Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/RVv4YuBLQqE4Co8LhU40Yd8r7OQ.roa
File: RVv4YuBLQqE4Co8LhU40Yd8r7OQ.roa (raw, json)
Hash identifier: b4/DhEBXchJRuOuKgY3GtL2fP5Sz7cqJzp2u9yyUCjk=
Subject key identifier: 45:5B:F8:62:E0:4B:42:A1:38:0A:8F:0B:85:4E:34:61:DF:2B:EC:E4
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 154F51F6
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/RVv4YuBLQqE4Co8LhU40Yd8r7OQ.roa
Signing time: Sat 01 Jan 2022 13:56:58 +0000
ROA not before: Sat 01 Jan 2022 13:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49961
IP address blocks: 212.99.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357519862 (0x154f51f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 13:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=455bf862e04b42a1380a8f0b854e3461df2bece4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5d:d5:12:07:da:d8:41:62:da:35:78:50:2c:
d4:f1:c2:52:92:4f:ce:32:eb:fc:c8:50:9b:71:23:
63:c4:e5:d5:e1:95:cd:b7:ef:cf:e7:27:db:70:82:
1a:64:a5:0d:27:30:81:bb:98:f2:03:dd:aa:62:3b:
33:49:dc:88:83:58:ff:32:d0:4f:32:da:ba:f3:5d:
99:f3:6e:bd:8a:a9:94:ff:2c:ca:04:af:ab:fc:c6:
05:c4:9b:de:3d:fa:87:fb:4c:ba:83:ba:9f:b8:db:
59:3d:c3:12:5d:44:18:a8:1f:8e:db:bf:d8:91:2c:
7c:bd:05:25:e8:01:12:e5:21:a5:4b:8e:e7:c8:4a:
1b:e3:bd:26:26:1a:d8:4a:6a:9a:1f:04:8b:f3:99:
57:17:87:ad:91:80:16:d2:74:40:e3:de:95:23:9c:
58:ab:2b:df:43:39:04:1c:8f:91:27:38:a2:5a:61:
79:96:a1:a2:05:7f:0a:1f:6d:3d:8c:e1:26:50:89:
3a:1a:a6:a1:9c:2d:ab:13:64:a0:c2:c5:ec:56:cd:
b6:90:fa:2f:6e:62:50:d0:69:cc:ad:fa:c8:93:59:
0b:8e:c7:bf:37:41:d6:24:33:6b:e7:9b:fe:6a:d0:
a7:74:8b:80:b1:c8:93:10:53:f2:36:61:12:f5:86:
31:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5B:F8:62:E0:4B:42:A1:38:0A:8F:0B:85:4E:34:61:DF:2B:EC:E4
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/RVv4YuBLQqE4Co8LhU40Yd8r7OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.99.15.0/24
Signature Algorithm: sha256WithRSAEncryption
18:9b:f3:61:66:bd:41:0d:a6:9b:5a:10:e5:42:3a:e5:c3:64:
33:c0:55:be:70:79:4b:97:b0:dd:77:d0:85:7b:36:2b:3b:d7:
14:5e:40:0b:f3:f3:ea:76:82:1e:35:5c:b0:95:80:ad:3a:51:
1a:14:d1:01:11:17:ad:b0:ac:4f:7f:e7:46:cb:49:86:d7:62:
df:09:49:7d:a2:79:83:56:a4:57:0f:72:f6:d0:03:0b:f8:dd:
a7:98:e8:b0:a7:cc:21:c6:2c:cf:11:a2:99:13:27:18:34:3f:
c4:f1:91:20:38:b9:02:05:1e:e5:07:ed:51:ae:b9:a4:22:d5:
d0:81:46:ef:11:ad:98:fa:08:22:1f:2a:4a:c5:85:5a:3f:8f:
d4:58:f2:84:61:c2:95:23:f8:5b:d3:53:4e:4d:ec:13:de:f4:
4c:92:52:aa:26:58:1a:7a:28:26:3c:76:f0:6a:0e:7f:67:13:
f1:7c:0d:aa:58:b2:f3:0f:67:0e:3c:f8:1b:1f:85:66:90:38:
2d:d7:4b:fb:8f:41:0e:74:08:53:2e:40:1d:a8:9f:49:45:c5:
4b:6f:6c:6c:b2:9c:4b:80:ee:fe:e8:39:2f:29:21:92:f5:40:
8b:ae:1b:84:47:3b:f2:70:f5:05:b2:80:56:15:77:6e:68:46:
64:f3:49:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:10:39 2025 by rpki-client