Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/A640jD5XhI4PNcfRAlmh2v4qRZA.roa
File: A640jD5XhI4PNcfRAlmh2v4qRZA.roa (raw, json)
Hash identifier: a4kI4x4ClvosiaUBC/yUOCbHtvAxkP+xKvu7N4tVDU0=
Subject key identifier: 03:AE:34:8C:3E:57:84:8E:0F:35:C7:D1:02:59:A1:DA:FE:2A:45:90
Certificate issuer: /CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1
Certificate serial: 04A8F2E6
Authority key identifier: 5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/A640jD5XhI4PNcfRAlmh2v4qRZA.roa
Signing time: Sat 01 Jan 2022 14:55:18 +0000
ROA not before: Sat 01 Jan 2022 14:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212905
IP address blocks: 178.159.35.0/24 maxlen: 24
2a0c:d200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78181094 (0x4a8f2e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1
Validity
Not Before: Jan 1 14:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03ae348c3e57848e0f35c7d10259a1dafe2a4590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:a9:1d:31:41:86:7c:ad:6f:bd:e5:36:c9:
11:2f:4e:5c:1f:fb:f8:df:2f:77:4a:a0:0c:c6:db:
10:c8:3b:d5:25:f9:bf:ce:d5:f1:53:29:a0:4b:0c:
1a:f3:3b:fe:43:aa:dd:c4:b6:a4:4a:a2:12:e3:5b:
33:ee:69:42:b7:2b:af:47:17:cd:ae:95:50:f9:0b:
3f:6e:de:54:14:7f:cf:07:f5:5a:bd:be:c1:ba:4a:
0f:dc:1e:83:e6:09:9e:3e:f2:b1:da:1e:aa:96:70:
f8:24:93:51:ea:a6:70:5f:d5:d1:60:12:53:b2:64:
1b:c6:e3:b6:da:c5:e0:5d:d0:99:58:0c:22:2b:0f:
34:55:9e:38:8d:f4:7d:ec:36:d7:88:67:ec:d3:f0:
44:31:e5:a7:6c:bc:7a:1d:24:c3:a8:2c:46:6e:a8:
ae:f1:a8:25:3d:b5:6e:62:25:68:0b:dc:b3:0a:36:
a4:7d:a7:93:c2:91:17:6f:45:ac:6f:53:89:ff:b9:
3b:46:aa:23:d9:88:7a:2e:13:54:ae:56:7e:1c:fb:
cf:4d:2b:1c:cb:ed:20:a8:13:33:94:04:44:5e:ec:
ed:c3:c0:39:40:82:17:26:32:3c:0f:d4:2c:e0:e8:
6e:bb:19:a1:33:7c:67:e9:c5:1b:03:35:03:87:b2:
3c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AE:34:8C:3E:57:84:8E:0F:35:C7:D1:02:59:A1:DA:FE:2A:45:90
X509v3 Authority Key Identifier:
keyid:5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/A640jD5XhI4PNcfRAlmh2v4qRZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.35.0/24
IPv6:
2a0c:d200::/48
Signature Algorithm: sha256WithRSAEncryption
7c:80:89:f4:5c:65:0e:c9:38:44:d9:36:5c:84:fd:88:9b:57:
33:a8:3b:af:34:d9:ab:4e:59:6f:6c:13:1f:5b:d9:12:b0:58:
83:47:0a:1f:6d:f7:2a:95:81:29:ae:e2:a1:84:c7:72:3c:c6:
f9:5a:c2:08:82:6d:dd:85:97:e4:b8:8e:af:df:a8:88:08:ad:
db:df:85:b9:df:39:e1:65:ef:0f:e8:c1:36:73:02:f2:69:44:
84:e2:02:b0:fb:e2:83:1c:51:dc:d3:33:01:5c:62:cb:ee:47:
15:de:48:a4:c8:83:53:86:6e:bf:2e:78:91:6b:54:5f:87:09:
e8:fa:9c:a4:f8:eb:aa:89:42:aa:7c:1a:91:f6:43:3b:61:14:
6a:de:ba:1d:7f:d3:7a:5a:71:28:3a:6a:e7:85:4d:70:64:c6:
e4:8b:cd:f7:67:b0:88:0c:0a:49:88:23:3c:93:e6:02:db:74:
6f:15:c7:55:36:4d:00:e6:a4:e6:c3:31:32:99:2f:66:af:4e:
f4:46:c0:0d:e0:09:ec:9d:91:41:52:aa:53:91:4a:e8:e7:92:
33:1a:66:e2:af:f3:44:2c:7f:11:9b:40:f4:08:2d:ea:8c:64:
0e:b9:32:18:b9:55:89:98:96:41:b8:82:c0:37:8d:23:e4:4f:
42:19:66:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:41:30 2025 by rpki-client