Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/18b52b-5011-4309-bfbf-6eaa1c89824a/1/p2lExppSOSYN_-B43TAPcpJGpiA.roa
File: p2lExppSOSYN_-B43TAPcpJGpiA.roa (raw, json)
Hash identifier: kGC1bxjL0L/1z5jxXkr92LDs3SDXtNGuP6RhJub+qPk=
Subject key identifier: A7:69:44:C6:9A:52:39:26:0D:FF:E0:78:DD:30:0F:72:92:46:A6:20
Certificate issuer: /CN=b236f2e42522e98d376be38a89e5dd51abbf7996
Certificate serial: 0B2C93F7
Authority key identifier: B2:36:F2:E4:25:22:E9:8D:37:6B:E3:8A:89:E5:DD:51:AB:BF:79:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sjby5CUi6Y03a-OKieXdUau_eZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/18b52b-5011-4309-bfbf-6eaa1c89824a/1/p2lExppSOSYN_-B43TAPcpJGpiA.roa
Signing time: Sat 01 Jan 2022 14:55:51 +0000
ROA not before: Sat 01 Jan 2022 14:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28717
IP address blocks: 62.122.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187470839 (0xb2c93f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b236f2e42522e98d376be38a89e5dd51abbf7996
Validity
Not Before: Jan 1 14:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a76944c69a5239260dffe078dd300f729246a620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:bf:3d:88:83:12:5f:bb:7a:05:09:cb:fd:
0c:aa:40:44:99:3f:54:46:6e:e2:68:bf:a6:cc:10:
06:f3:07:91:0b:48:76:f2:c1:ee:76:f0:bc:e8:92:
97:fb:f1:c4:21:a9:97:f5:72:59:2a:0f:f4:c1:2c:
c7:47:cd:41:26:c4:1a:ee:6c:5d:d1:cb:ef:ef:75:
92:95:b9:59:17:03:1b:08:60:a8:0f:f2:db:6e:00:
00:49:2d:0f:d4:7c:fe:d0:59:b8:dd:b8:57:2f:ce:
27:71:5c:5e:59:81:81:c5:8b:3d:76:fc:63:ea:b0:
39:8e:07:51:80:4e:da:15:d4:4b:6e:e0:55:46:fa:
bf:fc:7a:fd:d8:01:e4:2a:0d:21:58:07:8c:39:ef:
b3:f4:38:5c:1c:b6:b2:d7:c9:89:a8:42:b4:26:a7:
95:4d:42:20:ec:60:e5:73:06:6a:51:92:bb:66:39:
3a:39:a4:f1:8d:68:d2:b1:52:30:ce:4e:bb:bb:87:
65:5f:fe:7b:c0:a6:0c:fa:74:a2:b6:0e:5f:6a:e9:
73:5c:8e:a5:67:28:b6:66:8f:36:9f:ef:53:c6:68:
50:66:ff:4b:df:5d:14:66:49:91:be:0a:c6:27:fa:
39:63:cb:d1:f1:c5:88:b0:57:f2:9a:bc:1c:0c:69:
f8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:69:44:C6:9A:52:39:26:0D:FF:E0:78:DD:30:0F:72:92:46:A6:20
X509v3 Authority Key Identifier:
keyid:B2:36:F2:E4:25:22:E9:8D:37:6B:E3:8A:89:E5:DD:51:AB:BF:79:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sjby5CUi6Y03a-OKieXdUau_eZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/18b52b-5011-4309-bfbf-6eaa1c89824a/1/p2lExppSOSYN_-B43TAPcpJGpiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/18b52b-5011-4309-bfbf-6eaa1c89824a/1/sjby5CUi6Y03a-OKieXdUau_eZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.160.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:af:63:f7:b8:db:90:3a:fd:4a:55:47:47:69:f2:e2:f1:87:
2a:2b:fb:dd:51:1b:66:dd:5b:7f:be:38:87:45:1b:82:62:29:
b0:c3:2a:62:13:24:f7:b5:4e:a9:67:07:1d:a9:de:5c:e6:71:
08:c5:20:51:1a:8a:a6:05:d0:85:56:39:7f:53:79:cd:05:e8:
5d:87:f1:ed:49:27:c2:74:c3:02:c3:24:6f:a2:90:70:c0:a4:
d9:63:8a:aa:61:c8:02:2c:6e:70:e8:ee:a5:ac:0e:2c:7b:8f:
46:c7:07:9e:25:45:5e:32:47:e7:ed:10:cd:7a:75:37:52:d5:
fd:9e:64:7c:28:8f:95:51:99:89:35:69:5b:b4:96:87:64:1a:
5e:08:bf:0b:16:f0:15:fe:f0:fe:aa:a6:e6:40:d7:83:a4:b5:
0a:45:4a:a4:28:85:21:3c:6e:10:3a:67:7d:3f:6e:e9:59:a0:
a3:e0:fe:c8:a4:c9:6c:8d:64:64:93:ce:bc:8c:a4:b4:6f:32:
0c:36:2a:fe:ae:3b:6d:6f:61:f3:69:ad:c2:cd:a5:d3:89:70:
91:be:a3:74:b2:a8:1c:44:37:68:73:83:96:db:19:ae:70:e7:
2f:ad:a1:d7:12:fc:c5:59:04:47:f2:ce:3c:8e:2c:d5:69:bf:
15:df:16:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:15 2025 by rpki-client