Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a23562-34df-49d5-9bf4-58fc94d0d414/1/ALUvjVvVANcBEPQePIoFzfaDPXw.roa
File: ALUvjVvVANcBEPQePIoFzfaDPXw.roa (raw, json)
Hash identifier: u1JHtqtKAoFHvSQn9TlMIzMvZSkh872jVNTAyiUruGQ=
Subject key identifier: 00:B5:2F:8D:5B:D5:00:D7:01:10:F4:1E:3C:8A:05:CD:F6:83:3D:7C
Certificate issuer: /CN=d6eea5fb35b512f910094dc62459c1679b583e3f
Certificate serial: 01857230FB49D837AA89BC884AF6D5126597
Authority key identifier: D6:EE:A5:FB:35:B5:12:F9:10:09:4D:C6:24:59:C1:67:9B:58:3E:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u6l-zW1EvkQCU3GJFnBZ5tYPj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a23562-34df-49d5-9bf4-58fc94d0d414/1/ALUvjVvVANcBEPQePIoFzfaDPXw.roa
Signing time: Mon 02 Jan 2023 11:14:50 +0000
ROA not before: Mon 02 Jan 2023 11:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39086
IP address blocks: 195.66.80.0/24 maxlen: 24
2001:678:7c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:fb:49:d8:37:aa:89:bc:88:4a:f6:d5:12:65:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6eea5fb35b512f910094dc62459c1679b583e3f
Validity
Not Before: Jan 2 11:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00b52f8d5bd500d70110f41e3c8a05cdf6833d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ab:3b:b1:c2:b7:eb:6b:a7:45:dd:52:fd:92:
6a:37:cb:ed:9b:99:25:52:b3:03:81:fa:72:c1:4d:
cf:1b:e0:c4:0a:77:3f:df:32:c6:56:3c:e9:23:d7:
a5:f5:30:55:25:d9:30:d6:f9:25:c8:ea:39:74:7f:
7f:62:1d:f7:27:f1:78:1a:87:a9:0f:61:f8:4f:cc:
6b:39:26:22:78:0e:12:0a:0e:a7:89:d7:51:10:c5:
57:aa:d0:cf:68:7b:28:65:ca:49:44:a6:37:45:32:
bc:ff:ce:0f:53:ca:f2:1e:e7:01:57:b7:5e:47:a0:
31:31:e8:46:09:33:9e:b0:6a:d0:ea:71:be:40:31:
f5:e4:29:6f:1b:6f:fe:6f:f3:fb:7e:cb:ba:e3:b2:
db:10:72:ed:5c:97:b2:98:03:74:0d:5d:06:81:d7:
56:1e:ab:9d:e3:e2:1f:c4:d0:c4:37:68:62:27:e9:
35:a4:cb:5b:28:52:e0:d6:0a:b3:9c:d8:0e:d4:82:
d1:96:d0:c5:e2:76:c8:14:40:c8:e9:a3:9c:e1:d8:
37:af:c7:74:47:a6:c4:80:a3:0e:32:a5:3f:b5:43:
ee:b7:18:27:7d:46:6c:13:96:ab:2a:8a:77:aa:f6:
61:a9:38:d1:be:04:fe:8f:3a:a9:c4:21:ef:00:b0:
3a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B5:2F:8D:5B:D5:00:D7:01:10:F4:1E:3C:8A:05:CD:F6:83:3D:7C
X509v3 Authority Key Identifier:
keyid:D6:EE:A5:FB:35:B5:12:F9:10:09:4D:C6:24:59:C1:67:9B:58:3E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u6l-zW1EvkQCU3GJFnBZ5tYPj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a23562-34df-49d5-9bf4-58fc94d0d414/1/ALUvjVvVANcBEPQePIoFzfaDPXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a23562-34df-49d5-9bf4-58fc94d0d414/1/1u6l-zW1EvkQCU3GJFnBZ5tYPj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.80.0/24
IPv6:
2001:678:7c8::/48
Signature Algorithm: sha256WithRSAEncryption
bf:d0:ad:6f:77:74:35:19:9a:9b:3c:06:10:7d:4a:3b:68:6b:
9d:db:73:3b:68:f5:35:ac:14:ea:97:95:5f:89:eb:b3:33:e7:
28:49:1e:9f:32:22:cb:80:c5:0f:30:8d:2e:48:96:5e:ed:0e:
d7:2a:12:73:60:b4:41:ec:e0:57:0d:48:f4:2a:17:91:e1:90:
da:15:a3:7c:34:fe:66:c8:95:71:ea:de:c9:95:6e:e9:1c:80:
df:45:16:49:55:bf:92:94:45:58:0b:f3:64:57:bc:47:7f:a4:
40:aa:0f:d4:86:31:c2:ae:ff:f6:c9:62:ea:f2:75:0a:07:54:
26:c5:40:5b:9a:d6:1f:e2:60:87:ff:cf:53:16:53:8b:96:6b:
2e:f8:16:d2:5d:92:8e:98:05:8d:2d:c6:32:d9:c0:50:44:ee:
6a:ff:ab:4a:e1:2d:3c:08:96:bd:83:e3:b9:fe:2d:e3:ad:35:
37:7b:24:d9:6d:41:19:13:6e:5d:2b:e3:74:b6:8a:52:f7:ba:
6f:69:33:3d:32:ef:f4:78:fb:d7:e3:6c:4b:ae:7a:6f:1c:00:
90:b2:9a:f4:5a:71:89:48:3a:0e:0b:3e:79:5b:0a:52:fc:d5:
72:18:15:0c:03:ae:9c:98:ac:53:97:67:da:4d:77:3c:1a:ca:
83:e2:c9:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:17 2025 by rpki-client