Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/3tXlXGpUT4vjlyGXxZdajjf_LHk.roa
File: 3tXlXGpUT4vjlyGXxZdajjf_LHk.roa (raw, json)
Hash identifier: 6WJRp6+B7O/VNjN8nCYaolVkUX0y2eR5JEbDSzl48GM=
Subject key identifier: DE:D5:E5:5C:6A:54:4F:8B:E3:97:21:97:C5:97:5A:8E:37:FF:2C:79
Certificate issuer: /CN=786758bea68f0825cf16e66fb02ee7bca454bae2
Certificate serial: 018BDE096D5F82A26982486E55B9BEDC6EBE
Authority key identifier: 78:67:58:BE:A6:8F:08:25:CF:16:E6:6F:B0:2E:E7:BC:A4:54:BA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eGdYvqaPCCXPFuZvsC7nvKRUuuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/3tXlXGpUT4vjlyGXxZdajjf_LHk.roa
Signing time: Fri 17 Nov 2023 16:07:21 +0000
ROA not before: Fri 17 Nov 2023 16:07:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201912
IP address blocks: 185.162.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:09:6d:5f:82:a2:69:82:48:6e:55:b9:be:dc:6e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786758bea68f0825cf16e66fb02ee7bca454bae2
Validity
Not Before: Nov 17 16:07:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ded5e55c6a544f8be3972197c5975a8e37ff2c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:80:ce:e6:89:9c:67:d9:28:5c:8e:87:77:
81:04:28:a7:fd:95:27:fe:06:50:68:ef:fb:73:2b:
b8:07:41:54:43:49:d4:27:8a:04:f8:7f:2d:26:a0:
de:82:64:b3:63:a9:1d:17:0e:3f:bc:b6:31:cd:ac:
81:41:95:19:ed:4f:62:ff:a3:54:fe:cf:f4:f5:1a:
eb:47:56:db:54:e0:87:52:fa:f9:44:db:b5:ae:a7:
27:01:6c:cb:f1:cd:47:4b:da:a8:8f:a0:4d:ec:82:
22:28:14:75:03:b6:43:3d:55:b6:c5:ec:50:4f:bc:
de:68:04:9d:ac:17:4e:53:b2:22:97:f1:63:da:08:
13:d9:8b:7d:a0:33:68:21:ec:c6:eb:8b:5c:f6:22:
53:a7:48:d6:7f:2b:19:1d:c8:13:d5:28:9a:68:05:
78:dd:66:63:a6:9e:d8:2d:ce:37:d9:8b:9a:5b:5f:
e6:47:c4:36:3b:7d:cc:35:e9:d9:81:bc:bd:86:84:
76:af:bd:17:ec:f0:03:53:1f:60:b6:dd:01:b8:cb:
0b:b8:a4:13:fe:59:8d:c0:04:69:43:f0:49:00:fe:
53:de:7b:81:30:d2:7b:3d:76:69:c9:0d:c9:40:ac:
d8:6d:5c:bf:55:c5:97:58:44:48:06:66:50:da:40:
e9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D5:E5:5C:6A:54:4F:8B:E3:97:21:97:C5:97:5A:8E:37:FF:2C:79
X509v3 Authority Key Identifier:
keyid:78:67:58:BE:A6:8F:08:25:CF:16:E6:6F:B0:2E:E7:BC:A4:54:BA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eGdYvqaPCCXPFuZvsC7nvKRUuuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/3tXlXGpUT4vjlyGXxZdajjf_LHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/eGdYvqaPCCXPFuZvsC7nvKRUuuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.104.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:6a:ff:21:2e:22:28:aa:56:6a:f4:6b:f0:1d:9a:8f:76:e4:
f5:9a:5c:2d:4f:b9:ee:90:da:76:5b:63:8c:87:ed:82:2d:47:
24:c0:ab:20:bc:fb:21:ee:cb:df:6c:97:a3:b2:18:d2:a5:ed:
5f:af:af:3d:0d:a7:1c:07:eb:8e:fe:a8:7f:44:a2:1a:a4:3b:
40:e6:24:8e:8f:77:43:3c:dd:8b:45:88:e9:a4:dc:4e:ab:36:
49:f1:37:fa:92:68:0d:61:26:ff:a8:41:bd:cc:d2:8d:17:85:
35:3e:52:f5:2c:ee:02:e2:ef:39:4a:9b:d2:16:13:8c:23:d5:
8e:c7:5d:ca:59:34:98:a4:4a:24:7f:da:44:ae:30:7f:37:95:
8b:e5:9b:ff:7c:5a:af:6e:d7:07:30:ab:61:b0:f5:14:9f:b4:
ec:7c:7f:8c:ef:9f:51:e1:bb:51:ac:b2:d4:e3:fc:59:2e:c8:
c0:f4:8b:a8:67:9a:d6:4e:3b:04:9b:1f:ba:07:a5:4f:1f:dc:
d7:e7:90:00:76:f4:5a:de:77:1e:32:c8:cf:a9:b9:c4:86:93:
1d:2e:59:a8:44:29:36:51:7e:43:bb:1a:58:4b:86:94:9e:4a:
1c:58:d5:15:36:db:3a:3a:ea:21:a1:b2:30:27:ee:e9:d0:6b:
f3:dd:0f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:23:26 2025 by rpki-client