Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sIGjwApo8E7r2cx6SqWDPQXRvHE.roa
File: sIGjwApo8E7r2cx6SqWDPQXRvHE.roa (raw, json)
Hash identifier: UmYBFQSbr0PSB1QkuqyfRYxJ61EknsrXupCIcz5r/PA=
Subject key identifier: B0:81:A3:C0:0A:68:F0:4E:EB:D9:CC:7A:4A:A5:83:3D:05:D1:BC:71
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018B7C07511AEEE526157161F134F22B1598
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sIGjwApo8E7r2cx6SqWDPQXRvHE.roa
Signing time: Sun 29 Oct 2023 15:22:16 +0000
ROA not before: Sun 29 Oct 2023 15:22:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43641
IP address blocks: 103.47.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7c:07:51:1a:ee:e5:26:15:71:61:f1:34:f2:2b:15:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Oct 29 15:22:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b081a3c00a68f04eebd9cc7a4aa5833d05d1bc71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b6:67:55:9b:75:15:4a:3a:a1:0b:96:4b:d9:
e1:c5:21:0c:9f:ce:94:3b:23:f3:27:c9:82:1e:f9:
fe:c3:21:86:85:89:47:0b:72:f8:4e:f2:82:3e:de:
5c:27:eb:81:5e:33:81:c9:4b:62:b6:6d:34:c0:e9:
76:2c:7b:39:ca:cf:1c:d7:68:bc:82:e1:14:5d:ef:
bb:a7:ee:e4:12:9d:9c:8f:12:84:6b:94:18:32:2b:
f1:a6:61:b1:1b:ee:56:5d:8e:e5:39:f6:a1:5b:ea:
97:6d:8d:86:67:37:99:2a:e5:59:98:57:4a:67:eb:
a5:05:12:d5:ae:41:c1:5f:d3:76:37:27:76:62:9e:
e6:9f:62:04:c5:fe:f0:92:b4:55:4a:c0:1b:b0:01:
97:ca:9a:6e:f7:cd:82:6e:e0:f7:5e:3c:93:cf:7c:
08:3e:b0:e8:ae:42:dd:20:66:7e:38:a2:06:c2:5b:
ae:9a:af:77:57:d3:85:66:9c:9f:81:b4:9a:86:a4:
c6:86:53:38:7e:71:10:e1:69:60:ec:b4:55:95:96:
43:fb:0c:32:6e:fd:68:00:41:b2:1e:17:31:e4:a6:
5b:38:85:0f:53:ad:ab:c1:42:bf:2b:ee:fd:2b:2e:
fd:7b:3d:e6:9a:6b:c2:77:a2:02:bd:51:13:1e:65:
ae:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:81:A3:C0:0A:68:F0:4E:EB:D9:CC:7A:4A:A5:83:3D:05:D1:BC:71
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sIGjwApo8E7r2cx6SqWDPQXRvHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.56.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9a:3f:f4:dc:61:d2:f1:43:c6:7b:6a:5b:c2:aa:5d:c8:3a:
79:ec:60:2c:17:36:c6:29:c4:e4:80:c8:8d:19:82:73:5d:a9:
fe:1a:05:5f:02:70:cd:0f:c2:c7:71:8e:54:41:c5:1b:1d:4a:
fd:44:93:4e:e8:bc:31:02:5d:16:d4:d5:41:49:f6:67:73:63:
54:fa:01:44:b7:4e:08:7c:5f:cb:be:6a:45:89:7a:87:a9:8c:
54:f5:cb:48:0a:52:0d:c3:e0:62:93:14:18:81:30:4c:c8:51:
26:3b:db:bd:21:1d:9e:6d:8b:61:31:5b:62:c7:53:ce:ba:e4:
0f:c9:0c:e8:89:d7:8b:35:08:33:c4:0c:81:2d:8f:d8:0e:3d:
7b:43:8c:f4:b0:43:5e:a6:e2:65:71:75:44:73:91:e0:bc:15:
3d:bd:b0:ed:5e:26:22:08:59:52:a8:7c:9d:50:4d:a3:e7:94:
f6:96:78:b7:04:5f:ed:f9:06:96:9d:07:5f:64:30:ba:4f:ab:
d7:99:61:c7:2f:8a:42:1b:98:ed:51:ee:b4:b2:3b:f9:3b:aa:
6a:13:d0:58:2e:28:32:78:cf:9c:1b:2f:7a:2c:bd:e2:60:9a:
31:5f:7e:a3:aa:4c:8b:3c:f1:5d:44:51:c1:44:dd:d3:bc:cd:
90:e7:e6:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:53 2025 by rpki-client