Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/ALPWBTRnU5JxBH8kvYGG5ioQj0U.roa
File: ALPWBTRnU5JxBH8kvYGG5ioQj0U.roa (raw, json)
Hash identifier: pAO8dUuNWHctJjeG1ItKt2roeHLowOXZ/KVxre++XXA=
Subject key identifier: 00:B3:D6:05:34:67:53:92:71:04:7F:24:BD:81:86:E6:2A:10:8F:45
Certificate issuer: /CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Certificate serial: 0DAD9891
Authority key identifier: EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/ALPWBTRnU5JxBH8kvYGG5ioQj0U.roa
Signing time: Sat 01 Jan 2022 15:05:16 +0000
ROA not before: Sat 01 Jan 2022 15:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202751
IP address blocks: 185.155.180.0/24 maxlen: 24
2a00:8c40:239::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229480593 (0xdad9891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Validity
Not Before: Jan 1 15:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00b3d6053467539271047f24bd8186e62a108f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d7:87:22:b1:60:65:9a:74:2a:75:d8:b6:b1:
9b:f2:d3:8a:75:09:4e:6e:9d:40:49:68:8e:16:7c:
bb:ae:46:42:59:cd:25:ae:02:c4:d7:ec:ae:36:2d:
c0:84:93:b6:bf:7d:35:a6:8a:1d:01:c6:e2:76:24:
21:34:d4:4a:9a:42:8a:50:ae:c3:bf:13:eb:0f:89:
a8:78:28:d9:f7:9d:b7:8f:b4:b5:ec:d4:8c:bb:38:
d8:6b:dd:94:43:b8:6d:4b:d5:5f:69:57:ca:2d:c8:
69:e5:9b:3b:88:f2:e9:32:63:a8:4b:74:6a:80:23:
ae:93:43:9f:25:c0:e4:bc:b4:b7:c6:96:e9:53:24:
af:f3:ed:74:75:51:5a:ba:ed:32:76:98:a8:e3:91:
d2:2e:40:81:e0:07:ab:84:46:87:03:5d:f4:08:36:
ee:9f:a8:30:96:e7:41:b5:ef:17:c8:84:e1:55:b7:
ee:36:e3:3c:ad:23:80:a0:58:8c:a6:96:06:86:41:
44:93:d7:51:ea:40:73:2c:2b:a3:b9:8a:f2:28:89:
86:5f:8f:44:3d:0b:43:e8:82:6f:f7:2d:41:98:d8:
4b:b6:22:ad:ad:db:d7:5a:37:d9:fd:14:ca:a7:fa:
51:06:1e:ef:86:f9:54:0b:6b:d6:13:1e:95:32:cc:
3b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B3:D6:05:34:67:53:92:71:04:7F:24:BD:81:86:E6:2A:10:8F:45
X509v3 Authority Key Identifier:
keyid:EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/ALPWBTRnU5JxBH8kvYGG5ioQj0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.180.0/24
IPv6:
2a00:8c40:239::/48
Signature Algorithm: sha256WithRSAEncryption
7a:da:4c:79:92:e8:9b:6a:47:56:d6:a6:88:39:b9:27:ca:24:
13:e0:55:29:38:77:74:95:1a:96:f5:8f:ee:c2:a4:02:03:da:
ba:21:41:b2:39:03:06:59:09:62:8e:74:b6:ba:3d:f8:c2:d7:
9a:9c:0d:52:52:7d:a8:dc:94:d7:9a:c6:e7:11:0a:ff:05:20:
a4:2c:0c:d6:b0:53:9d:7c:00:74:08:a3:b0:d1:fe:6c:58:0e:
e0:37:44:f0:13:ad:15:4f:00:c7:af:c8:e4:78:f6:c6:06:ed:
57:17:01:8b:04:8c:6c:d6:59:74:97:38:9b:cc:89:88:82:8a:
21:46:3c:3c:8a:19:f5:31:ab:ee:ca:1e:33:d6:be:ba:56:c5:
99:2b:5b:4d:2f:0e:39:e3:72:07:5d:89:09:c1:79:86:d7:93:
80:17:2f:3a:16:71:fc:07:7c:7d:eb:a7:0c:23:09:ff:0c:15:
19:43:b7:42:b1:7b:fc:e5:3b:39:3b:ac:33:dd:9e:d2:16:93:
bd:d1:a0:79:ea:ae:e0:d6:01:88:d5:84:59:51:51:55:1e:84:
4e:d5:c2:ba:5e:e2:70:f1:aa:bc:fb:06:09:d4:f1:00:53:c9:
f9:36:20:24:a4:d7:61:80:ba:5a:6b:00:53:0d:56:7d:c4:c3:
fd:f2:0d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-fra.rpki-client.org