Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NaMsR62Bf-e7hiZVwzfzK7IgKp0.roa
File: NaMsR62Bf-e7hiZVwzfzK7IgKp0.roa (raw, json)
Hash identifier: J26ss/b2yKs1rtiizn+TQSLgX7qLia0oWydvZUSnyxs=
Subject key identifier: 35:A3:2C:47:AD:81:7F:E7:BB:86:26:55:C3:37:F3:2B:B2:20:2A:9D
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0572BAAE
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NaMsR62Bf-e7hiZVwzfzK7IgKp0.roa
Signing time: Thu 09 Jun 2022 15:39:04 +0000
ROA not before: Thu 09 Jun 2022 15:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 269846
IP address blocks: 181.41.152.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91404974 (0x572baae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 9 15:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a32c47ad817fe7bb862655c337f32bb2202a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ed:7f:0c:08:b8:ee:cc:3c:24:bd:58:b1:09:
77:4d:33:84:0e:b8:4a:13:2d:09:c8:2e:d9:ae:df:
8a:d0:3d:76:b1:f8:a2:9a:01:68:0d:96:fe:4c:a0:
84:d5:b6:74:b8:15:6b:66:f4:f5:b1:2f:9d:e7:56:
e1:f6:c3:0a:6a:2f:3c:ed:da:7a:48:a7:df:6f:4d:
97:1b:8e:de:54:25:bb:99:c4:c3:5e:9a:c0:66:30:
04:0d:c6:5f:3b:0f:2a:f7:07:4e:66:9b:ae:d8:43:
91:02:85:7e:a2:16:90:fc:da:18:27:e3:d4:0e:66:
9a:58:04:3f:3a:20:dc:d5:5e:2a:df:d6:a4:ec:86:
17:c5:2d:8d:b4:ad:e1:7d:3a:fb:38:3a:0e:54:1a:
06:13:af:41:2c:d7:c0:97:17:21:14:0b:c2:10:73:
79:19:15:22:4c:cc:e8:c0:0b:1b:12:20:9c:9b:f5:
40:59:9a:25:d2:f5:0f:e9:15:0d:9f:7e:93:83:58:
aa:05:ed:79:99:7b:dd:38:48:bf:bb:9b:91:60:d9:
37:d5:97:4e:a4:5e:80:82:27:1e:ea:ce:7e:af:41:
f4:a0:95:4c:8f:b9:06:a5:70:78:83:01:28:8b:6d:
d2:c4:78:f5:d3:64:19:da:87:89:73:ff:95:73:34:
47:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A3:2C:47:AD:81:7F:E7:BB:86:26:55:C3:37:F3:2B:B2:20:2A:9D
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NaMsR62Bf-e7hiZVwzfzK7IgKp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.152.0/23
Signature Algorithm: sha256WithRSAEncryption
30:70:bb:8a:f9:30:62:f1:f5:07:1a:6d:a4:ed:c7:54:d2:01:
50:e1:ab:92:14:28:23:23:32:8d:27:2c:47:3d:a7:62:e1:02:
66:7f:f8:2e:ad:f8:65:f0:b4:79:cf:23:d2:8a:51:ac:e5:3e:
50:0d:63:77:c6:ff:ff:8b:9e:14:c1:c2:1e:9d:02:63:40:48:
54:e4:3a:13:9f:66:80:d1:06:cb:ef:dd:ac:7b:9a:02:5f:30:
11:bf:0d:dd:ef:0a:c3:25:97:72:ba:3e:aa:b7:cd:03:4e:cf:
5c:ba:07:06:d3:99:e4:76:de:df:8e:41:9d:10:b0:72:58:48:
13:36:4f:d2:67:dc:4f:07:69:d7:9c:f4:b9:09:c5:46:09:26:
6f:9d:c1:0d:11:94:71:d3:98:78:f2:32:9a:79:2a:14:ab:67:
da:4e:93:22:f7:c2:73:3f:df:42:d3:e0:25:44:92:0c:35:69:
b7:2f:a4:60:f1:96:df:ee:0e:a6:0f:91:9d:c4:d4:24:44:7b:
d7:ae:59:58:1f:44:62:50:5a:32:d1:8e:2d:4e:a9:08:a8:2c:
32:64:c7:23:18:ae:a2:19:58:ca:14:2a:7e:2b:04:00:db:5b:
c7:33:e9:bc:46:0b:f3:24:54:3c:d3:cb:c8:52:4e:2b:d0:1c:
44:74:cc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org