Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/rEpgiahdaanTaufIqCTHybMK-qI.roa
File: rEpgiahdaanTaufIqCTHybMK-qI.roa (raw, json)
Hash identifier: TgmQ++TFggWfrcz/WyhS+nSEVfnctbl8TvYV0kkPteg=
Subject key identifier: AC:4A:60:89:A8:5D:69:A9:D3:6A:E7:C8:A8:24:C7:C9:B3:0A:FA:A2
Certificate issuer: /CN=786758bea68f0825cf16e66fb02ee7bca454bae2
Certificate serial: 018BDE2D21C71B47D6B9766C6E7DFA33EEB0
Authority key identifier: 78:67:58:BE:A6:8F:08:25:CF:16:E6:6F:B0:2E:E7:BC:A4:54:BA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eGdYvqaPCCXPFuZvsC7nvKRUuuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/rEpgiahdaanTaufIqCTHybMK-qI.roa
Signing time: Fri 17 Nov 2023 16:46:21 +0000
ROA not before: Fri 17 Nov 2023 16:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3292
IP address blocks: 185.162.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:2d:21:c7:1b:47:d6:b9:76:6c:6e:7d:fa:33:ee:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786758bea68f0825cf16e66fb02ee7bca454bae2
Validity
Not Before: Nov 17 16:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac4a6089a85d69a9d36ae7c8a824c7c9b30afaa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7f:dc:a2:30:55:3e:d4:9d:14:b7:10:28:19:
38:4f:76:74:8f:63:99:a8:29:07:83:c6:ec:ed:95:
d3:29:1c:88:43:75:b6:dc:f4:15:de:7a:9d:cd:3c:
03:03:f1:6b:75:b4:b7:7e:1d:1b:ae:b7:26:9f:eb:
05:7f:98:dd:3e:9b:e5:65:92:4b:74:3c:60:d2:9b:
45:8f:be:71:2a:ba:90:74:37:31:59:31:a8:3e:ff:
43:78:e8:74:84:52:fa:24:35:d0:27:75:44:06:d5:
b2:46:2a:80:08:e5:4e:18:9a:a5:04:bf:ed:7c:34:
39:ed:66:7b:22:88:4c:d1:9a:08:30:ba:e8:af:cc:
c9:2d:af:b1:62:15:da:9e:e8:92:f0:73:e0:df:75:
38:6e:82:e7:ff:94:78:9d:fe:41:29:a4:a7:60:c9:
f8:dc:f3:97:11:d9:03:26:90:3a:6f:12:d5:0a:58:
a7:86:32:8a:f0:7d:81:93:4b:d8:40:e6:05:51:55:
ce:90:e5:ef:46:7f:0a:89:b3:b9:f0:be:ca:cb:20:
e4:89:51:a0:a7:b5:e1:e1:9d:b0:6a:42:93:f3:4f:
47:a1:39:a1:03:b9:da:7b:26:e9:39:40:c7:5e:6d:
80:4b:e4:7c:a6:92:22:e0:42:5f:fd:16:f6:ec:99:
87:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4A:60:89:A8:5D:69:A9:D3:6A:E7:C8:A8:24:C7:C9:B3:0A:FA:A2
X509v3 Authority Key Identifier:
keyid:78:67:58:BE:A6:8F:08:25:CF:16:E6:6F:B0:2E:E7:BC:A4:54:BA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eGdYvqaPCCXPFuZvsC7nvKRUuuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/rEpgiahdaanTaufIqCTHybMK-qI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/783f52-034d-46d3-b031-eed45c93775e/1/eGdYvqaPCCXPFuZvsC7nvKRUuuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.104.0/22
Signature Algorithm: sha256WithRSAEncryption
57:86:5a:10:7c:79:41:e9:c5:c7:ee:cd:6e:1b:d2:94:31:e9:
32:d7:1b:fe:be:c8:7a:f7:14:2c:6c:f6:7b:e9:8a:59:e6:7f:
a5:d3:6b:2b:a6:a8:46:94:52:6d:8a:f7:1c:c7:be:31:47:37:
28:b7:d3:70:cf:df:49:99:00:9c:d2:ce:fa:16:40:45:39:59:
6c:70:a2:29:6d:87:3c:08:db:4e:17:93:53:a6:e2:76:db:0b:
21:f1:0d:f4:c1:e3:c3:1a:5d:01:19:5a:42:ea:16:55:c6:28:
b5:59:8a:fa:69:3b:9e:0e:31:6f:4e:11:55:da:f1:b4:c1:84:
4b:01:f8:c3:f5:be:b0:59:4c:95:b2:61:90:f0:91:38:b8:4e:
3e:03:65:34:db:df:91:5a:47:90:58:59:df:c6:97:d3:63:12:
aa:66:1e:12:91:ea:8e:c8:c8:61:59:cc:60:38:c1:fc:0f:d5:
36:96:ab:13:48:70:3a:db:86:a4:b8:44:a6:4c:fa:38:8d:e3:
26:07:44:26:a9:f5:e7:49:f1:0f:b4:de:ea:20:aa:cc:a2:2b:
65:b8:73:c4:3a:d4:cc:65:3e:6e:19:55:d7:11:c0:c9:ef:1c:
aa:5e:8b:3c:f6:e2:2e:e3:b9:7c:8b:3c:f0:3b:5b:fd:62:d4:
2d:70:8f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:14:34 2025 by rpki-client