Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7a160e-a56d-41c8-8930-95817ee944ce/1/traBie1eQAPxlDLTxETiQWY1Aos.roa
File: traBie1eQAPxlDLTxETiQWY1Aos.roa (raw, json)
Hash identifier: oH10X64gd/YoSjcGAOqWGc7jhcGs6dxwbzmr2s5CELc=
Subject key identifier: B6:B6:81:89:ED:5E:40:03:F1:94:32:D3:C4:44:E2:41:66:35:02:8B
Certificate issuer: /CN=73bbc213c6f90bd8f007139eae6fe0cafa435ece
Certificate serial: 018442971AF18CB34A55EF093D07BD20AA4B
Authority key identifier: 73:BB:C2:13:C6:F9:0B:D8:F0:07:13:9E:AE:6F:E0:CA:FA:43:5E:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c7vCE8b5C9jwBxOerm_gyvpDXs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7a160e-a56d-41c8-8930-95817ee944ce/1/traBie1eQAPxlDLTxETiQWY1Aos.roa
Signing time: Fri 04 Nov 2022 12:21:49 +0000
ROA not before: Fri 04 Nov 2022 12:21:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50599
IP address blocks: 91.224.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:97:1a:f1:8c:b3:4a:55:ef:09:3d:07:bd:20:aa:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73bbc213c6f90bd8f007139eae6fe0cafa435ece
Validity
Not Before: Nov 4 12:21:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6b68189ed5e4003f19432d3c444e2416635028b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:dc:3e:b9:01:65:59:17:87:05:38:00:b7:e9:
00:c3:9d:85:92:d4:7f:a9:b1:c3:33:83:0c:e0:5f:
6f:a1:d7:33:4f:21:45:00:f1:0c:9a:7b:2a:8d:64:
bd:72:18:e3:4d:a7:e2:19:3b:b6:e6:2a:e4:f7:81:
02:74:c3:f9:83:44:56:5f:fd:c8:c2:fa:d9:4b:24:
83:22:f7:26:00:1a:fe:7e:fd:f5:cc:00:a3:a8:cf:
31:ea:e1:a5:fe:c5:c0:37:69:ac:ed:bb:2c:ca:84:
52:b9:61:cb:74:cf:47:db:4c:c6:44:3b:47:7c:3f:
7b:be:9a:5e:25:9e:03:94:88:91:f8:d4:cb:c3:8a:
37:5e:58:dd:87:5c:8a:b3:f6:b8:9e:e1:dc:67:ed:
df:43:44:1d:c2:85:84:eb:20:9d:83:66:8f:cf:f9:
8f:12:1d:d8:a1:ba:03:e4:fc:b7:a3:51:71:2d:03:
a7:26:d6:6d:4a:c1:c1:49:b3:20:0e:84:97:7f:97:
2a:59:5d:0e:16:0c:04:7e:76:09:1a:74:17:fa:d5:
ec:77:8a:3a:ca:63:7c:35:f6:49:a9:92:1c:e5:07:
1b:d0:de:5f:5c:19:9b:19:20:a1:3d:75:8a:92:ef:
01:84:f6:31:45:47:79:05:49:cd:6e:57:2e:05:5c:
3e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B6:81:89:ED:5E:40:03:F1:94:32:D3:C4:44:E2:41:66:35:02:8B
X509v3 Authority Key Identifier:
keyid:73:BB:C2:13:C6:F9:0B:D8:F0:07:13:9E:AE:6F:E0:CA:FA:43:5E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7vCE8b5C9jwBxOerm_gyvpDXs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7a160e-a56d-41c8-8930-95817ee944ce/1/traBie1eQAPxlDLTxETiQWY1Aos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7a160e-a56d-41c8-8930-95817ee944ce/1/c7vCE8b5C9jwBxOerm_gyvpDXs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.60.0/23
