Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YU_0ptqFLnbPypT9qD6a5SzHmpI.roa
File: YU_0ptqFLnbPypT9qD6a5SzHmpI.roa (raw, json)
Hash identifier: C1/SSD4vo+nqzaDJ4qrvjcdNAymusAO6v0wCBfDpOzk=
Subject key identifier: 61:4F:F4:A6:DA:85:2E:76:CF:CA:94:FD:A8:3E:9A:E5:2C:C7:9A:92
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01889AFF245CD234E813E68BF20A1B9B8F7A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YU_0ptqFLnbPypT9qD6a5SzHmpI.roa
Signing time: Thu 08 Jun 2023 12:33:12 +0000
ROA not before: Thu 08 Jun 2023 12:33:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 103.227.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:ff:24:5c:d2:34:e8:13:e6:8b:f2:0a:1b:9b:8f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 8 12:33:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=614ff4a6da852e76cfca94fda83e9ae52cc79a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:48:9f:59:e6:5b:7d:f3:25:61:0b:06:ba:0b:
58:eb:62:36:e0:58:b7:0d:13:d4:3f:8b:f6:95:78:
24:31:96:cb:27:63:94:9d:fb:55:2b:37:ad:a1:5d:
67:29:b8:4d:00:cc:83:b2:5a:6c:45:83:20:4c:57:
d3:7e:fd:82:88:41:e3:b5:0d:74:5c:19:cb:3c:b1:
da:df:9b:91:7b:9f:2f:05:05:81:b6:5d:01:e3:ef:
8e:2f:cf:88:30:1b:40:ad:ab:54:e6:ef:59:ea:40:
f2:89:dd:b9:e0:c7:fd:f0:49:1b:f5:5b:82:9f:15:
14:3f:52:5d:96:3c:9d:55:af:36:0f:ad:a2:71:cd:
3a:ed:54:7c:b1:df:ed:39:50:2a:c8:cc:5c:3b:4e:
ed:27:01:df:2d:c4:19:8b:da:15:f1:e7:fc:98:c4:
a7:57:e5:4b:c1:d5:36:23:d4:31:f7:ed:41:90:a8:
88:70:10:3d:71:c2:05:86:e5:98:9c:65:cb:d3:90:
ad:3a:29:5e:da:3e:b5:31:9c:77:8d:7e:39:36:e6:
7b:ad:03:01:13:a4:4d:92:75:47:e7:ae:a0:18:6b:
11:e7:d0:e5:c8:9f:de:f6:44:69:59:5f:25:5b:bd:
c5:4b:78:3a:ce:bf:86:8e:49:62:b0:43:73:d9:44:
69:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4F:F4:A6:DA:85:2E:76:CF:CA:94:FD:A8:3E:9A:E5:2C:C7:9A:92
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YU_0ptqFLnbPypT9qD6a5SzHmpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.87.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:f8:2c:96:37:da:93:23:ca:64:49:84:ff:e0:63:6c:2f:9f:
b5:ca:4f:69:4e:bd:e8:17:e5:64:14:0e:3c:ac:a7:16:64:eb:
d2:28:9a:73:ee:30:0e:d9:e3:57:8f:34:44:f1:a9:72:ed:d3:
0c:cb:21:55:7e:c3:22:8c:04:0e:1e:d9:24:e0:23:37:1b:92:
2f:3a:95:f6:39:35:fd:3e:a2:98:27:90:93:08:72:f7:be:60:
f4:b6:de:80:ee:e6:80:a6:e0:91:0f:4d:ec:e8:09:52:5c:8b:
25:24:01:3f:8a:f4:1c:72:df:c8:df:9c:f1:6a:e9:20:00:3c:
ef:06:3d:e5:db:97:d5:b1:26:2e:41:33:4e:d4:d8:3e:e3:32:
3f:12:92:86:16:4f:9f:0b:52:96:c3:ce:9a:90:a3:19:db:d8:
ba:03:8e:4d:6f:2a:64:d8:90:fc:de:f8:d7:5c:23:8f:4a:49:
f2:c7:b3:51:b3:4b:6e:48:94:41:1e:5f:64:ff:82:10:57:95:
96:c4:64:db:d3:8f:a1:66:f1:4d:da:bd:24:d8:fc:a2:63:5f:
17:7d:79:5d:61:cc:29:7a:ff:51:40:ee:69:d3:6f:3d:6b:4a:
2a:b8:80:93:26:e6:8c:3d:ef:0b:6b:7c:43:5b:86:b6:f3:07:
d8:c1:8e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:54 2025 by rpki-client