Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Yen9MI9i5b09GJiBYLm-Eq7z5sQ.roa
File: Yen9MI9i5b09GJiBYLm-Eq7z5sQ.roa (raw, json)
Hash identifier: KCAe8EtXXnQ+R0owxDybxy1UYOpjEmeitVU6M4/ejAU=
Subject key identifier: 61:E9:FD:30:8F:62:E5:BD:3D:18:98:81:60:B9:BE:12:AE:F3:E6:C4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182D516A8FE6DA6FAEE4C3BF91BC06070E2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Yen9MI9i5b09GJiBYLm-Eq7z5sQ.roa
Signing time: Thu 25 Aug 2022 13:00:08 +0000
ROA not before: Thu 25 Aug 2022 13:00:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43431
IP address blocks: 103.227.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:16:a8:fe:6d:a6:fa:ee:4c:3b:f9:1b:c0:60:70:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 25 13:00:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61e9fd308f62e5bd3d18988160b9be12aef3e6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:b6:28:91:9b:c8:1d:c4:75:d2:03:aa:e5:
e4:2b:7e:4b:5b:81:23:b6:3c:b9:2b:9a:94:04:f7:
ed:9a:1b:ae:7f:fe:e6:39:70:36:7e:df:30:ab:a9:
a3:f4:58:1f:66:58:1e:55:16:3a:15:3f:3a:26:25:
f7:13:4c:01:53:a6:7e:77:41:5e:9b:65:61:df:db:
0b:0b:62:de:11:f7:6f:88:e8:87:85:78:a5:0a:89:
e5:3f:ab:39:33:21:d8:ea:b6:84:e7:22:d9:7c:e4:
a8:19:9f:0f:76:3e:a1:e1:0d:a4:3d:d6:25:3d:8b:
5a:5d:f3:0c:4e:ce:24:8e:c2:cb:06:d4:de:2b:db:
97:b7:48:58:2e:60:2a:bf:13:84:e5:39:24:bc:15:
2e:14:07:67:2c:9c:25:46:3a:b1:95:02:34:ec:bf:
42:68:5c:8c:75:f4:8c:e6:ee:eb:00:0f:43:bb:30:
6f:bb:19:34:07:54:c3:9d:db:08:8a:39:e3:5f:0f:
de:db:de:00:31:00:f3:12:9e:0e:0b:9c:30:16:bf:
9a:f5:c8:c8:b3:26:d3:38:be:ee:a2:16:f6:08:95:
1c:3a:1f:9c:e6:62:7f:9c:38:6a:38:5b:79:58:80:
7e:5c:61:52:f4:a9:cf:68:a4:1b:3d:7b:40:58:ef:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E9:FD:30:8F:62:E5:BD:3D:18:98:81:60:B9:BE:12:AE:F3:E6:C4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Yen9MI9i5b09GJiBYLm-Eq7z5sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.86.0/24
Signature Algorithm: sha256WithRSAEncryption
06:86:89:2e:33:c7:35:ab:b9:a7:2a:e0:98:fc:2e:54:8c:a1:
4f:bc:4d:b5:8f:f5:58:7c:db:ad:19:74:6b:b4:c9:aa:2d:0c:
f1:a6:33:06:04:96:8e:69:59:15:7f:fe:fc:fe:85:55:57:06:
1f:8f:78:cd:9b:eb:33:37:76:b5:3c:38:8d:5b:ed:4e:8e:8f:
bf:14:f8:bd:a0:13:a7:28:47:0a:18:7c:75:75:83:67:f4:9d:
de:13:33:f6:aa:ed:e7:b2:e5:c5:66:09:1f:d7:aa:e0:f8:25:
cb:0a:6c:6c:51:59:28:8f:fa:8a:ac:31:36:fe:44:7f:88:04:
cb:78:ae:37:98:7a:de:78:36:43:2f:e6:70:b8:7e:9b:45:b6:
d5:b6:36:03:75:4f:5b:3e:00:c7:ca:e0:5f:89:b8:11:17:86:
8e:1a:da:8a:03:7c:3b:bc:4b:a0:1c:a2:cf:c3:af:12:68:69:
d5:09:e4:8e:6e:17:07:88:2d:41:c6:c8:ec:6c:9b:c8:3e:e9:
37:7b:84:eb:a0:5f:0a:3a:fa:8d:49:80:28:67:d4:5d:1d:46:
18:06:61:77:cd:8d:0c:6d:25:b2:94:06:c7:4f:2e:ba:ce:af:
97:16:e3:9e:5b:ae:0e:20:3b:10:e4:39:9b:03:5a:85:71:46:
15:18:b7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 11:11:41 2025 by rpki-client