Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PvijiLyu_MYLC9O1_FUGgkanmzk.roa
File: PvijiLyu_MYLC9O1_FUGgkanmzk.roa (raw, json)
Hash identifier: gaUE2oS23YvPTi/3p/TZquxM1FTxXKUBRe5rFimORsc=
Subject key identifier: 3E:F8:A3:88:BC:AE:FC:C6:0B:0B:D3:B5:FC:55:06:82:46:A7:9B:39
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 0187942F512B6D422BF6105AE077CBB4B2D0
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PvijiLyu_MYLC9O1_FUGgkanmzk.roa
Signing time: Tue 18 Apr 2023 11:45:41 +0000
ROA not before: Tue 18 Apr 2023 11:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12678
IP address blocks: 159.253.176.0/22 maxlen: 22
159.253.180.0/24 maxlen: 24
185.153.128.0/22 maxlen: 23
159.253.181.0/24 maxlen: 24
185.153.131.0/24 maxlen: 24
31.222.64.0/22 maxlen: 23
31.222.70.0/24 maxlen: 24
31.222.70.0/23 maxlen: 23
31.222.71.0/24 maxlen: 24
31.222.66.0/23 maxlen: 24
31.222.68.0/23 maxlen: 23
31.222.72.0/22 maxlen: 24
31.222.78.0/23 maxlen: 24
31.222.76.0/23 maxlen: 23
2a00:aea0:213::/48 maxlen: 48
2a00:aea0:113::/48 maxlen: 48
2a00:aea0:211::/48 maxlen: 48
2a00:aea0:111::/48 maxlen: 48
2a00:aea0:212::/48 maxlen: 48
2a00:aea0:112::/48 maxlen: 48
2a00:aea0:6500::/40 maxlen: 40
2a00:aea0:600::/40 maxlen: 40
2a00:aea0:200::/40 maxlen: 40
2a00:aea0:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:94:2f:51:2b:6d:42:2b:f6:10:5a:e0:77:cb:b4:b2:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Apr 18 11:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ef8a388bcaefcc60b0bd3b5fc55068246a79b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bd:ad:fd:2f:e9:87:a1:cb:cc:25:73:5c:78:
cf:8a:75:28:81:5e:02:fa:82:dc:69:f5:d6:c6:47:
18:07:90:ee:2c:63:b8:88:03:73:9e:b5:67:20:6e:
ca:2f:4e:b8:a5:c5:01:12:b0:a2:30:39:f2:d6:1e:
7f:39:15:86:07:a8:48:bd:9d:c2:aa:29:20:1c:e7:
8c:a5:7d:0f:7e:39:09:cb:06:66:7c:47:cc:4c:96:
d7:02:2b:61:85:c0:26:ca:7b:13:0d:cc:1c:d2:95:
6f:a0:6e:82:20:08:9c:cf:54:a0:dd:b2:99:2b:ef:
23:97:7c:6f:3b:3d:08:b3:2d:45:76:92:7e:93:82:
ab:ee:b8:6f:42:9d:03:d5:18:ef:0f:34:55:1c:1d:
0c:88:87:6c:6f:88:73:69:33:10:15:8e:ff:e4:61:
50:69:22:16:55:da:23:7b:2f:c3:b4:be:15:2e:9a:
23:8c:3d:87:f4:c6:bc:3b:65:8d:aa:af:c8:59:9f:
43:9a:25:5a:8d:2c:c9:61:a4:ea:ba:0b:c6:f1:76:
f4:e1:84:02:cc:70:98:ad:1c:b1:48:ce:fc:2d:17:
8a:39:4a:73:e2:a4:3e:0b:91:31:1d:e4:90:dd:ca:
0f:7e:7d:28:17:64:11:e3:41:b9:2a:4b:5e:bf:6f:
dd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F8:A3:88:BC:AE:FC:C6:0B:0B:D3:B5:FC:55:06:82:46:A7:9B:39
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PvijiLyu_MYLC9O1_FUGgkanmzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.64.0/20
159.253.176.0-159.253.181.255
185.153.128.0/22
IPv6:
2a00:aea0:100::-2a00:aea0:2ff:ffff:ffff:ffff:ffff:ffff
