Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/7c6b2d-ac42-487e-9c19-1618776bdaae/1/AL_bKQwXhNZbqwJUMSZpCX7VVmQ.roa
File: AL_bKQwXhNZbqwJUMSZpCX7VVmQ.roa (raw, json)
Hash identifier: tmdZAuWGvVOmP5IpX13ZuyZG1DwtsmGZCaJcywFJORQ=
Subject key identifier: 00:BF:DB:29:0C:17:84:D6:5B:AB:02:54:31:26:69:09:7E:D5:56:64
Certificate issuer: /CN=3b94a1d881dd4beb2fd31b76fa0d5d585a9b238f
Certificate serial: 06ECD2F7
Authority key identifier: 3B:94:A1:D8:81:DD:4B:EB:2F:D3:1B:76:FA:0D:5D:58:5A:9B:23:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5Sh2IHdS-sv0xt2-g1dWFqbI48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/7c6b2d-ac42-487e-9c19-1618776bdaae/1/AL_bKQwXhNZbqwJUMSZpCX7VVmQ.roa
Signing time: Sat 01 Jan 2022 02:01:47 +0000
ROA not before: Sat 01 Jan 2022 02:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39479
IP address blocks: 185.91.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116183799 (0x6ecd2f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b94a1d881dd4beb2fd31b76fa0d5d585a9b238f
Validity
Not Before: Jan 1 02:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00bfdb290c1784d65bab0254312669097ed55664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:56:3a:60:39:a5:2c:b2:9c:85:fc:0e:37:29:
50:eb:52:0b:15:58:78:66:13:ea:3b:7d:2a:63:9d:
9c:3b:31:48:e5:43:ec:2b:c3:29:fa:cc:b5:27:5a:
8f:2f:3a:5e:6b:f6:74:4f:b9:b2:00:03:ed:19:c4:
6e:d9:52:1d:f5:2b:3f:23:a9:bc:5e:a2:6b:2f:c9:
c2:4b:c6:dc:1d:c5:7b:88:95:4e:07:f9:ba:9b:09:
79:94:e7:be:35:4b:51:53:c8:e6:f0:83:36:4a:46:
92:66:e3:a3:a3:a3:2e:fd:27:77:18:01:f1:2b:81:
59:74:0b:3b:1d:30:04:5f:b3:dd:ce:61:07:bb:a8:
14:ec:b4:34:59:a0:bb:b2:bd:a0:ac:25:27:8c:8f:
ca:54:ad:57:b7:f6:40:9d:cf:ad:0e:e8:43:5c:09:
55:24:8c:42:e2:fd:2f:41:0e:9d:09:ef:4b:a1:4c:
0e:13:40:8f:ec:4c:ab:b9:67:9c:24:dc:a0:2b:f3:
8f:93:02:31:9f:52:6c:f2:09:9c:15:04:8a:dd:a3:
fd:14:06:96:b0:05:a5:dd:7c:94:85:d1:33:7d:92:
6b:40:67:7c:38:4f:7e:2d:96:1f:d4:a4:bc:59:cc:
48:67:08:f8:ff:51:f4:68:d2:42:4e:60:88:24:ba:
1a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BF:DB:29:0C:17:84:D6:5B:AB:02:54:31:26:69:09:7E:D5:56:64
X509v3 Authority Key Identifier:
keyid:3B:94:A1:D8:81:DD:4B:EB:2F:D3:1B:76:FA:0D:5D:58:5A:9B:23:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5Sh2IHdS-sv0xt2-g1dWFqbI48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/7c6b2d-ac42-487e-9c19-1618776bdaae/1/AL_bKQwXhNZbqwJUMSZpCX7VVmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/7c6b2d-ac42-487e-9c19-1618776bdaae/1/O5Sh2IHdS-sv0xt2-g1dWFqbI48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:37:16:2b:c1:09:55:9b:ee:f1:27:d6:97:4a:d8:a1:5c:f2:
