Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/34439e-9cd2-44c5-9cfd-555f3f18e54f/1/tiPBq2jRUjY0-wzZkXm5i0KB-kc.roa
File: tiPBq2jRUjY0-wzZkXm5i0KB-kc.roa (raw, json)
Hash identifier: 59MlOQOFdKJj4JRHa2NPkU4h3GTv2HdAiFp2Y3y0WBE=
Subject key identifier: B6:23:C1:AB:68:D1:52:36:34:FB:0C:D9:91:79:B9:8B:42:81:FA:47
Certificate issuer: /CN=acf6ea0ffb2aee4f76ee1a1048969b8b5065da45
Certificate serial: 0186652A51CBB56FF16D7FF2A7941D1BCC35
Authority key identifier: AC:F6:EA:0F:FB:2A:EE:4F:76:EE:1A:10:48:96:9B:8B:50:65:DA:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPbqD_sq7k927hoQSJabi1Bl2kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/34439e-9cd2-44c5-9cfd-555f3f18e54f/1/tiPBq2jRUjY0-wzZkXm5i0KB-kc.roa
Signing time: Sat 18 Feb 2023 15:35:17 +0000
ROA not before: Sat 18 Feb 2023 15:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209500
IP address blocks: 83.229.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:65:2a:51:cb:b5:6f:f1:6d:7f:f2:a7:94:1d:1b:cc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acf6ea0ffb2aee4f76ee1a1048969b8b5065da45
Validity
Not Before: Feb 18 15:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b623c1ab68d1523634fb0cd99179b98b4281fa47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:84:b8:0e:85:26:5e:ed:f9:62:ee:fd:c3:7e:
30:65:16:b1:85:90:dd:30:c6:b0:37:dd:05:34:d4:
3a:8e:0d:51:46:e0:23:df:cf:b2:5e:02:5f:bb:95:
dd:40:8b:95:6c:da:ab:a9:be:2d:56:f2:88:b9:57:
63:91:b4:fe:48:3b:d8:14:c0:3d:c2:4b:59:1f:bc:
9a:f8:37:cd:d0:46:73:3b:43:4d:5f:11:0d:81:d5:
8d:e5:35:aa:f8:4e:e8:d9:08:5c:07:05:74:a4:7f:
5c:da:71:37:90:29:ac:f7:2c:5e:ed:45:e4:e2:d7:
9d:44:5f:9a:3e:72:75:cf:6f:91:dd:7c:7f:59:7d:
12:a2:e8:94:2f:6a:3c:dd:f0:e0:c5:f3:b6:40:a3:
96:2b:a3:e7:2c:29:88:1b:e9:81:f4:33:e7:5a:56:
16:a2:c0:07:f1:b5:56:67:7b:0e:87:2d:ce:ab:1d:
ea:64:92:c6:c6:91:a7:b7:92:9d:ce:a1:b9:76:be:
6a:7f:1b:2a:17:79:4d:75:e5:b2:1b:e8:9b:bf:37:
9f:ae:b0:83:68:49:05:7b:b7:a9:b7:95:81:33:61:
e6:8c:2c:ca:b2:14:20:92:e3:e1:3e:a1:df:9c:73:
16:c4:05:3b:0c:92:ae:c8:1b:6b:42:74:65:47:f0:
6b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:23:C1:AB:68:D1:52:36:34:FB:0C:D9:91:79:B9:8B:42:81:FA:47
X509v3 Authority Key Identifier:
keyid:AC:F6:EA:0F:FB:2A:EE:4F:76:EE:1A:10:48:96:9B:8B:50:65:DA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPbqD_sq7k927hoQSJabi1Bl2kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/34439e-9cd2-44c5-9cfd-555f3f18e54f/1/tiPBq2jRUjY0-wzZkXm5i0KB-kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/34439e-9cd2-44c5-9cfd-555f3f18e54f/1/rPbqD_sq7k927hoQSJabi1Bl2kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.62.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:ea:1b:19:82:cf:2b:7d:aa:15:41:be:90:ef:a9:2b:63:3a:
