Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/AlvmHvmEPj0txXH_QVjFxdXQ5P4.roa
File: AlvmHvmEPj0txXH_QVjFxdXQ5P4.roa (raw, json)
Hash identifier: b1Th4yHVUYKHV82Vxn4LQG+W8sWI1bcuWJLiGfcqKLg=
Subject key identifier: 02:5B:E6:1E:F9:84:3E:3D:2D:C5:71:FF:41:58:C5:C5:D5:D0:E4:FE
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 04BD8D6F
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/AlvmHvmEPj0txXH_QVjFxdXQ5P4.roa
Signing time: Wed 18 May 2022 09:39:16 +0000
ROA not before: Wed 18 May 2022 09:39:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48737
IP address blocks: 93.188.132.0/24 maxlen: 24
163.171.215.0/24 maxlen: 24
163.171.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79531375 (0x4bd8d6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: May 18 09:39:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=025be61ef9843e3d2dc571ff4158c5c5d5d0e4fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d1:7a:fb:d3:01:bb:b3:d6:6d:40:b7:bb:43:
63:fd:16:5b:ac:0b:eb:ad:c0:a0:2c:15:41:3c:6c:
e0:37:15:30:76:6c:08:78:0e:ae:63:e9:fb:8d:b0:
10:6f:fc:1b:a0:32:b6:98:a6:84:5d:5e:0b:61:92:
ac:26:1b:c4:de:38:9d:58:0b:a7:dc:6a:4c:66:49:
12:38:ee:50:64:69:7c:44:4c:fd:64:44:83:3f:bd:
af:61:cf:d9:ed:18:75:9b:f6:44:c4:01:fb:f3:7b:
01:09:8c:0b:6e:8b:71:4e:10:74:8b:30:b0:af:7b:
59:54:44:58:eb:2b:c5:dd:b8:b5:b0:dc:37:a2:d9:
49:f9:3a:76:e9:4d:c9:fe:0a:82:f3:9a:fe:0c:94:
8c:85:8a:66:70:e8:a2:0b:1a:6b:b5:fc:39:f8:bc:
6b:5b:9d:73:8c:51:cf:c3:6f:7f:cf:59:3d:14:a1:
20:38:45:00:b4:b3:dd:a7:17:2a:19:47:0f:44:fe:
06:83:a4:55:29:d8:c4:f2:14:92:ad:a2:43:b5:f3:
b0:ba:8c:b9:16:67:53:83:ab:dc:25:93:c9:c9:91:
74:ff:f0:52:d5:db:5a:0a:08:a5:78:68:a9:50:18:
36:b7:a1:7f:93:50:65:09:b7:10:88:5e:1b:02:b1:
ea:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5B:E6:1E:F9:84:3E:3D:2D:C5:71:FF:41:58:C5:C5:D5:D0:E4:FE
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/AlvmHvmEPj0txXH_QVjFxdXQ5P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.132.0/24
163.171.215.0-163.171.216.255
Signature Algorithm: sha256WithRSAEncryption
98:80:69:57:5d:30:63:8f:61:48:8d:d1:7d:d2:a9:91:45:03:
41:d1:ac:12:d4:6a:f4:b3:4b:d8:2b:8a:29:69:0a:f0:a7:10:
6a:16:3b:c6:80:f3:a9:18:81:3a:94:e6:8c:e1:e4:b4:10:dd:
32:c3:0a:48:4b:c0:b5:30:5b:f5:65:a8:78:09:79:1c:e6:ad:
e5:53:2e:65:f1:30:a0:9e:ff:74:3d:9e:a7:cb:c1:fd:aa:99:
60:a6:e9:0e:29:58:95:03:1a:fa:69:dd:e8:c3:de:2e:b5:94:
6e:4a:36:47:59:9f:0b:b6:42:d8:ae:b3:f3:21:24:e2:b8:b8:
24:47:d6:0a:08:29:ec:fd:80:39:7d:b3:1a:3e:cc:2f:c5:ae:
31:73:3c:52:99:25:27:1d:a9:95:77:b4:f9:ba:8f:7c:ff:0d:
61:c4:fb:b0:01:53:d2:09:ee:6a:38:20:85:87:a8:8f:9a:76:
77:e5:ea:36:28:cf:40:15:c0:af:5f:b4:f4:27:c5:23:ad:b6:
c6:2a:39:2c:ed:b8:d4:23:47:38:c1:e3:a1:9d:67:3e:82:23:
2d:53:19:a8:de:89:12:29:db:8f:a9:1e:28:36:92:0d:46:f8:
ef:35:f1:5e:6c:1d:ef:00:0c:9c:58:bf:69:3b:e9:74:91:cc:
c0:46:b5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-fra.rpki-client.org