Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/NGXQDWik3ozPhEkWUqOyiLSEaJQ.roa
File: NGXQDWik3ozPhEkWUqOyiLSEaJQ.roa (raw, json)
Hash identifier: DvJs8b+Apl/p2PSK5autBSNQ+oWVDp65jY8OptlC1ZU=
Subject key identifier: 34:65:D0:0D:68:A4:DE:8C:CF:84:49:16:52:A3:B2:88:B4:84:68:94
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AA859BD
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/NGXQDWik3ozPhEkWUqOyiLSEaJQ.roa
Signing time: Sat 01 Jan 2022 08:57:43 +0000
ROA not before: Sat 01 Jan 2022 08:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24626
IP address blocks: 81.18.128.0/19 maxlen: 32
81.4.192.0/18 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178805181 (0xaa859bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3465d00d68a4de8ccf84491652a3b288b4846894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b8:5e:79:17:07:84:d3:25:2a:1f:5f:9f:2b:
80:9a:68:2b:bb:03:7d:1e:b3:08:e4:b0:66:8e:92:
24:e5:2a:a8:9d:99:4b:6b:8a:1c:db:5c:f6:4c:f1:
85:89:bb:2a:8c:8b:65:5c:1f:7d:b8:05:8a:47:2e:
dd:6e:17:7c:55:09:f6:54:69:b3:86:55:b4:c1:eb:
9f:5e:36:ce:4e:c9:2f:46:b7:74:32:cb:ab:2c:a7:
b2:88:19:56:a2:f5:5c:a9:ed:9c:17:06:4d:37:b4:
e6:39:2b:96:5c:a2:42:29:1e:0a:d3:e0:bd:e7:e9:
87:77:2c:bc:34:5d:b5:11:79:3e:1f:ce:63:e6:4b:
f2:1b:55:6d:b5:85:49:4b:df:69:cd:bf:55:1c:45:
ad:ac:ea:e1:ec:96:af:f6:f0:90:13:fa:0f:2e:38:
21:d7:41:32:92:36:43:a7:cd:c4:c8:c2:9a:1a:5f:
54:56:f1:eb:33:09:20:56:cd:46:7b:92:4d:da:42:
83:83:a8:77:fb:5d:36:1a:41:4d:0b:d1:da:9f:1d:
c4:34:1d:c8:aa:f0:e6:e1:9f:f7:e9:3c:9b:93:c1:
2d:ec:f5:65:c7:03:e3:33:26:3e:7a:eb:ad:a0:11:
c9:7f:e6:f7:e3:4e:35:c2:46:5c:8d:c5:ba:6a:7a:
6f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:65:D0:0D:68:A4:DE:8C:CF:84:49:16:52:A3:B2:88:B4:84:68:94
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/NGXQDWik3ozPhEkWUqOyiLSEaJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.4.192.0/18
81.18.128.0/19
Signature Algorithm: sha256WithRSAEncryption
79:3f:f8:4c:1b:fb:1b:8d:fe:84:84:10:82:c2:a3:de:bf:db:
9b:8b:3f:81:4d:19:df:dc:30:aa:ff:91:f8:4e:79:2f:61:ae:
33:de:9a:82:74:e5:16:4e:31:5b:a6:74:d3:1f:26:03:78:b9:
15:53:87:17:82:b9:56:9d:a0:c3:92:71:70:1e:b0:c2:15:b5:
96:6f:e6:c4:3d:4d:20:bd:be:88:1a:e7:41:52:57:c7:18:41:
a1:b7:dd:96:2d:1b:fd:17:8e:a0:b6:aa:a8:20:f4:9e:5e:09:
d2:86:25:35:46:4d:5f:bb:73:6a:73:b9:0c:09:f6:cc:18:cf:
e9:b6:0c:99:ac:43:0e:86:95:af:dd:94:54:74:e5:eb:ec:5b:
99:72:1d:bd:90:35:6e:8c:51:f6:40:3a:42:2f:73:84:8c:4c:
73:b5:f3:55:d1:30:24:52:7c:72:5a:df:23:c3:e1:7a:a6:98:
8f:f5:b1:5a:e0:e4:71:0f:89:4a:2d:7d:3d:5f:b2:ea:78:cb:
83:0b:85:94:fb:85:03:d5:02:e1:55:3f:4f:34:ee:13:ba:87:
c9:0c:79:f3:a9:26:23:9d:87:8c:c6:e4:c3:f2:45:80:8b:dd:
96:b1:48:34:a7:d4:c0:82:0f:9b:d5:5a:c8:26:80:8f:0c:e5:
98:73:67:4d
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECqhZvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZGFjODMwY2NhYTc0NzgzZGQ5NjFmYWIyNDFhMjI4ZDdjYzZmODA4MB4XDTIyMDEw
MTA4NTc0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQ2NWQwMGQ2OGE0
ZGU4Y2NmODQ0OTE2NTJhM2IyODhiNDg0Njg5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+4XnkXB4TTJSofX58rgJpoK7sDfR6zCOSwZo6SJOUqqJ2Z
S2uKHNtc9kzxhYm7KoyLZVwffbgFikcu3W4XfFUJ9lRps4ZVtMHrn142zk7JL0a3
dDLLqyynsogZVqL1XKntnBcGTTe05jkrllyiQikeCtPgvefph3csvDRdtRF5Ph/O
Y+ZL8htVbbWFSUvfac2/VRxFrazq4eyWr/bwkBP6Dy44IddBMpI2Q6fNxMjCmhpf
VFbx6zMJIFbNRnuSTdpCg4Ood/tdNhpBTQvR2p8dxDQdyKrw5uGf9+k8m5PBLez1
ZccD4zMmPnrrraARyX/m9+NONcJGXI3Fump6b5kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQ0ZdANaKTejM+ESRZSo7KItIRolDAfBgNVHSMEGDAWgBStrIMMyqdHg92W
H6skGiKNfMb4CDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JheURETXFuUjRQZGxoLXJKQm9palh6Ry1BZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8x
L05HWFFEV2lrM296UGhFa1dVcU95aUxTRWFKUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8xL3JheURETXFuUjRQ
ZGxoLXJKQm9palh6Ry1BZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBlEEwAMEBVESgDANBgkqhkiG9w0B
AQsFAAOCAQEAeT/4TBv7G43+hIQQgsKj3r/bm4s/gU0Z39wwqv+R+E55L2GuM96a
gnTlFk4xW6Z00x8mA3i5FVOHF4K5Vp2gw5JxcB6wwhW1lm/mxD1NIL2+iBrnQVJX
xxhBobfdli0b/ReOoLaqqCD0nl4J0oYlNUZNX7tzanO5DAn2zBjP6bYMmaxDDoaV
r92UVHTl6+xbmXIdvZA1boxR9kA6Qi9zhIxMc7XzVdEwJFJ8clrfI8PheqaYj/Wx
WuDkcQ+JSi19PV+y6njLgwuFlPuFA9UC4VU/TzTuE7qHyQx586kmI52HjMbkw/JF
gIvdlrFINKfUwIIPm9VayCaAjwzlmHNnTQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org