Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/L7M5XuEPf6RAy6smz_iuEJ8AAzA.roa
File: L7M5XuEPf6RAy6smz_iuEJ8AAzA.roa (raw, json)
Hash identifier: Vjg9faWIM30XlomF9ckFVui9xnR3jHDUPEwYqWEp/I0=
Subject key identifier: 2F:B3:39:5E:E1:0F:7F:A4:40:CB:AB:26:CF:F8:AE:10:9F:00:03:30
Certificate issuer: /CN=d2e6ddda40d782559ee65e50f908e1689a65a800
Certificate serial: 0182F3E53AE26AC6989DE49A0C8C01F78BB4
Authority key identifier: D2:E6:DD:DA:40:D7:82:55:9E:E6:5E:50:F9:08:E1:68:9A:65:A8:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ubd2kDXglWe5l5Q-QjhaJplqAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/L7M5XuEPf6RAy6smz_iuEJ8AAzA.roa
Signing time: Wed 31 Aug 2022 12:34:22 +0000
ROA not before: Wed 31 Aug 2022 12:34:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211856
IP address blocks: 62.192.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f3:e5:3a:e2:6a:c6:98:9d:e4:9a:0c:8c:01:f7:8b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2e6ddda40d782559ee65e50f908e1689a65a800
Validity
Not Before: Aug 31 12:34:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb3395ee10f7fa440cbab26cff8ae109f000330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:99:82:96:15:f3:51:da:7c:78:4c:0d:90:8c:
e3:6d:8c:ed:a1:55:db:89:8d:28:d2:a1:16:35:a3:
39:13:ba:65:2d:38:13:fe:24:36:f7:38:26:c4:e9:
08:90:72:65:3f:1d:10:7b:7d:3c:fb:9b:de:4c:11:
0c:d0:05:aa:24:d5:ba:1a:90:3d:e5:f8:cf:0f:31:
23:70:52:f3:56:83:d8:54:07:ad:44:e3:27:8d:76:
1a:44:89:23:50:37:2d:2f:03:c5:87:24:e4:98:cd:
81:63:a4:2e:3e:aa:3c:e2:e2:f0:3c:04:ce:21:39:
83:69:f2:cf:69:d8:96:0f:c4:22:de:81:e2:32:67:
af:70:58:f3:8c:25:0e:e3:41:bb:ef:93:bf:57:8c:
df:90:88:30:9e:b2:61:da:b4:ee:37:a3:fa:fe:d4:
a4:e5:d3:b2:61:84:50:98:ce:f0:27:dc:3a:8e:c1:
d7:25:36:31:82:0e:55:4b:b5:2c:e9:3e:a9:8a:f9:
1e:bd:1d:db:91:d0:57:e1:02:3f:ea:25:21:bb:ac:
26:b0:fa:2f:0a:c1:a0:9f:22:bd:65:46:88:5d:3d:
b7:cc:b0:a9:da:1b:a3:e0:5f:a5:32:0c:e9:a2:1d:
38:58:62:e0:af:38:86:e6:63:97:70:a9:68:17:7d:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B3:39:5E:E1:0F:7F:A4:40:CB:AB:26:CF:F8:AE:10:9F:00:03:30
X509v3 Authority Key Identifier:
keyid:D2:E6:DD:DA:40:D7:82:55:9E:E6:5E:50:F9:08:E1:68:9A:65:A8:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ubd2kDXglWe5l5Q-QjhaJplqAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/L7M5XuEPf6RAy6smz_iuEJ8AAzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7335d2-3c3f-4fca-8000-ccf9b89e22e2/1/0ubd2kDXglWe5l5Q-QjhaJplqAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.164.0/22
Signature Algorithm: sha256WithRSAEncryption
60:fb:8b:1d:63:f5:9b:b4:13:f9:08:76:53:d5:6d:50:14:97:
66:e3:bb:98:31:82:45:07:09:cb:ec:4c:88:0a:43:3c:48:a7:
57:33:69:d7:ae:50:9f:68:b3:ab:df:2e:16:cd:53:9f:d9:05:
7c:51:4e:d9:6b:47:11:5f:9b:c5:e9:45:de:a6:f3:0a:61:87:
3c:59:70:4e:e1:5a:66:3d:67:d0:0c:ac:af:fa:2a:23:97:3b:
2b:09:be:62:24:bc:e3:99:f2:de:69:c4:f2:b9:9b:3e:b9:76:
28:c8:55:80:c2:75:4d:f7:71:75:15:5f:23:6a:9e:e2:01:4f:
b9:e1:c0:6e:54:91:00:b5:d7:ec:eb:4e:6a:08:5e:6b:4b:a6:
46:d7:a7:6e:82:33:61:77:b2:47:45:fb:cd:c7:55:ef:08:d9:
e4:96:b2:16:e4:ed:6f:09:fe:ed:2f:9b:bd:bf:be:46:de:10:
1d:f6:0e:ff:b1:f3:36:d3:f4:2c:65:45:76:dd:c9:83:05:9a:
2c:84:93:7d:f2:31:ab:e1:ce:8d:e0:f4:b6:7f:c2:9f:dc:31:
51:27:97:70:4c:c5:cb:08:7c:db:ca:6b:3f:85:b1:46:5c:e6:
28:23:1a:af:c0:35:aa:14:38:38:3d:f0:67:fa:2e:cc:12:41:
cf:0e:c8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:33:53 2025 by rpki-client