Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/5jUjg0HeihAAorhSRaq5BABDHXk.roa
File: 5jUjg0HeihAAorhSRaq5BABDHXk.roa (raw, json)
Hash identifier: 0IBpiopaS9/z3TxrxO6q7XYo3IlXMKjIrptvn3SqWGk=
Subject key identifier: E6:35:23:83:41:DE:8A:10:00:A2:B8:52:45:AA:B9:04:00:43:1D:79
Certificate issuer: /CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Certificate serial: 370E43B5
Authority key identifier: 36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/5jUjg0HeihAAorhSRaq5BABDHXk.roa
Signing time: Sat 01 Jan 2022 11:55:02 +0000
ROA not before: Sat 01 Jan 2022 11:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48492
IP address blocks: 62.201.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 923681717 (0x370e43b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Validity
Not Before: Jan 1 11:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e635238341de8a1000a2b85245aab90400431d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:25:d2:c1:b8:04:fa:d4:fe:d2:8b:bd:bb:
db:ba:0d:9a:05:01:5a:ff:12:c6:10:01:0e:3a:8f:
42:1c:74:d0:e7:9b:62:f7:f4:9f:19:55:db:36:84:
b8:18:4a:6a:78:14:4d:37:db:c2:55:3e:13:3e:4c:
ae:6f:f4:b1:65:b6:05:a3:0c:b1:e0:9e:cf:a1:46:
ac:0d:2d:40:ab:ea:44:a2:c9:86:55:83:d9:3f:fc:
a5:91:c7:de:cf:08:3e:76:8b:52:93:94:47:c3:52:
8c:00:11:f1:75:ae:ee:51:2f:6e:3c:f3:e2:da:4e:
25:f2:75:f8:5f:3e:92:56:b3:f7:8f:a7:41:72:7a:
64:90:b9:47:4e:55:cf:2e:24:05:dd:79:9d:8a:35:
c8:2a:67:c0:3e:16:24:f6:0d:3c:57:e2:37:42:9b:
d6:ef:cf:dd:0b:36:72:f0:40:1d:1b:9e:d6:cf:c3:
bf:95:f3:b5:1b:1d:1d:ad:de:e0:e9:37:83:5b:fa:
dc:e7:12:c8:0f:68:1d:b1:20:e4:0f:1b:e1:4d:91:
49:a7:c8:92:65:35:f7:14:f5:cd:53:b9:6c:31:17:
64:32:fc:f3:83:e7:10:12:c1:16:8c:9f:33:8c:16:
e8:97:29:4a:e1:b0:9f:87:4a:46:ec:1c:3c:25:00:
48:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:35:23:83:41:DE:8A:10:00:A2:B8:52:45:AA:B9:04:00:43:1D:79
X509v3 Authority Key Identifier:
keyid:36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/5jUjg0HeihAAorhSRaq5BABDHXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.239.0/24
Signature Algorithm: sha256WithRSAEncryption
04:5d:7c:d3:98:0f:d4:9a:69:0d:b8:dc:af:40:24:34:73:1f:
b5:eb:8e:bd:84:45:23:4b:aa:ab:5d:60:54:15:6a:80:c9:6b:
c2:e0:fd:fb:c7:04:3a:4f:40:78:ca:4c:39:0d:4d:7f:94:88:
f1:dc:6d:77:e3:cd:1a:d3:f1:d5:53:18:44:c6:cb:1a:04:fd:
f4:70:0a:e6:da:11:34:c4:a4:19:38:f2:9b:5b:ce:a4:3a:0d:
e7:9d:35:39:9c:50:c8:e1:4b:a3:b3:0c:4e:e7:a0:b2:84:c3:
e8:d7:b7:12:6b:c1:84:64:41:d6:fb:e9:ed:db:ec:8b:d5:20:
10:d5:8d:8a:3b:29:3d:db:50:d2:4f:88:38:d2:d6:cc:dc:ca:
b9:63:de:55:7d:78:05:98:c2:a0:3a:76:c7:04:73:29:02:69:
e9:f8:04:4e:a4:ee:82:79:48:fa:fb:3d:ae:cf:30:b9:94:ea:
95:82:d2:a1:d3:0c:c7:55:11:2b:92:47:ee:92:ea:59:ca:eb:
30:01:41:32:91:1c:83:89:ca:9f:f5:67:6f:85:cf:e5:fd:26:
8e:28:10:6d:ea:bc:3b:15:6c:a3:03:59:43:c3:7a:7f:40:40:
c3:16:e8:7d:cc:50:ac:c4:6c:92:cc:9a:0d:06:8b:ba:9d:19:
db:8a:c3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:11:10 2025 by rpki-client