Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/ALeM9BoCqy03ghXY-v5UcNGnKf0.roa
File: ALeM9BoCqy03ghXY-v5UcNGnKf0.roa (raw, json)
Hash identifier: 132cdX2UUPJPI6SMGcgQd8QLBGxwmSZMOOPvtYaFkac=
Subject key identifier: 00:B7:8C:F4:1A:02:AB:2D:37:82:15:D8:FA:FE:54:70:D1:A7:29:FD
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0184E69F47392BDBFE6950A16ECC31DB1F9F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/ALeM9BoCqy03ghXY-v5UcNGnKf0.roa
Signing time: Tue 06 Dec 2022 08:48:28 +0000
ROA not before: Tue 06 Dec 2022 08:48:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 109.121.38.0/24 maxlen: 24
79.175.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e6:9f:47:39:2b:db:fe:69:50:a1:6e:cc:31:db:1f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Dec 6 08:48:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00b78cf41a02ab2d378215d8fafe5470d1a729fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6a:35:76:f0:11:28:02:be:b7:5e:53:5e:b5:
60:a6:95:86:59:37:8a:b3:3f:43:97:85:53:10:cc:
bb:c8:1c:d9:d7:3e:c4:84:dd:47:d7:17:c0:b1:a0:
d7:8c:6c:59:0b:53:3b:cf:f5:9a:f5:7e:d5:29:b5:
34:07:f3:4c:f3:d1:dc:64:ef:4f:6c:bf:e1:77:9c:
8e:68:db:90:88:16:9f:79:08:1c:a0:6b:ee:00:9a:
ea:78:fb:8b:b0:80:8b:f4:88:e7:7c:08:aa:2f:63:
4e:bd:2c:b8:d9:9d:de:cc:7f:d8:52:f1:51:fa:2b:
ae:29:54:50:0d:24:a1:a0:54:5e:31:c4:65:37:bb:
67:81:6c:10:6a:99:44:ba:64:30:9f:22:56:d9:bd:
3d:f8:ce:be:2f:ad:f9:a5:5c:0c:ca:4b:dc:41:63:
dc:38:db:fa:11:d4:2f:d0:25:9f:97:14:47:50:09:
c8:a6:3a:7c:01:3f:44:06:b6:a3:88:c0:c3:8b:b9:
9b:89:3e:90:33:65:9d:39:da:a6:d8:01:91:6e:1e:
ec:b3:6e:bb:85:8c:35:5b:e2:46:7d:3d:31:98:a6:
b8:68:ab:0a:5b:ac:c3:25:1f:f0:9f:6d:a9:33:3e:
76:d3:9b:6b:44:c3:ce:c6:fc:b1:ef:df:d2:5a:4d:
3f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B7:8C:F4:1A:02:AB:2D:37:82:15:D8:FA:FE:54:70:D1:A7:29:FD
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/ALeM9BoCqy03ghXY-v5UcNGnKf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.175.66.0/24
109.121.38.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d9:c2:49:6e:a2:d1:0a:3f:32:56:b3:31:ed:2c:47:04:79:
bc:81:5e:46:7f:90:cc:74:fc:f4:92:30:b3:22:f7:a9:c4:05:
64:d0:25:63:56:70:f4:72:45:d2:eb:62:01:bb:33:88:48:e9:
f6:1b:c4:bc:d0:f3:be:e8:f3:19:9a:ed:3a:4e:11:2c:82:68:
0f:4c:5e:64:c9:a1:16:f2:02:19:0f:85:d1:b1:22:38:46:b3:
ae:3f:af:b5:93:52:d9:31:84:4c:6d:7a:83:0c:b0:e1:19:0c:
4e:45:ff:f9:a6:fc:0c:16:ba:78:ce:14:2a:c0:16:51:89:1b:
b7:31:d7:31:e3:db:c7:eb:73:7a:6e:90:a2:81:a1:c9:df:f7:
6b:64:51:32:b8:e0:41:42:21:26:60:58:5b:10:4f:56:2f:aa:
c9:6d:27:02:0e:74:66:5f:86:fa:00:0f:9a:da:fa:8c:69:ee:
85:03:71:58:c3:c2:6c:d7:56:36:76:dc:7f:c8:44:f6:a2:0e:
a0:9f:44:55:8b:54:ec:2b:51:bd:4c:51:4b:9c:b4:69:a5:ed:
db:aa:f5:2b:7c:57:84:f2:35:22:a4:0d:b9:ff:c5:a7:02:8a:
eb:35:9c:52:ec:fd:8e:cc:68:ea:79:af:77:aa:e5:ca:25:fb:
54:94:6e:3c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYTmn0c5K9v+aVChbswx2x+fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjIxMjA2MDg0ODI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGI3OGNmNDFhMDJhYjJkMzc4MjE1ZDhmYWZlNTQ3MGQxYTcyOWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmo1dvARKAK+t15TXrVgppWGWTeK
sz9Dl4VTEMy7yBzZ1z7EhN1H1xfAsaDXjGxZC1M7z/Wa9X7VKbU0B/NM89HcZO9P
bL/hd5yOaNuQiBafeQgcoGvuAJrqePuLsICL9IjnfAiqL2NOvSy42Z3ezH/YUvFR
+iuuKVRQDSShoFReMcRlN7tngWwQaplEumQwnyJW2b09+M6+L635pVwMykvcQWPc
ONv6EdQv0CWflxRHUAnIpjp8AT9EBrajiMDDi7mbiT6QM2WdOdqm2AGRbh7ss267
hYw1W+JGfT0xmKa4aKsKW6zDJR/wn22pMz5205trRMPOxvyx79/SWk0/CQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAC3jPQaAqstN4IV2Pr+VHDRpyn9MB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvQUxlTTlCb0NxeTAzZ2hYWS12NVVjTkduS2YwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAT69CAwQA
bXkmMA0GCSqGSIb3DQEBCwUAA4IBAQBI2cJJbqLRCj8yVrMx7SxHBHm8gV5Gf5DM
dPz0kjCzIvepxAVk0CVjVnD0ckXS62IBuzOISOn2G8S80PO+6PMZmu06ThEsgmgP
TF5kyaEW8gIZD4XRsSI4RrOuP6+1k1LZMYRMbXqDDLDhGQxORf/5pvwMFrp4zhQq
wBZRiRu3Mdcx49vH63N6bpCigaHJ3/drZFEyuOBBQiEmYFhbEE9WL6rJbScCDnRm
X4b6AA+a2vqMae6FA3FYw8Js11Y2dtx/yET2og6gn0RVi1TsK1G9TFFLnLRppe3b
qvUrfFeE8jUipA25/8WnAorrNZxS7P2OzGjqea93quXKJftUlG48
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:03 2024 by rpki-client on console-ams.rpki-client.org