Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/naIlTEL5jTS8xevnx3fEK0iiZ2o.roa
File: naIlTEL5jTS8xevnx3fEK0iiZ2o.roa (raw, json)
Hash identifier: ERUprn8AINv+ku8KdZz+/ls3LUQtQ1W4zUEWLI2IoTA=
Subject key identifier: 9D:A2:25:4C:42:F9:8D:34:BC:C5:EB:E7:C7:77:C4:2B:48:A2:67:6A
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 183075F5
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/naIlTEL5jTS8xevnx3fEK0iiZ2o.roa
Signing time: Wed 30 Mar 2022 06:18:54 +0000
ROA not before: Wed 30 Mar 2022 06:18:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24655
IP address blocks: 81.4.190.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405829109 (0x183075f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Mar 30 06:18:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9da2254c42f98d34bcc5ebe7c777c42b48a2676a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:45:89:ee:51:d1:8d:db:c8:56:20:78:44:
26:39:84:e7:a7:f3:f7:d7:61:1b:91:2a:e7:12:f3:
55:b5:22:f9:5c:b0:1b:ec:3e:5f:81:0b:d6:43:70:
b5:40:16:8f:ef:e3:28:bb:ea:4d:1d:c9:8c:3a:6f:
62:98:79:da:e9:af:30:5a:d2:04:b6:b1:5f:67:61:
61:c6:05:69:72:6a:ef:db:0c:13:3d:37:6d:5c:41:
30:ed:3d:e3:c5:37:a2:cc:ba:dc:ad:42:b1:b8:20:
91:39:af:2e:9e:1b:e0:82:33:27:4b:25:c4:8e:16:
08:68:2c:52:8a:fc:a2:de:21:a7:d4:a7:54:0c:b5:
87:af:b8:52:71:81:6a:a1:fb:be:56:13:5a:de:df:
3f:f6:a7:6b:0b:8c:d1:b7:bb:6f:62:f0:51:97:48:
39:b9:fd:4e:9b:28:5d:90:b4:81:e6:8c:01:97:78:
7d:50:07:ec:4e:af:1f:fa:6c:69:81:15:db:6d:be:
a9:d6:58:83:33:8e:82:6d:cc:26:cb:ba:74:70:1c:
5f:3e:ec:b9:60:a0:5a:11:91:01:c3:3a:5c:3f:a9:
4c:2e:a6:b0:4a:92:48:96:23:ab:b8:23:eb:18:9f:
b1:13:c4:07:6f:51:30:cb:fb:87:04:49:2a:43:cd:
ec:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A2:25:4C:42:F9:8D:34:BC:C5:EB:E7:C7:77:C4:2B:48:A2:67:6A
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/naIlTEL5jTS8xevnx3fEK0iiZ2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.4.190.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:11:73:d1:a1:7c:d1:52:19:de:e1:b4:69:8c:c6:95:bd:05:
2b:22:c2:e9:76:7e:bf:68:3e:63:cc:0d:a5:fb:75:51:5b:30:
05:f3:dd:86:3c:ea:ba:4e:57:b1:b4:68:a9:4f:d1:0c:60:c2:
cb:70:d2:46:3b:66:5e:02:44:f4:66:99:d1:9c:8b:47:1a:ec:
f9:86:da:0b:74:10:f1:cd:6f:d5:78:a3:9e:03:ce:73:4d:63:
7d:06:90:be:41:c8:95:fb:80:3b:cd:79:dc:ae:7a:76:df:77:
cd:27:5c:2a:a6:9e:ff:3f:b9:6f:b2:7c:66:46:c6:69:2e:c8:
7e:b1:42:0f:f2:fd:57:f0:db:eb:07:5e:cc:3f:7b:3c:30:b4:
ff:a3:70:24:b7:b7:08:85:ac:e7:47:d9:9f:c1:dc:5a:ef:f7:
87:ce:48:e6:63:0f:7e:cd:d1:16:24:11:21:06:da:c9:ea:1c:
09:11:a2:42:14:83:08:e9:cf:da:f7:db:24:f8:e2:0a:2a:0f:
5f:d9:4f:c9:7a:e7:8d:82:6d:e3:cf:ff:0d:d9:06:98:a5:79:
07:f7:ad:63:46:25:92:ba:ad:f7:9f:14:e5:81:f7:6e:a3:0c:
ca:a8:4f:77:19:ac:14:55:18:38:cb:ba:02:55:e5:23:ad:fa:
29:91:7c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org