Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a713e0-d164-4fbb-b4ae-7a58ba3ddf43/1/TBYL0v_qBvdxiWX8osHc6vlfY1A.roa
File: TBYL0v_qBvdxiWX8osHc6vlfY1A.roa (raw, json)
Hash identifier: ab9o8fRJMi0lX1e1tE+twb4nKt2bXy+9nam0KKAYNNM=
Subject key identifier: 4C:16:0B:D2:FF:EA:06:F7:71:89:65:FC:A2:C1:DC:EA:F9:5F:63:50
Certificate issuer: /CN=46623ac5df9eefcf7d24f317c7b694297e4f362a
Certificate serial: 018AF9AACCC0B1AD5103DC2D3070836746E3
Authority key identifier: 46:62:3A:C5:DF:9E:EF:CF:7D:24:F3:17:C7:B6:94:29:7E:4F:36:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RmI6xd-e7899JPMXx7aUKX5PNio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a713e0-d164-4fbb-b4ae-7a58ba3ddf43/1/TBYL0v_qBvdxiWX8osHc6vlfY1A.roa
Signing time: Wed 04 Oct 2023 07:50:34 +0000
ROA not before: Wed 04 Oct 2023 07:50:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41828
IP address blocks: 195.191.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:aa:cc:c0:b1:ad:51:03:dc:2d:30:70:83:67:46:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46623ac5df9eefcf7d24f317c7b694297e4f362a
Validity
Not Before: Oct 4 07:50:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c160bd2ffea06f7718965fca2c1dceaf95f6350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:9f:e0:3a:37:4a:98:e7:91:cf:a0:d1:53:
dd:85:03:f7:9a:49:e2:ba:68:14:cd:fa:8d:d4:e0:
55:ce:03:36:78:03:49:83:62:d0:a1:82:bf:a9:e4:
db:7b:24:b1:d0:25:61:40:bb:24:25:b8:26:e7:b8:
ff:f8:1f:47:93:f9:5a:38:f0:7a:b2:9b:a9:c0:f8:
88:5b:67:5c:27:76:52:76:1c:74:21:a4:69:e1:4f:
3a:85:d4:df:54:86:7d:27:36:aa:d9:40:3d:7a:a7:
63:89:ca:83:45:12:1b:61:98:be:3b:90:ea:5d:03:
d0:d9:87:09:38:46:94:51:0c:1d:96:37:7e:2f:73:
a0:0f:b3:7e:45:b5:66:e8:52:39:b5:ed:02:1d:f3:
8f:e7:2d:22:e0:ec:c6:0a:16:1e:0b:f1:52:52:6b:
7f:76:10:dc:63:35:1f:12:97:2d:ae:fe:20:02:98:
9b:41:b3:b4:e8:b2:47:15:b7:39:36:8f:42:21:01:
98:d9:93:a3:21:69:ae:af:f0:53:85:ef:5e:8f:4b:
be:fc:8b:fe:8f:50:79:bd:03:b7:ad:20:7c:99:4b:
98:7c:3d:a9:4f:9a:3c:fe:e2:5c:a8:e3:54:d9:42:
0a:01:07:10:e4:76:a8:a4:90:a6:f6:ee:1a:0b:f3:
a4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:16:0B:D2:FF:EA:06:F7:71:89:65:FC:A2:C1:DC:EA:F9:5F:63:50
X509v3 Authority Key Identifier:
keyid:46:62:3A:C5:DF:9E:EF:CF:7D:24:F3:17:C7:B6:94:29:7E:4F:36:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmI6xd-e7899JPMXx7aUKX5PNio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a713e0-d164-4fbb-b4ae-7a58ba3ddf43/1/TBYL0v_qBvdxiWX8osHc6vlfY1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a713e0-d164-4fbb-b4ae-7a58ba3ddf43/1/RmI6xd-e7899JPMXx7aUKX5PNio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f1:26:c2:ce:52:75:1a:42:5a:c2:b6:96:96:e1:ee:ae:bb:
