Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hsgJYr14ZGjOYeDV4WtDqWYYXVM.roa
File: hsgJYr14ZGjOYeDV4WtDqWYYXVM.roa (raw, json)
Hash identifier: 0KYFFIrXN5JG4bJNsVXpoRPs0DdyAxHraQ7OtJ3RvGA=
Subject key identifier: 86:C8:09:62:BD:78:64:68:CE:61:E0:D5:E1:6B:43:A9:66:18:5D:53
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01831BE2FB8EDB133FFEF98A47E1F9035797
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hsgJYr14ZGjOYeDV4WtDqWYYXVM.roa
Signing time: Thu 08 Sep 2022 06:56:43 +0000
ROA not before: Thu 08 Sep 2022 06:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 103.227.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1b:e2:fb:8e:db:13:3f:fe:f9:8a:47:e1:f9:03:57:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 8 06:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c80962bd786468ce61e0d5e16b43a966185d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f0:07:3e:7e:0a:6c:20:42:17:3b:5e:aa:33:
e4:2b:fd:b2:be:43:ca:9f:b7:62:31:62:72:36:53:
c4:ae:d5:e4:1e:e1:ec:f1:a1:ac:f8:f6:78:e2:bb:
b1:67:b5:57:e5:43:b9:d8:f4:ce:2f:51:85:5a:77:
4a:5a:c7:99:1d:e9:eb:fa:a8:87:ec:d1:d0:63:05:
9a:39:24:0b:ba:4a:86:8b:68:b2:35:95:ad:8d:00:
c0:93:cb:37:a4:56:a1:f7:f0:e1:7c:37:a1:25:ab:
1f:43:ef:b1:23:cb:2c:a2:42:84:b9:51:fc:f4:de:
20:20:9e:08:e1:1d:db:f0:d7:c9:21:78:02:01:97:
6d:18:b3:6d:e5:d5:0d:1a:8c:67:49:b7:d8:10:49:
e2:ba:af:11:1e:a2:82:c6:8c:2b:b2:fe:3f:3f:7f:
9a:b9:20:8d:66:71:95:5d:9a:9a:35:db:fd:f2:6e:
fb:27:f5:e9:40:fc:db:af:72:f3:27:5d:30:d9:b3:
08:2d:1f:f5:5e:76:d7:ce:67:64:d3:a9:dd:87:df:
66:49:d4:31:7c:c8:5b:4c:e7:4c:f5:b3:2c:4d:c0:
b4:24:91:22:45:fc:e6:56:dc:d6:38:52:f0:1e:ad:
db:de:fb:52:bb:94:dc:7c:07:f3:42:e5:86:21:41:
b9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C8:09:62:BD:78:64:68:CE:61:E0:D5:E1:6B:43:A9:66:18:5D:53
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hsgJYr14ZGjOYeDV4WtDqWYYXVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.87.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c4:a2:2a:3e:c3:9d:f7:bb:48:95:f1:ff:c3:07:96:a9:f1:
59:d9:13:19:6a:9c:7a:b0:53:86:bd:32:8e:8a:48:63:d9:62:
60:83:90:2f:36:f2:31:80:4a:c0:cb:12:d1:cb:09:10:91:a6:
99:9b:d0:69:10:59:35:c5:5b:4c:4f:ed:4c:e8:8a:c1:38:2c:
06:45:62:1b:af:cd:14:bb:3b:da:de:69:a5:08:3b:1f:79:51:
39:e1:af:25:be:bc:46:20:e4:35:aa:44:d6:d2:f7:ff:80:8f:
c4:85:0b:ca:4f:91:4b:73:25:25:6b:4a:b1:a2:64:52:ec:bd:
0a:6b:b1:a4:ed:3c:35:81:ed:79:13:01:ed:98:22:cb:d6:23:
86:bf:55:65:d1:22:a9:40:05:22:b0:00:e7:99:56:50:f1:fd:
28:d3:a5:ab:11:d3:1a:b4:00:08:d3:66:31:45:07:8e:09:6e:
c7:db:bb:e4:ad:e9:b0:85:ab:a7:4b:b9:68:ae:33:99:25:0f:
95:50:49:76:14:f8:a2:1b:8b:04:44:a2:b1:4e:f3:48:15:81:
e1:13:2e:94:dd:8e:e8:df:a8:ba:53:a8:62:56:ce:67:31:f9:
95:fd:60:87:39:8b:73:ae:be:2a:ca:e8:42:a0:23:4f:fc:b9:
97:56:bd:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:54:21 2025 by rpki-client