Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/7d20a2-b881-461c-bbf5-2b6809339702/1/NaRL-VCrPxO7V9aZiCkfG5vyL9U.roa
File: NaRL-VCrPxO7V9aZiCkfG5vyL9U.roa (raw, json)
Hash identifier: kOtKWKsbMC3S6R+Ef8HWRrxKpJacDklfckFgDbuyIZ4=
Subject key identifier: 35:A4:4B:F9:50:AB:3F:13:BB:57:D6:99:88:29:1F:1B:9B:F2:2F:D5
Certificate issuer: /CN=4bd1f50df263fe509fc5de9c5a473a28e3812639
Certificate serial: 0274F05F
Authority key identifier: 4B:D1:F5:0D:F2:63:FE:50:9F:C5:DE:9C:5A:47:3A:28:E3:81:26:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9H1DfJj_lCfxd6cWkc6KOOBJjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/7d20a2-b881-461c-bbf5-2b6809339702/1/NaRL-VCrPxO7V9aZiCkfG5vyL9U.roa
Signing time: Sat 01 Jan 2022 13:07:26 +0000
ROA not before: Sat 01 Jan 2022 13:07:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212597
IP address blocks: 98.158.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41218143 (0x274f05f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bd1f50df263fe509fc5de9c5a473a28e3812639
Validity
Not Before: Jan 1 13:07:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a44bf950ab3f13bb57d69988291f1b9bf22fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:88:47:16:31:21:fe:c9:13:63:3e:5e:17:7a:
9d:1e:1d:b6:11:34:b7:c9:2c:c3:8f:c4:e5:a5:01:
29:7c:12:52:b9:ca:f8:11:99:dc:35:cb:08:2c:21:
e6:88:bb:f0:71:2e:fa:95:f6:6b:96:cd:14:01:24:
53:04:d8:d2:7a:71:89:21:82:73:db:34:ca:e8:e0:
98:f4:f0:66:c1:ac:94:b2:8f:0f:9e:3a:33:58:54:
29:0f:9b:ab:1f:be:c8:3e:15:59:43:1c:12:4e:34:
10:2e:1b:22:af:3b:55:55:57:94:ee:20:8f:b3:7f:
4c:0b:95:91:af:c7:57:64:d4:99:ea:19:c0:66:17:
05:c9:03:fe:50:d0:9c:38:4a:18:91:15:1f:9d:7b:
dd:fc:fe:f0:8b:b9:62:28:68:eb:8a:5e:e5:f0:2c:
2b:e0:6e:e0:02:14:64:79:44:23:7c:60:1e:d9:10:
e8:ea:72:fb:6d:ea:ac:cf:57:b6:8b:11:c5:6e:b4:
05:22:87:a4:6d:11:22:90:56:80:0b:d5:15:2d:81:
45:6d:d7:2a:69:0f:5d:77:2b:c5:3f:7f:2e:14:ab:
d8:02:aa:4e:1f:ca:e7:52:10:7c:ab:1f:67:5e:b3:
29:88:cd:7e:cd:d8:99:89:0a:c5:0b:63:63:e3:03:
7c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A4:4B:F9:50:AB:3F:13:BB:57:D6:99:88:29:1F:1B:9B:F2:2F:D5
X509v3 Authority Key Identifier:
keyid:4B:D1:F5:0D:F2:63:FE:50:9F:C5:DE:9C:5A:47:3A:28:E3:81:26:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9H1DfJj_lCfxd6cWkc6KOOBJjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7d20a2-b881-461c-bbf5-2b6809339702/1/NaRL-VCrPxO7V9aZiCkfG5vyL9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7d20a2-b881-461c-bbf5-2b6809339702/1/S9H1DfJj_lCfxd6cWkc6KOOBJjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
98.158.238.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:29:10:95:39:e9:cd:ed:4d:3f:a2:54:81:68:89:f1:3b:da:
50:74:0b:bd:fb:a1:af:6f:24:7f:3f:dc:47:6a:6e:01:60:49:
6c:99:e6:45:1d:3d:07:40:38:03:19:fd:36:8a:a2:6a:46:57:
c4:a6:52:a2:74:d8:17:b3:5c:d3:0c:61:6c:a0:12:2b:a2:59:
bb:74:3f:7b:1a:35:9d:a3:b7:c1:11:aa:92:35:ce:67:2c:6c:
9f:55:fc:2a:85:e4:f9:60:a2:19:63:cc:8f:b9:2c:e0:8d:69:
bb:63:9b:6c:da:3a:a4:3a:51:f2:3d:75:30:bb:ff:b0:ef:45:
56:64:41:c3:f0:b5:3c:79:b4:5b:ef:99:54:b3:5a:c2:95:8f:
cf:c2:8a:69:33:83:46:98:43:04:65:55:e1:94:55:7a:3c:ec:
bb:2b:e6:81:38:cc:c2:c4:86:b6:30:b5:05:ee:44:59:93:c8:
96:98:41:45:12:34:b6:af:8d:14:cc:a2:ba:42:2c:64:42:57:
70:78:88:87:27:11:83:8e:f5:74:f0:62:06:de:ff:01:82:a7:
c2:26:5e:ea:8d:96:1d:b1:ca:27:9b:0b:13:d6:42:45:9a:1c:
db:08:3c:3c:5e:85:69:87:37:ed:ee:23:5a:bd:f0:30:4e:3c:
75:7e:b5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:19 2025 by rpki-client