47:ff:77:6f:4d:99:f6:7b:06:b9:61:97:40:6f:5c:8f:fd:33:
f4:1e:ae:04:0a:6c:89:ae:19:c2:3e:6a:99:ad:2a:a0:9b:99:
d8:36:86:bb:69:67:bc:3a:b5:c3:cf:59:af:1b:e7:25:8c:23:
17:4c:6d:de:aa:68:e8:5f:6a:4c:a7:ff:10:f4:5c:4a:f5:92:
33:2c:a4:42:a8:f2:18:ff:ad:13:74:d6:cb:27:c4:ba:e5:92:
62:df:80:90:c7:c0:10:e3:d9:8d:19:b2:29:a0:47:ec:2c:cc:
ac:86:90:89:8b:ae:0d:60:dd:1b:3a:4e:a7:93:ad:fb:2a:8a:
90:7c:6b:81:fe:90:aa:af:93:1a:f0:1c:00:56:e2:be:b1:b1:
05:89:d2:43:87:1e:65:3d:8a:77:20:36:07:02:4a:f9:b6:07:
43:1f:9d:14:cc:9b:03:2a:c0:2a:eb:f7:8f:d6:50:f4:45:a3:
07:ba:a5:80:6a:a2:61:7c:9a:4d:f9:c4:13:70:d0:bb:39:18:
1b:04:ba:ce:fa:43:f7:a3:a1:47:8f:4c:50:de:6c:3a:d9:09:
78:da:45:1a:a4:fb:ff:4a:cf:cb:1f:89:76:30:7a:33:9a:9a:
5f:ff:ad:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr5qszAsa1RA9wtMHCDZ0bjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NjIzYWM1ZGY5ZWVmY2Y3ZDI0ZjMxN2M3YjY5NDI5N2U0
ZjM2MmEwHhcNMjMxMDA0MDc1MDM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzE2MGJkMmZmZWEwNmY3NzE4OTY1ZmNhMmMxZGNlYWY5NWY2MzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxef4Do3Spjnkc+g0VPdhQP3mkni
umgUzfqN1OBVzgM2eANJg2LQoYK/qeTbeySx0CVhQLskJbgm57j/+B9Hk/laOPB6
spupwPiIW2dcJ3ZSdhx0IaRp4U86hdTfVIZ9Jzaq2UA9eqdjicqDRRIbYZi+O5Dq
XQPQ2YcJOEaUUQwdljd+L3OgD7N+RbVm6FI5te0CHfOP5y0i4OzGChYeC/FSUmt/
dhDcYzUfEpctrv4gApibQbO06LJHFbc5No9CIQGY2ZOjIWmur/BThe9ej0u+/Iv+
j1B5vQO3rSB8mUuYfD2pT5o8/uJcqONU2UIKAQcQ5HaopJCm9u4aC/OkuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEwWC9L/6gb3cYll/KLB3Or5X2NQMB8GA1UdIwQY
MBaAFEZiOsXfnu/PfSTzF8e2lCl+TzYqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm1JNnhkLWU3ODk5SlBNWHg3YVVLWDVQTmlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNzEzZTAtZDE2NC00ZmJiLWI0YWUt
N2E1OGJhM2RkZjQzLzEvVEJZTDB2X3FCdmR4aVdYOG9zSGM2dmxmWTFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hNzEzZTAtZDE2NC00ZmJiLWI0YWUtN2E1OGJhM2RkZjQz
LzEvUm1JNnhkLWU3ODk5SlBNWHg3YVVLWDVQTmlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw79gMA0G
CSqGSIb3DQEBCwUAA4IBAQCk8SbCzlJ1GkJawraWluHurrtH/3dvTZn2ewa5YZdA
b1yP/TP0Hq4ECmyJrhnCPmqZrSqgm5nYNoa7aWe8OrXDz1mvG+cljCMXTG3eqmjo
X2pMp/8Q9FxK9ZIzLKRCqPIY/60TdNbLJ8S65ZJi34CQx8AQ49mNGbIpoEfsLMys
hpCJi64NYN0bOk6nk637KoqQfGuB/pCqr5Ma8BwAVuK+sbEFidJDhx5lPYp3IDYH
Akr5tgdDH50UzJsDKsAq6/eP1lD0RaMHuqWAaqJhfJpN+cQTcNC7ORgbBLrO+kP3
o6FHj0xQ3mw62Ql42kUapPv/Ss/LH4l2MHozmppf/62J
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:19:22 2025 by rpki-client