Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Tw6Ckx1oliSyGiYYYOMDoVU8XQs.roa
File: Tw6Ckx1oliSyGiYYYOMDoVU8XQs.roa (raw, json)
Hash identifier: g6JqgugFoXt2GMMyF+rD49ssQUjbJ7s1abjUq77A8ao=
Subject key identifier: 4F:0E:82:93:1D:68:96:24:B2:1A:26:18:60:E3:03:A1:55:3C:5D:0B
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 050D6F18
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Tw6Ckx1oliSyGiYYYOMDoVU8XQs.roa
Signing time: Thu 17 Mar 2022 19:30:15 +0000
ROA not before: Thu 17 Mar 2022 19:30:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.233.198.0/23 maxlen: 23
193.233.201.0/24 maxlen: 24
193.233.96.0/22 maxlen: 22
193.233.104.0/22 maxlen: 22
193.233.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84766488 (0x50d6f18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 17 19:30:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f0e82931d689624b21a261860e303a1553c5d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:70:c2:c2:d9:1d:9b:23:6e:11:91:66:82:c2:
5c:d3:fc:d2:e8:99:12:e8:0c:31:dd:2d:96:06:03:
44:4c:a6:ee:24:d6:dd:84:72:a2:0f:e4:9c:60:7a:
0b:9d:76:ed:22:b5:b9:0e:e7:c9:f8:5e:5b:a6:a6:
f5:eb:0d:0d:32:21:21:d5:09:57:a7:0f:04:ba:f1:
c8:b2:98:0b:fe:2f:21:9d:6d:6d:27:73:4d:2b:4b:
b1:b1:f7:78:57:bb:1a:56:1f:00:9e:07:ab:d6:49:
d7:45:97:ac:ec:a8:fa:47:59:38:ff:ed:b1:e2:2d:
e9:ef:2d:39:ea:ad:af:c4:d5:a5:eb:c2:ef:d3:d4:
c6:4c:40:9a:34:bd:f7:f0:c5:d9:27:f4:15:1b:58:
d6:6f:0f:32:fe:e1:aa:09:72:3c:4e:2d:b3:80:2a:
fe:e2:7a:ac:9a:89:94:84:93:f4:28:b2:fe:5e:dd:
d1:22:5c:3c:22:ad:75:0f:cd:95:55:57:45:e4:70:
75:da:50:32:83:c9:c2:46:fe:68:a0:47:2d:94:3a:
b3:00:36:d1:9a:91:90:9e:87:92:de:c8:3d:eb:1f:
7c:d8:72:10:63:0d:bf:24:15:f3:39:64:c6:6b:32:
9d:9e:62:b4:f2:5f:9b:cb:a0:5a:bf:d9:5a:b2:03:
ce:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0E:82:93:1D:68:96:24:B2:1A:26:18:60:E3:03:A1:55:3C:5D:0B
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Tw6Ckx1oliSyGiYYYOMDoVU8XQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.96.0/22
193.233.104.0/22
193.233.198.0/23
193.233.201.0/24
193.233.216.0/22
Signature Algorithm: sha256WithRSAEncryption
97:3c:2c:b3:1b:78:42:ab:e2:1b:b8:fb:88:e5:97:d0:c3:ef:
c1:08:be:dc:b4:51:e4:e4:70:97:51:41:93:36:79:f9:69:22:
c4:fd:d4:8f:1e:c0:f9:24:01:d8:31:f9:a8:1e:a0:25:68:94:
20:e1:3e:e3:05:b7:07:2d:42:10:26:1c:de:f3:66:97:a5:17:
ec:cc:99:ca:5d:5f:58:62:21:9a:93:77:bb:2c:7d:f1:af:67:
e2:4b:a4:90:80:39:49:61:44:cf:09:71:1f:d4:7b:e5:5d:cf:
85:33:6f:1d:9f:8d:61:3f:90:c0:b1:92:cc:ac:8e:f1:83:8b:
70:6c:61:3d:18:56:26:52:ad:00:a8:ab:c1:34:17:69:a6:3d:
f3:6e:27:db:8e:42:cc:eb:1f:f4:c7:c1:50:a9:75:26:c9:be:
36:90:4b:cc:10:29:6e:58:60:8a:11:20:d8:c1:26:3a:53:29:
e6:8d:f8:fa:94:fc:2f:ef:c7:76:16:43:0f:db:0a:13:39:4c:
78:c5:0d:69:6d:e6:8c:15:27:20:82:bc:9e:93:3e:60:cc:12:
2b:7b:d6:a8:c2:6b:4a:36:9a:d0:66:23:c6:59:cf:1a:80:1d:
47:ba:56:01:a4:11:2a:8f:20:5d:fe:2f:d6:2b:3e:ff:e3:ba:
b4:39:66:21
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEBQ1vGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDMx
NzE5MzAxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGYwZTgyOTMxZDY4
OTYyNGIyMWEyNjE4NjBlMzAzYTE1NTNjNWQwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJBwwsLZHZsjbhGRZoLCXNP80uiZEugMMd0tlgYDREym7iTW
3YRyog/knGB6C5127SK1uQ7nyfheW6am9esNDTIhIdUJV6cPBLrxyLKYC/4vIZ1t
bSdzTStLsbH3eFe7GlYfAJ4Hq9ZJ10WXrOyo+kdZOP/tseIt6e8tOeqtr8TVpevC
79PUxkxAmjS99/DF2Sf0FRtY1m8PMv7hqglyPE4ts4Aq/uJ6rJqJlIST9Ciy/l7d
0SJcPCKtdQ/NlVVXReRwddpQMoPJwkb+aKBHLZQ6swA20ZqRkJ6Hkt7IPesffNhy
EGMNvyQV8zlkxmsynZ5itPJfm8ugWr/ZWrIDzo0CAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBRPDoKTHWiWJLIaJhhg4wOhVTxdCzAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L1R3NkNreDFvbGlTeUdpWVlZT01Eb1ZVOFhRcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAsHpYAMEAsHpaAMEAcHpxgMEAMHp
yQMEAsHp2DANBgkqhkiG9w0BAQsFAAOCAQEAlzwssxt4QqviG7j7iOWX0MPvwQi+
3LRR5ORwl1FBkzZ5+WkixP3Ujx7A+SQB2DH5qB6gJWiUIOE+4wW3By1CECYc3vNm
l6UX7MyZyl1fWGIhmpN3uyx98a9n4kukkIA5SWFEzwlxH9R75V3PhTNvHZ+NYT+Q
wLGSzKyO8YOLcGxhPRhWJlKtAKirwTQXaaY9824n245CzOsf9MfBUKl1Jsm+NpBL
zBApblhgihEg2MEmOlMp5o34+pT8L+/HdhZDD9sKEzlMeMUNaW3mjBUnIIK8npM+
YMwSK3vWqMJrSjaa0GYjxlnPGoAdR7pWAaQRKo8gXf4v1is+/+O6tDlmIQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org