48 maxlen: 48
2a01:5b0:5::/48 maxlen: 48
2a01:5b0:2b::/48 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:29::/48 maxlen: 48
2a01:5b0:9::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
2a01:5b0:2a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221386680 (0xd3217b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: Jan 1 06:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7d85b25efee3649d0645b5cb9eaeaaac44e049b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:61:cf:86:ac:ed:d9:56:7d:34:a8:06:8c:07:
d7:91:be:89:13:a2:c3:19:7f:d2:e1:e3:ca:1e:eb:
42:4b:bd:18:5f:bd:c6:c1:9b:07:e3:4f:b2:ba:50:
70:c8:ad:05:a3:6a:ea:a3:03:62:9a:e2:ee:46:a7:
35:ad:59:90:80:a7:79:f8:1d:d6:9a:90:54:63:95:
38:90:9a:01:2f:87:ae:4a:55:c2:9a:7d:40:bb:c0:
f9:ee:6c:c0:91:08:da:87:f6:f5:7c:c7:f1:eb:4f:
08:f1:79:b0:71:ba:4c:6d:05:32:ad:ad:ea:92:0e:
f2:6c:1e:f6:96:fe:ae:46:70:56:fa:a2:f5:bb:af:
d2:92:f9:ed:ec:0a:c5:d9:d6:38:bc:cd:33:5b:78:
d7:7b:ec:cf:0f:81:75:18:e5:3d:6a:2b:5d:ed:7d:
ff:88:51:0b:9d:8d:ee:7d:aa:60:1c:0f:fe:59:0a:
9c:5d:6a:8e:88:97:2f:00:8d:ed:4e:63:af:5c:84:
e4:fb:33:85:a5:ba:d0:4a:b4:89:d4:c1:99:a9:3e:
07:23:52:ec:f0:e8:f6:f8:b6:9f:00:ea:59:fd:3e:
42:85:25:b3:96:25:06:2c:3f:c9:ad:a7:b2:8b:29:
7f:ce:3d:4f:d8:59:ba:39:e5:e0:c9:2a:8e:29:82:
c7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D8:5B:25:EF:EE:36:49:D0:64:5B:5C:B9:EA:EA:AA:C4:4E:04:9B
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/p9hbJe_uNknQZFtcuerqqsROBJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.138.0/23
195.253.64.0-195.253.66.255
195.253.96.0/19
IPv6:
2a01:5b0:4::-2a01:5b0:6:ffff:ffff:ffff:ffff:ffff
2a01:5b0:9::/48
2a01:5b0:27::-2a01:5b0:2b:ffff:ffff:ffff:ffff:ffff
2a01:5b0:2e::/48
Signature Algorithm: sha256WithRSAEncryption
34:59:c4:06:64:d1:98:98:42:70:3b:f3:6b:f8:02:53:5c:01:
53:43:f9:b1:96:ab:6b:31:90:ca:50:36:e6:ad:58:44:bc:8c:
54:5b:9b:ee:8f:47:37:a7:65:64:43:4d:b0:23:b6:b5:c8:47:
81:5c:14:36:20:27:3a:01:84:ab:6b:59:34:59:ab:e6:24:47:
dd:88:e1:55:7a:37:d9:5d:68:d6:54:00:13:fa:d6:e8:6e:d9:
6b:52:ed:c5:d7:09:91:9c:a2:88:da:c2:95:fc:eb:92:cd:92:
28:24:f8:d7:5d:2c:7f:57:1e:5f:bd:e3:49:be:a1:53:d1:7e:
c7:69:f8:e2:4b:bb:32:1d:31:10:79:52:af:51:19:e0:ad:94:
3e:ff:5b:a8:9f:69:9c:91:96:c8:59:75:a5:0f:45:9c:3b:7f:
16:5c:47:ae:13:d6:0d:8a:87:a7:58:a3:32:35:f9:a0:47:83:
d5:af:9d:db:07:bf:87:72:cb:79:b4:69:b9:4d:03:98:08:e3:
20:02:f3:cc:61:09:e4:5e:39:57:fb:17:b0:80:37:d3:74:95:
cd:51:cf:24:13:df:84:35:72:53:e5:57:9b:cf:35:5f:f9:f3:
2d:05:91:16:fa:0f:41:cc:02:db:20:8e:d6:71:b4:d0:d3:85:
b9:88:e1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org