b9:28:d2:be:76:8d:3e:9c:55:3e:a5:1e:99:3c:71:bb:fc:79:
1e:37:40:ad:74:59:ac:8a:97:24:c4:84:83:88:c9:75:81:19:
47:72:5f:0a:f4:6a:0c:0a:14:2b:b6:dd:0b:91:32:f5:91:95:
da:49:19:37:40:97:57:4e:31:d9:b7:6c:20:c1:ab:c7:69:e0:
78:35:f1:eb:58:9b:a8:a4:1a:dc:6b:e1:c9:5d:6c:3c:2a:8a:
f6:a7:5d:9b:7b:1c:27:5b:37:20:93:f7:41:b1:77:75:b5:2c:
86:ce:0c:29:bb:14:2d:73:83:a6:75:ad:46:70:a9:eb:96:84:
cd:4b:18:73:9a:44:05:4d:4f:bc:70:ce:b9:1c:42:f3:66:74:
d5:5e:a6:5b:1d:57:22:07:bf:8b:7e:27:bb:75:b6:3b:f8:ff:
7a:11:f1:be:67:cb:02:dc:df:66:eb:c9:d6:e3:a2:9f:8e:f6:
46:55:d2:ff:5a:31:00:50:d9:87:62:01:56:d8:bd:9d:d0:d6:
fd:f8:2d:8c:97:2b:81:66:39:e3:7d:5f:57:ea:9d:8e:6a:4d:
06:53:ce:32:42:f4:72:1f:5d:1b:fc:e8:8c:9d:a0:36:66:06:
21:b4:c7:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBuzS9zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Yjk0YTFkODgxZGQ0YmViMmZkMzFiNzZmYTBkNWQ1ODVhOWIyMzhmMB4XDTIyMDEw
MTAyMDE0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDBiZmRiMjkwYzE3
ODRkNjViYWIwMjU0MzEyNjY5MDk3ZWQ1NTY2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKtWOmA5pSyynIX8DjcpUOtSCxVYeGYT6jt9KmOdnDsxSOVD
7CvDKfrMtSdajy86Xmv2dE+5sgAD7RnEbtlSHfUrPyOpvF6iay/JwkvG3B3Fe4iV
Tgf5upsJeZTnvjVLUVPI5vCDNkpGkmbjo6OjLv0ndxgB8SuBWXQLOx0wBF+z3c5h
B7uoFOy0NFmgu7K9oKwlJ4yPylStV7f2QJ3PrQ7oQ1wJVSSMQuL9L0EOnQnvS6FM
DhNAj+xMq7lnnCTcoCvzj5MCMZ9SbPIJnBUEit2j/RQGlrAFpd18lIXRM32Sa0Bn
fDhPfi2WH9SkvFnMSGcI+P9R9GjSQk5giCS6GrMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQAv9spDBeE1lurAlQxJmkJftVWZDAfBgNVHSMEGDAWgBQ7lKHYgd1L6y/T
G3b6DV1YWpsjjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L081U2gySUhkUy1zdjB4dDItZzFkV0ZxYkk0OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvN2M2YjJkLWFjNDItNDg3ZS05YzE5LTE2MTg3NzZiZGFhZS8x
L0FMX2JLUXdYaE5aYnF3SlVNU1pwQ1g3VlZtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
N2M2YjJkLWFjNDItNDg3ZS05YzE5LTE2MTg3NzZiZGFhZS8xL081U2gySUhkUy1z
djB4dDItZzFkV0ZxYkk0OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlboDANBgkqhkiG9w0BAQsFAAOC
AQEAazcWK8EJVZvu8SfWl0rYoVzyuSjSvnaNPpxVPqUemTxxu/x5HjdArXRZrIqX
JMSEg4jJdYEZR3JfCvRqDAoUK7bdC5Ey9ZGV2kkZN0CXV04x2bdsIMGrx2ngeDXx
61ibqKQa3GvhyV1sPCqK9qddm3scJ1s3IJP3QbF3dbUshs4MKbsULXODpnWtRnCp
65aEzUsYc5pEBU1PvHDOuRxC82Z01V6mWx1XIge/i34nu3W2O/j/ehHxvmfLAtzf
ZuvJ1uOin472RlXS/1oxAFDZh2IBVti9ndDW/fgtjJcrgWY5431fV+qdjmpNBlPO
MkL0ch9dG/zojJ2gNmYGIbTH3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:53 2024 by rpki-client on console-fra.rpki-client.org