Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/sb0vFHzcmNpWTYQWZFrT2le_leA.roa
File: sb0vFHzcmNpWTYQWZFrT2le_leA.roa (raw, json)
Hash identifier: pXx24Iwj1Aw0PKZsvmTW8DVrlti++cKNap8YTJE3e94=
Subject key identifier: B1:BD:2F:14:7C:DC:98:DA:56:4D:84:16:64:5A:D3:DA:57:BF:95:E0
Certificate issuer: /CN=e30f8894f308172ace92fbe6052eec23853eadad
Certificate serial: 018AF5CEC5FA5DAFB4B0BB5B3D3C60B3B10D
Authority key identifier: E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/sb0vFHzcmNpWTYQWZFrT2le_leA.roa
Signing time: Tue 03 Oct 2023 13:51:23 +0000
ROA not before: Tue 03 Oct 2023 13:51:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3920
IP address blocks: 117.55.203.0/24 maxlen: 24
212.237.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:ce:c5:fa:5d:af:b4:b0:bb:5b:3d:3c:60:b3:b1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30f8894f308172ace92fbe6052eec23853eadad
Validity
Not Before: Oct 3 13:51:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1bd2f147cdc98da564d8416645ad3da57bf95e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f3:9e:94:31:31:14:90:b9:40:00:9f:66:f3:
cb:34:e6:6c:6c:1f:47:fb:63:4d:2b:62:d6:2f:cb:
18:12:73:92:63:fe:17:e3:3f:3e:0c:d8:f4:1c:3d:
ea:88:95:da:a5:e6:21:98:ae:b4:54:05:66:88:3b:
1e:dc:de:53:a5:5f:1d:93:6a:8d:8b:83:86:40:fa:
61:8e:e7:9f:41:d1:67:05:a5:c5:54:07:2c:1d:92:
3e:a7:d1:62:8a:de:b6:94:85:1e:d2:f2:4a:e7:4d:
c3:0f:b9:18:65:17:5d:50:5c:04:6c:31:b8:20:71:
84:f9:cf:3b:05:b3:51:b7:45:dd:c5:0f:2b:b3:a8:
73:88:5d:34:b7:b3:69:ce:3b:d7:a6:33:bb:97:6d:
f7:86:b2:a9:ca:22:d0:ef:03:14:0a:8d:55:d3:8c:
5f:40:31:dd:14:c7:7e:f4:ee:9f:96:0f:21:17:3f:
61:cf:d1:99:9a:f1:04:79:ff:04:35:0a:9f:d9:55:
53:73:cf:61:a2:c2:5b:f8:f4:a5:31:9e:d2:ab:64:
a3:c9:cc:b3:68:5e:05:03:08:88:cf:5b:81:a9:f7:
3a:a8:42:43:91:4f:e5:7a:04:f4:6c:bc:ca:e0:d8:
dd:16:98:eb:a0:c1:a9:60:f7:00:71:30:80:4e:1a:
e2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BD:2F:14:7C:DC:98:DA:56:4D:84:16:64:5A:D3:DA:57:BF:95:E0
X509v3 Authority Key Identifier:
keyid:E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/sb0vFHzcmNpWTYQWZFrT2le_leA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/4w-IlPMIFyrOkvvmBS7sI4U-ra0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.55.203.0/24
212.237.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:0e:e7:f5:ac:32:e4:89:27:78:2a:10:42:57:3f:9c:69:ea:
25:aa:78:4f:66:11:1f:0c:1b:af:6b:3e:b7:1e:93:a0:a9:ab:
33:25:1d:43:6e:27:ab:4c:d2:fe:f1:4c:fb:f4:f6:bd:52:4c:
0c:88:36:bf:91:24:33:e7:e9:63:6a:ed:12:54:da:4e:cf:74:
98:cf:59:b5:8b:27:0c:7f:f5:a2:7c:db:9c:32:c5:e6:05:0d:
f0:16:d5:8d:5e:9f:08:24:0a:08:5d:c9:21:f2:03:9d:54:65:
72:9a:0b:b7:e8:30:59:6e:5f:89:20:17:5f:b6:b3:cd:cb:8a:
cf:d6:09:f2:50:ed:4b:6c:72:43:52:69:3d:88:b8:1a:f3:f2:
7e:01:8f:d1:13:37:ce:6f:df:20:40:0b:06:b8:8f:fa:2c:ca:
a0:90:50:b7:8d:74:bf:18:0e:f2:08:7f:af:e6:c2:6e:8b:5b:
14:4b:f3:6a:6e:67:d4:ba:59:c4:52:d7:cf:0e:34:70:92:d8:
f3:c7:96:4e:73:0b:fc:9e:aa:54:b8:9f:c9:2c:8b:70:87:ec:
b5:b0:2b:0d:74:b8:00:00:8c:c7:3d:42:8b:a4:07:b9:f4:20:
4a:c0:22:fa:bc:e5:0e:e9:b1:d5:8a:e4:bf:6c:5f:e7:20:b0:
03:5b:ea:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:14 2025 by rpki-client