2a00:aea0:600::/40
2a00:aea0:6500::/40
Signature Algorithm: sha256WithRSAEncryption
53:d4:b0:d0:2d:52:1c:78:cd:66:41:fa:10:16:9f:84:2a:73:
a0:b3:60:fc:36:f6:5c:c4:5e:c2:a8:c4:fe:78:15:e9:85:a8:
52:79:02:ef:87:01:df:d1:a2:ea:df:4e:96:1b:7e:ba:94:ed:
dc:da:46:3c:19:cd:ad:8c:5e:13:e3:b2:02:83:58:1e:e7:66:
cf:3c:8d:c5:5c:9f:2f:a0:36:bf:36:13:1f:79:c4:06:42:18:
1e:01:ed:06:71:96:3a:41:9b:fc:a0:e4:c9:71:58:35:42:8e:
34:15:b0:f3:d8:38:9d:25:87:68:b3:87:12:3f:57:3a:83:44:
fc:5f:f1:78:e3:02:de:23:29:27:88:67:37:a8:8b:39:7f:cc:
5c:84:39:43:f2:b3:9f:60:21:e1:e2:28:a0:04:6c:22:49:46:
04:c0:e0:9b:ef:f5:c6:d1:43:7e:b4:e2:55:3f:3c:45:e6:95:
8e:4d:2d:6e:5a:13:85:51:b0:01:c1:82:1b:70:15:b0:5b:63:
7e:d1:c6:0e:ca:c1:3b:69:14:1a:74:cf:d9:99:bb:4f:22:d9:
c4:a9:83:6d:51:96:05:38:2a:6c:71:15:87:39:5e:46:06:a7:
3b:70:f9:9e:dd:2d:84:47:37:8c:10:70:9a:ca:fa:d1:43:ec:
e6:97:aa:54
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAYeUL1ErbUIr9hBa4HfLtLLQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlZWNkNGNhYTlhM2E1NzcxNWUzZDVkNjZiY2NkNzE4NWFm
ZTQwZGEwHhcNMjMwNDE4MTE0NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWY4YTM4OGJjYWVmY2M2MGIwYmQzYjVmYzU1MDY4MjQ2YTc5YjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhL2t/S/ph6HLzCVzXHjPinUogV4C
+oLcafXWxkcYB5DuLGO4iANznrVnIG7KL064pcUBErCiMDny1h5/ORWGB6hIvZ3C
qikgHOeMpX0PfjkJywZmfEfMTJbXAithhcAmynsTDcwc0pVvoG6CIAicz1Sg3bKZ
K+8jl3xvOz0Isy1FdpJ+k4Kr7rhvQp0D1RjvDzRVHB0MiIdsb4hzaTMQFY7/5GFQ
aSIWVdojey/DtL4VLpojjD2H9Ma8O2WNqq/IWZ9DmiVajSzJYaTqugvG8Xb04YQC
zHCYrRyxSM78LReKOUpz4qQ+C5ExHeSQ3coPfn0oF2QR40G5Kktev2/djwIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFD74o4i8rvzGCwvTtfxVBoJGp5s5MB8GA1UdIwQY
MBaAFD7s1Mqpo6V3FePV1mvM1xha/kDaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHV6VXlxbWpwWGNWNDlYV2E4elhHRnItUU5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8zNjQ1YjItYWYyZS00YzBkLTk4MTIt
NjllZWM1YjRiNTA1LzEvUHZpamlMeXVfTVlMQzlPMV9GVUdna2FubXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8zNjQ1YjItYWYyZS00YzBkLTk4MTItNjllZWM1YjRiNTA1
LzEvUHV6VXlxbWpwWGNWNDlYV2E4elhHRnItUU5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDAgBAIAATAaAwQEH95AMAwD
BASf/bADBAGf/bQDBAK5mYAwKAQCAAIwIjAQAwYAKgCuoAEDBgAqAK6gAgMGACoA
rqAGAwYAKgCuoGUwDQYJKoZIhvcNAQELBQADggEBAFPUsNAtUhx4zWZB+hAWn4Qq
c6CzYPw29lzEXsKoxP54FemFqFJ5Au+HAd/RourfTpYbfrqU7dzaRjwZza2MXhPj
sgKDWB7nZs88jcVcny+gNr82Ex95xAZCGB4B7QZxljpBm/yg5MlxWDVCjjQVsPPY
OJ0lh2izhxI/VzqDRPxf8XjjAt4jKSeIZzeoizl/zFyEOUPys59gIeHiKKAEbCJJ
RgTA4Jvv9cbRQ3604lU/PEXmlY5NLW5aE4VRsAHBghtwFbBbY37Rxg7KwTtpFBp0
z9mZu08i2cSpg21RlgU4KmxxFYc5XkYGpztw+Z7dLYRHN4wQcJrK+tFD7OaXqlQ=
-----END CERTIFICATE-----
Generated at Wed Jun 18 23:17:18 2025 by rpki-client