Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7kK_Skkl5J_9Vn3Fxlimr16bWRA.roa
File: 7kK_Skkl5J_9Vn3Fxlimr16bWRA.roa (raw, json)
Hash identifier: iHuQwf0brRnnwxT3yxWcujXsOPX7QJQAfo5mNQ8PV8I=
Subject key identifier: EE:42:BF:4A:49:25:E4:9F:FD:56:7D:C5:C6:58:A6:AF:5E:9B:59:10
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C96121C1386B5DB5DD09626A71716C0C4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7kK_Skkl5J_9Vn3Fxlimr16bWRA.roa
Signing time: Sat 23 Dec 2023 09:46:58 +0000
ROA not before: Sat 23 Dec 2023 09:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7979
IP address blocks: 103.209.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:96:12:1c:13:86:b5:db:5d:d0:96:26:a7:17:16:c0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 23 09:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee42bf4a4925e49ffd567dc5c658a6af5e9b5910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6b:3b:67:09:86:42:d4:ed:95:bb:96:ba:53:
09:74:88:f4:1a:54:6a:36:57:f5:e5:16:c4:17:d5:
86:0a:d8:a6:4e:75:f2:83:7d:66:fa:72:c5:a6:a2:
88:42:72:1e:50:6a:eb:70:7b:3e:75:7f:3b:ad:f4:
45:23:b0:1a:75:2a:f1:42:eb:44:9d:bc:ed:dc:1b:
89:1e:4e:99:ad:d4:ca:56:6f:5f:6c:c7:de:08:fd:
1b:3a:00:ec:65:b6:95:e5:41:c2:38:4f:1f:dd:02:
cd:4b:bb:0f:d7:9f:ad:7f:bb:05:72:33:1f:d7:cf:
27:80:61:c9:43:76:85:24:21:07:44:bc:f6:c4:f3:
ca:44:75:e3:83:23:56:de:2f:a1:ed:0f:7c:65:23:
9f:94:ec:1e:3e:cd:cf:be:a6:44:fc:a5:8d:ba:1f:
77:a8:e9:2c:bb:e2:93:2c:d3:91:19:8c:e6:61:bb:
fa:3f:7e:dc:e0:ea:30:dd:01:ae:b8:fb:a7:b9:e9:
88:99:fa:f4:b7:41:8a:e4:bd:2e:1e:ed:64:52:74:
c1:c6:85:bd:bb:64:e4:62:3b:c1:82:28:8f:27:ff:
c1:aa:d4:e7:f3:e8:74:dc:bf:d2:c3:57:6b:b4:04:
6e:b6:0e:1e:bc:0d:3e:57:b6:8f:38:0e:7d:b7:dd:
a4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:42:BF:4A:49:25:E4:9F:FD:56:7D:C5:C6:58:A6:AF:5E:9B:59:10
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7kK_Skkl5J_9Vn3Fxlimr16bWRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.209.231.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:04:39:a6:0b:85:a8:e1:5f:e0:1e:84:66:ae:23:fa:b4:0a:
2f:6e:9b:93:79:96:b2:be:3e:48:12:26:fb:e5:1a:23:06:36:
b6:43:16:8f:c2:cc:3c:61:ab:c1:72:68:cb:cd:68:47:2e:2f:
ee:21:77:e7:98:32:bb:70:6d:17:a1:c8:a4:17:c4:e8:4c:9c:
da:c1:8c:cb:ee:29:79:08:d1:10:1b:d0:0e:16:b8:04:fe:8a:
ca:f7:c7:e2:35:ad:d0:6c:82:4d:7d:41:13:94:d8:bc:16:f3:
a6:6b:3c:24:79:ab:51:63:ca:d1:2b:7b:5a:12:b1:b6:8e:72:
a4:39:b5:a7:69:ab:65:9a:47:3e:56:87:fb:9b:0a:94:1c:08:
e7:4f:19:9d:98:5b:ec:a7:8e:b3:1c:47:9b:fa:8f:5c:8a:1d:
6e:cf:86:45:8b:29:26:b8:86:d6:e4:1e:41:62:86:37:4f:e3:
27:59:41:57:21:07:7b:66:6f:4d:00:cd:fc:a8:ef:2e:60:80:
29:6f:5b:d7:78:c6:ac:76:35:c5:ec:5d:63:c3:3e:0d:f9:98:
2f:19:40:a2:2f:df:9d:92:8b:6b:0e:8f:a7:6b:37:5a:e4:6f:
12:6d:65:b7:09:34:e1:62:c3:cd:71:4e:fe:f7:f7:a6:b6:0c:
cf:28:b7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:47 2025 by rpki-client