Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/QTljbB6zfpEJPJG-h6zriyWdU2U.roa
File: QTljbB6zfpEJPJG-h6zriyWdU2U.roa (raw, json)
Hash identifier: uBPomztkPJxWx++BaVwz9F4aXVIdsl2UP1SffblleKI=
Subject key identifier: 41:39:63:6C:1E:B3:7E:91:09:3C:91:BE:87:AC:EB:8B:25:9D:53:65
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018891C9A87D4AF957BE4606D7C770AC9207
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/QTljbB6zfpEJPJG-h6zriyWdU2U.roa
Signing time: Tue 06 Jun 2023 17:38:12 +0000
ROA not before: Tue 06 Jun 2023 17:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 103.47.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:c9:a8:7d:4a:f9:57:be:46:06:d7:c7:70:ac:92:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jun 6 17:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4139636c1eb37e91093c91be87aceb8b259d5365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:7f:df:31:45:a4:5a:c5:a9:a3:cc:84:20:
42:6d:b2:d0:fb:29:7d:22:aa:99:f2:9b:8b:73:cc:
9c:42:c8:f0:dd:11:d8:48:61:d7:04:4c:25:a3:be:
52:ba:8c:2d:22:8c:ee:d6:68:18:94:3d:bc:e9:d4:
b7:2c:db:1e:5d:36:f3:d2:89:65:6f:c8:bc:98:e5:
73:24:2e:0c:02:5f:19:ee:8f:8d:a2:30:15:40:ae:
f4:f7:27:3c:95:6b:55:31:47:5d:b3:05:ba:00:23:
f5:36:82:b0:fc:52:40:a4:df:42:b1:29:e4:63:ff:
8c:d0:dd:fc:1c:e3:5d:40:3e:00:a6:d2:c1:13:80:
1b:35:0a:87:7b:ec:a4:26:ba:8b:4b:9f:77:97:67:
34:f8:23:1c:20:59:5c:05:ec:0b:a4:50:b8:81:05:
12:ea:52:25:10:dc:2c:54:ba:fa:a5:eb:87:91:72:
15:d9:5a:e1:13:e8:49:5d:17:17:fb:7a:75:ff:be:
97:63:aa:71:3a:73:eb:d8:8a:34:d7:b0:99:e6:51:
41:18:98:28:4e:bc:13:9c:2a:bd:8f:5f:7a:a6:d3:
81:98:a1:26:d9:10:27:34:85:6d:2c:a1:cc:3d:bd:
e7:82:a3:50:a6:89:34:dc:67:68:81:88:b6:8d:54:
9a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:39:63:6C:1E:B3:7E:91:09:3C:91:BE:87:AC:EB:8B:25:9D:53:65
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/QTljbB6zfpEJPJG-h6zriyWdU2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:5e:99:48:c2:13:99:4d:46:a5:0b:97:e3:76:38:e3:52:9b:
80:03:15:91:24:d8:12:0f:e7:cf:e7:e4:e2:95:e5:5c:c4:e2:
44:cc:51:97:e7:6a:45:73:f7:b5:77:db:d3:b9:17:e3:1c:72:
9c:a2:c5:4b:a4:95:22:48:42:9e:44:51:ce:5f:c3:ef:bc:83:
d8:a9:1f:ab:f1:7e:9e:d4:40:41:fd:13:2a:a6:ad:f5:d6:4e:
23:ab:d8:2f:7e:46:12:c9:af:11:24:55:ce:17:5c:60:1b:88:
89:56:cf:74:6c:33:ba:a9:ce:18:b7:60:7a:f6:39:0f:d7:45:
f8:26:e2:83:3b:67:2b:5c:e2:a6:96:67:0c:f8:b3:fb:2e:2d:
7d:56:80:ec:01:3a:16:4f:02:6d:57:d3:be:c3:53:94:64:f3:
77:58:e1:88:21:bd:60:49:a0:42:d7:63:86:9d:36:83:9e:8f:
43:0e:66:a7:6e:ce:a3:ad:91:e9:e7:63:23:47:b5:2e:18:ef:
b4:5f:4a:89:62:99:57:38:96:bf:1d:1d:17:21:c4:e9:30:36:
d4:76:d2:e2:a5:9d:22:ce:e0:2e:25:36:02:f5:31:3f:45:1e:
01:35:04:ad:d2:f4:ac:2c:05:b4:ed:7b:61:e5:bc:f8:46:2c:
63:7f:54:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:13 2025 by rpki-client