c8:1a:89:1c:12:c8:f5:23:11:77:b5:fb:79:c0:c1:32:ba:c7:
93:52:82:c2:f8:76:c3:8f:c9:5a:97:58:da:3c:29:cf:e2:4a:
45:c9:d7:16:09:67:68:ef:9c:5f:cc:14:cc:e6:66:e5:88:e1:
61:70:1c:72:a7:ad:7a:3e:28:74:3e:37:af:85:c6:84:57:01:
91:c9:14:b1:23:84:ab:31:cb:49:53:f8:2c:cb:2d:95:83:1a:
ea:fb:2f:a6:87:8e:92:8d:9d:f5:25:94:e9:82:48:76:f3:db:
1a:fa:83:05:5d:74:1a:ef:43:c0:88:d1:f7:d9:89:12:63:ed:
32:f7:7e:b0:e9:15:1e:01:23:95:44:02:f5:1e:a8:f6:9a:16:
1b:12:18:c5:7e:9c:74:8d:29:5e:6c:36:f0:26:13:fd:76:7b:
52:15:fd:34:8b:f2:82:da:9d:71:c6:75:aa:c8:8b:5e:a6:11:
a8:00:6c:7e:b8:74:32:20:7e:42:62:97:cf:a2:be:96:0c:07:
8c:45:f5:79:f8:36:18:d3:f7:06:e5:d6:67:f6:00:1e:9c:cf:
92:5f:62:5e:e3:b7:fa:6b:a0:c1:a5:92:1e:1b:7c:9e:6c:44:
3a:5a:82:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZlKlHLtW/xbX/yp5QdG8w1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjZjZlYTBmZmIyYWVlNGY3NmVlMWExMDQ4OTY5YjhiNTA2
NWRhNDUwHhcNMjMwMjE4MTUzNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjIzYzFhYjY4ZDE1MjM2MzRmYjBjZDk5MTc5Yjk4YjQyODFmYTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoS4DoUmXu35Yu79w34wZRaxhZDd
MMawN90FNNQ6jg1RRuAj38+yXgJfu5XdQIuVbNqrqb4tVvKIuVdjkbT+SDvYFMA9
wktZH7ya+DfN0EZzO0NNXxENgdWN5TWq+E7o2QhcBwV0pH9c2nE3kCms9yxe7UXk
4tedRF+aPnJ1z2+R3Xx/WX0SouiUL2o83fDgxfO2QKOWK6PnLCmIG+mB9DPnWlYW
osAH8bVWZ3sOhy3Oqx3qZJLGxpGnt5KdzqG5dr5qfxsqF3lNdeWyG+ibvzefrrCD
aEkFe7ept5WBM2HmjCzKshQgkuPhPqHfnHMWxAU7DJKuyBtrQnRlR/BrOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLYjwato0VI2NPsM2ZF5uYtCgfpHMB8GA1UdIwQY
MBaAFKz26g/7Ku5Pdu4aEEiWm4tQZdpFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclBicURfc3E3azkyN2hvUVNKYWJpMUJsMmtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8zNDQzOWUtOWNkMi00NGM1LTljZmQt
NTU1ZjNmMThlNTRmLzEvdGlQQnEyalJValkwLXd6WmtYbTVpMEtCLWtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8zNDQzOWUtOWNkMi00NGM1LTljZmQtNTU1ZjNmMThlNTRm
LzEvclBicURfc3E3azkyN2hvUVNKYWJpMUJsMmtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU+U+MA0G
CSqGSIb3DQEBCwUAA4IBAQBf6hsZgs8rfaoVQb6Q76krYzrIGokcEsj1IxF3tft5
wMEyuseTUoLC+HbDj8lal1jaPCnP4kpFydcWCWdo75xfzBTM5mbliOFhcBxyp616
Pih0PjevhcaEVwGRyRSxI4SrMctJU/gsyy2Vgxrq+y+mh46SjZ31JZTpgkh289sa
+oMFXXQa70PAiNH32YkSY+0y936w6RUeASOVRAL1Hqj2mhYbEhjFfpx0jSlebDbw
JhP9dntSFf00i/KC2p1xxnWqyItephGoAGx+uHQyIH5CYpfPor6WDAeMRfV5+DYY
0/cG5dZn9gAenM+SX2Je47f6a6DBpZIeG3yebEQ6WoKW
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:00 2025 by rpki-client