Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/ApwmxOnmIs7J89-W2_qB4yzUrR8.roa
File: ApwmxOnmIs7J89-W2_qB4yzUrR8.roa (raw, json)
Hash identifier: XusXUnSWUrLvHdNy8m5RqlX/oMM7kRJZV0i10CWJDbQ=
Subject key identifier: 02:9C:26:C4:E9:E6:22:CE:C9:F3:DF:96:DB:FA:81:E3:2C:D4:AD:1F
Certificate issuer: /CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Certificate serial: 258E1666
Authority key identifier: E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/ApwmxOnmIs7J89-W2_qB4yzUrR8.roa
Signing time: Sat 01 Jan 2022 05:58:08 +0000
ROA not before: Sat 01 Jan 2022 05:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204559
IP address blocks: 178.235.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 630068838 (0x258e1666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Validity
Not Before: Jan 1 05:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=029c26c4e9e622cec9f3df96dbfa81e32cd4ad1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2d:c4:f6:cd:4d:ec:45:da:8b:5f:e3:2a:01:
87:4e:0c:f5:20:00:00:45:93:f1:e9:37:bd:03:cd:
13:b2:6d:88:1a:9a:c7:93:6b:8f:2d:f5:e1:4b:d8:
90:19:30:f9:66:07:5e:85:8b:ee:65:00:04:05:72:
31:a0:f9:24:e6:22:8a:f4:21:32:60:b1:70:92:0c:
f5:d2:a6:b5:df:ef:b3:ab:6e:5a:87:ea:45:e5:83:
87:02:f8:48:fa:8e:c2:62:77:58:22:70:fe:72:4c:
de:44:40:3e:3f:c1:1a:67:ee:2c:f4:f4:e1:86:e7:
9b:16:e7:90:35:f1:93:de:92:9c:b4:85:93:2f:1e:
ed:76:21:2a:53:d8:5c:44:c0:ba:5b:9b:af:18:08:
39:f8:02:08:3f:e8:eb:a8:0f:e7:a4:2b:71:ac:9a:
41:1a:52:a8:2e:90:12:51:dc:92:88:cb:03:59:9c:
36:09:51:ae:89:30:35:24:a3:9f:fa:8c:c6:46:91:
81:56:18:53:ef:43:17:ac:14:e1:fa:d9:16:35:ae:
23:14:6d:ad:5e:f6:93:ef:6d:0f:f8:ee:0e:ee:68:
53:84:d6:6a:58:4e:c6:ad:9e:e6:b8:04:31:4f:7d:
5a:b5:cf:36:e2:42:68:6a:cc:e1:26:2e:c3:a8:20:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9C:26:C4:E9:E6:22:CE:C9:F3:DF:96:DB:FA:81:E3:2C:D4:AD:1F
X509v3 Authority Key Identifier:
keyid:E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/ApwmxOnmIs7J89-W2_qB4yzUrR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.235.243.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:54:24:dc:8a:c1:f4:aa:5a:e1:cb:62:c6:27:be:48:12:03:
a5:b7:9d:17:7b:47:f6:b0:bf:d9:2e:b0:d1:71:1c:da:e3:54:
79:1d:cf:1d:a4:d6:6a:77:c0:4e:0e:91:70:b0:75:09:69:db:
6c:57:aa:b6:20:99:c5:e5:5b:82:fa:0b:ac:5c:01:66:17:6a:
83:3d:3a:bc:ab:77:a7:ff:e4:78:00:79:d4:e7:c4:14:f4:25:
0c:20:e2:b0:9f:b8:78:d5:f1:64:6a:fc:6c:c0:cf:2e:2d:52:
c7:2b:dd:82:02:8e:82:2e:09:51:15:49:ad:a5:8c:97:44:a9:
7d:9f:7b:18:90:b9:a4:82:23:ac:e0:50:8f:51:a0:54:2b:d0:
b9:53:2e:3f:a2:30:0c:a9:1e:a3:60:95:e0:b2:cc:d7:b4:b3:
70:00:13:c0:52:a1:ec:c2:50:c8:b4:84:f3:28:51:89:11:4a:
f1:51:08:bf:31:9f:ad:5a:58:93:8a:63:b3:52:f9:68:08:e7:
10:2c:a2:7b:ed:e0:84:9a:2b:c7:b0:dc:22:46:8e:fb:46:f4:
0e:b6:00:f7:dc:ed:d0:6b:88:99:18:7c:fb:90:76:de:43:df:
8f:ed:8f:66:2b:09:f8:dc:92:8f:16:8a:d6:dc:31:c2:09:8d:
d5:3b:1e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:48 2025 by rpki-client