Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/Ily52hgWLZRfrOH1DzErvMmqej4.roa
File: Ily52hgWLZRfrOH1DzErvMmqej4.roa (raw, json)
Hash identifier: eCf43EFw/xLHb/QbygL7xbnRFqtEjiSm+qhtn+LJhOA=
Subject key identifier: 22:5C:B9:DA:18:16:2D:94:5F:AC:E1:F5:0F:31:2B:BC:C9:AA:7A:3E
Certificate issuer: /CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Certificate serial: 018B3EEF3771D36DF363BAD2EAAFBD551401
Authority key identifier: 95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/Ily52hgWLZRfrOH1DzErvMmqej4.roa
Signing time: Tue 17 Oct 2023 18:39:06 +0000
ROA not before: Tue 17 Oct 2023 18:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216291
IP address blocks: 103.102.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:ef:37:71:d3:6d:f3:63:ba:d2:ea:af:bd:55:14:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Validity
Not Before: Oct 17 18:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=225cb9da18162d945face1f50f312bbcc9aa7a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:04:b0:a7:9b:07:12:96:d2:8e:d1:5a:9e:30:
5a:2c:30:30:f7:cc:b6:5b:9f:78:bd:69:9c:92:48:
89:a6:03:fe:9c:50:6d:3d:45:5b:ce:68:9a:ab:3b:
bc:25:4b:04:ba:c0:2c:90:95:7c:40:3f:8f:dd:ae:
45:cb:23:8e:78:13:66:9a:2a:3a:d6:56:7a:e5:5b:
52:a5:c0:b6:d0:83:d4:f3:b4:90:fc:a3:f2:3d:c4:
e3:3b:79:80:c6:9f:70:3c:64:8b:d0:25:7e:ee:3e:
2e:bb:3b:14:5d:03:47:9e:01:26:1a:12:3c:77:95:
a4:93:0a:ac:96:8d:a9:bd:3e:33:f0:3f:54:1f:df:
93:5b:f8:43:c6:72:6d:d0:66:23:a7:78:31:8d:33:
8c:7f:54:7c:34:cc:b2:76:cd:05:e5:47:86:09:14:
06:93:bb:c8:76:2e:d8:e6:f1:10:54:29:e8:29:47:
4c:a0:f1:9b:78:61:0e:f3:b9:4a:6f:02:28:38:e1:
55:d8:d2:9c:f5:42:3d:92:ed:28:a2:66:ef:dd:79:
a8:34:2d:8a:f7:c5:08:d6:23:3b:c2:83:73:2c:a9:
78:b3:67:47:b4:0b:56:b7:70:d0:1f:5d:2d:30:e3:
d4:f1:67:ef:38:af:24:c3:37:ca:31:40:1b:c9:73:
b4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5C:B9:DA:18:16:2D:94:5F:AC:E1:F5:0F:31:2B:BC:C9:AA:7A:3E
X509v3 Authority Key Identifier:
keyid:95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/Ily52hgWLZRfrOH1DzErvMmqej4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.230.0/24
Signature Algorithm: sha256WithRSAEncryption
82:30:26:89:6e:7a:28:4e:11:ba:af:f4:ae:e8:b0:90:21:c2:
8e:c4:ef:c5:28:37:75:59:4e:94:5e:02:d0:0f:d6:70:76:95:
a0:b1:39:7c:a1:d5:2e:23:16:86:b0:ae:79:42:d0:9c:0f:82:
6f:ac:25:68:b2:49:96:1b:b9:19:3d:c4:57:c4:0a:6a:15:c7:
2a:c6:f3:7b:2e:d6:79:9d:f5:88:08:ee:59:72:a6:2b:cf:a1:
be:b2:11:63:20:9e:75:70:2b:68:76:6b:39:c4:4e:0b:60:18:
20:43:cd:a0:bc:5a:10:bc:f4:64:c5:61:c5:f4:14:4b:4d:22:
a9:cf:30:27:83:31:6d:03:f3:b5:0e:5f:65:38:9b:36:eb:7d:
a5:d3:35:74:1c:c6:a6:23:ec:44:8e:bf:dc:28:03:3f:f6:85:
32:10:d9:dc:d1:e4:75:99:f1:c0:95:7f:fd:f4:6e:7b:ed:c4:
81:5c:74:91:a5:31:e6:1e:ad:6f:31:29:9b:3d:69:c5:de:f9:
49:a3:ad:8c:d7:b8:6f:b2:35:f6:8b:2c:3c:28:9d:a5:7e:91:
da:fc:55:cb:66:41:94:a7:9e:39:10:15:64:3a:23:ae:8c:3c:
64:92:9d:f6:55:87:18:c8:9d:d7:93:1b:af:57:2a:d9:30:e2:
c0:8e:48:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:18:57 2025 by rpki-client