Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/xsGtHBJvrmjq553J5fX0pVavIW0.roa
File: xsGtHBJvrmjq553J5fX0pVavIW0.roa (raw, json)
Hash identifier: WopUCdw76agke4qSZ1Vbeq6bT5MGQbZGy9EmDLDvxtE=
Subject key identifier: C6:C1:AD:1C:12:6F:AE:68:EA:E7:9D:C9:E5:F5:F4:A5:56:AF:21:6D
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 0184612E729A3CDC907C357FE21685671DD4
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/xsGtHBJvrmjq553J5fX0pVavIW0.roa
Signing time: Thu 10 Nov 2022 10:55:44 +0000
ROA not before: Thu 10 Nov 2022 10:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202603
IP address blocks: 103.23.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:2e:72:9a:3c:dc:90:7c:35:7f:e2:16:85:67:1d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Nov 10 10:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6c1ad1c126fae68eae79dc9e5f5f4a556af216d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:0f:bd:b9:0a:3a:f7:18:bd:0b:ed:9f:ae:
8a:b8:71:70:82:50:88:c3:96:a0:80:d5:43:ad:66:
d3:ac:62:bb:66:3e:b3:45:bb:10:c4:30:dc:8b:23:
bb:ae:34:55:50:36:e0:ad:a8:fa:30:6f:ec:0d:67:
6a:e1:d9:b8:26:b2:d6:12:0d:b6:da:ab:9d:67:9a:
2b:5b:51:ec:2e:5e:96:5e:20:26:42:2f:77:a0:a1:
28:3e:5f:da:10:20:9c:1a:1c:5e:0a:16:29:a3:7d:
37:ee:98:96:02:37:e6:4b:40:c8:b6:2a:25:32:d1:
0a:59:07:f1:4c:a2:c3:0e:59:e1:35:ba:ce:2b:fb:
85:1b:f4:31:1c:44:9c:1d:bd:de:02:40:41:52:46:
06:55:56:02:df:5b:a2:02:84:e4:e8:d6:f3:63:71:
c7:e6:9c:49:d1:3f:22:07:56:77:ef:b2:60:df:b4:
d4:ec:3e:51:2e:15:c0:77:21:ec:d9:d7:8e:bd:b6:
18:e3:3e:f3:41:88:39:c0:1d:1a:f5:1f:52:bd:79:
91:80:4d:5a:e7:d3:15:b1:b8:a1:e7:ce:e7:25:09:
12:6a:dd:ca:c4:6d:cd:7d:6e:1f:f9:1e:2d:61:6b:
ab:0e:d0:ad:b6:52:29:3b:eb:b1:13:95:3f:0d:d3:
d1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C1:AD:1C:12:6F:AE:68:EA:E7:9D:C9:E5:F5:F4:A5:56:AF:21:6D
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/xsGtHBJvrmjq553J5fX0pVavIW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.23.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:0a:83:ea:7e:28:42:2e:c0:89:40:72:44:ad:aa:85:81:4a:
b0:dc:47:55:f4:5b:f2:0d:ce:28:d5:b2:04:d4:1b:66:db:cd:
0f:5f:5c:3c:97:02:a0:8d:44:f3:cd:e8:70:aa:11:d9:e6:f2:
b8:0d:ab:0b:54:0d:e7:a0:82:9a:63:24:fe:54:01:18:cb:3b:
e0:3b:72:c6:35:1c:e2:16:48:34:99:2c:2b:b2:fa:e3:a4:0a:
e7:23:23:78:90:ed:af:c8:5c:74:72:07:b6:d0:ee:59:1a:44:
be:c7:83:84:5c:aa:5b:72:ad:7d:28:ec:79:9b:ac:fc:a6:e1:
6b:32:79:32:d1:95:ff:6d:69:52:a4:94:4d:0a:44:14:be:93:
90:1f:90:9e:c0:59:82:22:6d:86:27:88:fb:b9:ba:89:da:0d:
cb:11:53:ab:e6:1c:90:cb:2c:4e:ce:b6:8b:04:3f:62:c7:32:
6d:54:5d:b4:ed:a8:7d:c3:e3:b0:7e:7c:31:72:76:a3:16:78:
fb:60:0e:da:02:b0:f0:44:ef:5b:b4:64:b1:75:ce:75:70:de:
0f:6a:25:ac:bb:50:ae:f8:91:81:fd:70:31:c4:d4:1a:51:68:
b2:2f:e8:20:3a:2b:75:df:e8:c2:5b:55:9f:0c:0e:09:c5:a0:
c2:a2:32:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRhLnKaPNyQfDV/4haFZx3UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZTU0OWZkY2VlYjAyOTEyYzhhODc0MWM4MTY4MDZiYmUx
OWM0NDgwHhcNMjIxMTEwMTA1NTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmMxYWQxYzEyNmZhZTY4ZWFlNzlkYzllNWY1ZjRhNTU2YWYyMTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSYPvbkKOvcYvQvtn66KuHFwglCI
w5aggNVDrWbTrGK7Zj6zRbsQxDDciyO7rjRVUDbgraj6MG/sDWdq4dm4JrLWEg22
2qudZ5orW1HsLl6WXiAmQi93oKEoPl/aECCcGhxeChYpo3037piWAjfmS0DItiol
MtEKWQfxTKLDDlnhNbrOK/uFG/QxHEScHb3eAkBBUkYGVVYC31uiAoTk6NbzY3HH
5pxJ0T8iB1Z377Jg37TU7D5RLhXAdyHs2deOvbYY4z7zQYg5wB0a9R9SvXmRgE1a
59MVsbih587nJQkSat3KxG3NfW4f+R4tYWurDtCttlIpO+uxE5U/DdPRUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMbBrRwSb65o6uedyeX19KVWryFtMB8GA1UdIwQY
MBaAFMDlSf3O6wKRLIqHQcgWgGu+GcRIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd09WSl9jN3JBcEVzaW9kQnlCYUFhNzRaeEVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjBmOGYtZGJhYi00ODJkLWIzOWMt
YWQyZmRhNDc5ODhlLzEveHNHdEhCSnZybWpxNTUzSjVmWDBwVmF2SVcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8xNjBmOGYtZGJhYi00ODJkLWIzOWMtYWQyZmRhNDc5ODhl
LzEvd09WSl9jN3JBcEVzaW9kQnlCYUFhNzRaeEVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxc/MA0G
CSqGSIb3DQEBCwUAA4IBAQA7CoPqfihCLsCJQHJEraqFgUqw3EdV9FvyDc4o1bIE
1Btm280PX1w8lwKgjUTzzehwqhHZ5vK4DasLVA3noIKaYyT+VAEYyzvgO3LGNRzi
Fkg0mSwrsvrjpArnIyN4kO2vyFx0cge20O5ZGkS+x4OEXKpbcq19KOx5m6z8puFr
Mnky0ZX/bWlSpJRNCkQUvpOQH5CewFmCIm2GJ4j7ubqJ2g3LEVOr5hyQyyxOzraL
BD9ixzJtVF207ah9w+OwfnwxcnajFnj7YA7aArDwRO9btGSxdc51cN4PaiWsu1Cu
+JGB/XAxxNQaUWiyL+ggOit13+jCW1WfDA4JxaDCojJF
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:09:45 2025 by rpki-client