Signature Algorithm: sha256WithRSAEncryption
32:12:b7:97:c1:0e:8c:97:6d:e8:9a:0d:d9:f2:1d:27:ed:9e:
4b:25:fd:98:a7:12:71:95:b8:25:5f:c9:ee:f2:9d:97:c8:ee:
d7:ea:87:1f:79:fd:3d:05:da:da:2f:47:a6:ef:2a:57:5d:b8:
6f:21:cd:a9:fc:c7:99:f6:23:c7:16:d1:ec:62:0f:f6:6d:5a:
05:73:ef:1d:9a:36:16:ac:f4:0b:64:c9:d2:00:d1:8b:77:87:
fd:6b:33:86:8e:45:34:09:17:f8:15:1a:9e:b8:dc:bf:14:ea:
6a:80:9b:76:72:d3:a8:ae:06:a8:16:6c:ad:36:e1:b3:a7:d9:
4e:ab:9a:c5:37:7a:a5:2b:e4:58:47:36:7d:39:85:12:02:6a:
dd:0d:4f:53:94:4d:5b:e4:2c:1a:18:02:82:e1:a4:a6:10:b1:
06:44:f6:63:25:77:0e:6f:b4:a3:8d:01:12:ad:7a:e3:74:c3:
8a:d8:58:fd:60:7c:f3:00:6a:27:7e:35:f1:df:3a:10:59:e8:
9c:b7:79:6f:3f:61:b6:4c:ec:1a:d1:71:a3:4d:07:b3:b5:78:
c6:b2:6a:16:a3:c3:81:59:57:e3:3b:3b:8d:d6:bc:a5:f9:4a:
c2:9c:63:19:9d:25:73:68:80:1f:49:42:66:b2:35:80:5e:b2:
26:ed:c5:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRClxrxjLNKVe8JPQe9IKpLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYmJjMjEzYzZmOTBiZDhmMDA3MTM5ZWFlNmZlMGNhZmE0
MzVlY2UwHhcNMjIxMTA0MTIyMTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmI2ODE4OWVkNWU0MDAzZjE5NDMyZDNjNDQ0ZTI0MTY2MzUwMjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidw+uQFlWReHBTgAt+kAw52FktR/
qbHDM4MM4F9vodczTyFFAPEMmnsqjWS9chjjTafiGTu25irk94ECdMP5g0RWX/3I
wvrZSySDIvcmABr+fv31zACjqM8x6uGl/sXAN2ms7bssyoRSuWHLdM9H20zGRDtH
fD97vppeJZ4DlIiR+NTLw4o3Xljdh1yKs/a4nuHcZ+3fQ0QdwoWE6yCdg2aPz/mP
Eh3YoboD5Py3o1FxLQOnJtZtSsHBSbMgDoSXf5cqWV0OFgwEfnYJGnQX+tXsd4o6
ymN8NfZJqZIc5Qcb0N5fXBmbGSChPXWKku8BhPYxRUd5BUnNblcuBVw+BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLa2gYntXkAD8ZQy08RE4kFmNQKLMB8GA1UdIwQY
MBaAFHO7whPG+QvY8AcTnq5v4Mr6Q17OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzd2Q0U4YjVDOWp3QnhPZXJtX2d5dnBEWHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83YTE2MGUtYTU2ZC00MWM4LTg5MzAt
OTU4MTdlZTk0NGNlLzEvdHJhQmllMWVRQVB4bERMVHhFVGlRV1kxQW9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83YTE2MGUtYTU2ZC00MWM4LTg5MzAtOTU4MTdlZTk0NGNl
LzEvYzd2Q0U4YjVDOWp3QnhPZXJtX2d5dnBEWHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+A8MA0G
CSqGSIb3DQEBCwUAA4IBAQAyEreXwQ6Ml23omg3Z8h0n7Z5LJf2YpxJxlbglX8nu
8p2XyO7X6ocfef09BdraL0em7ypXXbhvIc2p/MeZ9iPHFtHsYg/2bVoFc+8dmjYW
rPQLZMnSANGLd4f9azOGjkU0CRf4FRqeuNy/FOpqgJt2ctOorgaoFmytNuGzp9lO
q5rFN3qlK+RYRzZ9OYUSAmrdDU9TlE1b5CwaGAKC4aSmELEGRPZjJXcOb7SjjQES
rXrjdMOK2Fj9YHzzAGonfjXx3zoQWeict3lvP2G2TOwa0XGjTQeztXjGsmoWo8OB
WVfjOzuN1ryl+UrCnGMZnSVzaIAfSUJmsjWAXrIm7cUw
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:40 2025 by rpki-client