Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/5d561c-063c-4fbb-903b-2f21e9dd5708/1/sNaihkPrzg8pR9V_iPnh0sFGOyo.roa
File: sNaihkPrzg8pR9V_iPnh0sFGOyo.roa (raw, json)
Hash identifier: HzlMSIqJ+C7aLBddIatFhHBGwY/RpLNYvDvj+IJdVzo=
Subject key identifier: B0:D6:A2:86:43:EB:CE:0F:29:47:D5:7F:88:F9:E1:D2:C1:46:3B:2A
Certificate issuer: /CN=86f17c3e27e9a2b8fe69dd75f489bf720af7d2aa
Certificate serial: 022EB247
Authority key identifier: 86:F1:7C:3E:27:E9:A2:B8:FE:69:DD:75:F4:89:BF:72:0A:F7:D2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvF8Pifporj-ad119Im_cgr30qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/5d561c-063c-4fbb-903b-2f21e9dd5708/1/sNaihkPrzg8pR9V_iPnh0sFGOyo.roa
Signing time: Sat 01 Jan 2022 03:54:32 +0000
ROA not before: Sat 01 Jan 2022 03:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203329
IP address blocks: 194.121.56.0/24 maxlen: 24
2001:678:f44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36614727 (0x22eb247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f17c3e27e9a2b8fe69dd75f489bf720af7d2aa
Validity
Not Before: Jan 1 03:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0d6a28643ebce0f2947d57f88f9e1d2c1463b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0c:e2:40:ca:d4:b8:42:6a:2d:cc:cc:37:bb:
b2:17:b8:e5:90:30:50:ce:98:9d:97:a1:94:a5:96:
b4:aa:5d:28:dc:3e:a0:a9:f2:5b:95:50:c8:87:56:
53:4f:3f:65:bd:02:62:df:d2:a1:fc:77:c9:9c:fb:
91:da:c6:9a:57:44:3d:2f:3b:22:24:2d:20:7e:32:
3f:7f:15:57:46:01:ce:16:b4:ef:99:7c:4c:89:82:
dc:23:47:79:ef:f8:57:0a:65:dc:3f:ed:74:2b:aa:
1b:71:6a:43:d3:69:0c:a4:76:f6:f9:46:f7:b9:55:
a8:b1:b6:f4:01:33:f0:e6:50:ed:f7:8e:6e:c9:dc:
44:8a:6f:7a:41:2b:5e:a0:2a:c7:ea:be:4b:7b:0f:
e5:26:00:78:d8:60:ee:6b:d7:83:af:76:bc:24:28:
ad:3f:82:2b:64:9b:23:79:63:e0:fe:59:e5:dd:bd:
73:03:0f:47:e7:3e:d1:f6:6e:fb:d5:c3:4b:ff:97:
f5:8d:83:d5:72:9f:9b:f7:0a:d0:15:46:50:09:0c:
7f:9c:35:3e:f6:01:4a:93:34:da:2b:0a:fe:cd:57:
42:16:a5:79:f6:5a:ee:76:bf:7d:4b:49:cd:7b:ef:
f3:a4:f4:ed:5d:29:d3:06:a7:5a:84:77:15:47:31:
11:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D6:A2:86:43:EB:CE:0F:29:47:D5:7F:88:F9:E1:D2:C1:46:3B:2A
X509v3 Authority Key Identifier:
keyid:86:F1:7C:3E:27:E9:A2:B8:FE:69:DD:75:F4:89:BF:72:0A:F7:D2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvF8Pifporj-ad119Im_cgr30qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5d561c-063c-4fbb-903b-2f21e9dd5708/1/sNaihkPrzg8pR9V_iPnh0sFGOyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5d561c-063c-4fbb-903b-2f21e9dd5708/1/hvF8Pifporj-ad119Im_cgr30qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.121.56.0/24
IPv6:
2001:678:f44::/48
Signature Algorithm: sha256WithRSAEncryption
7d:9f:90:c8:05:86:a0:d8:9b:11:8c:78:18:59:f8:af:bd:6f:
97:36:a3:9e:75:75:e9:8d:91:fd:c8:25:cd:73:fc:ef:f4:30:
58:d9:b0:f5:fa:4c:bc:3e:e3:d5:b4:5d:83:62:3e:64:04:9c:
d5:28:22:c0:33:fc:94:19:b7:fb:97:df:94:4a:05:db:dc:86:
d1:6e:d8:e7:9d:96:39:87:81:ea:a7:73:e9:24:73:d9:26:fd:
2f:6e:b2:95:fc:cb:a6:56:0d:85:a7:94:09:9b:b2:40:87:e7:
e8:a4:3c:df:85:79:4d:db:a2:67:7f:e5:ec:bf:63:96:85:51:
c2:88:0f:57:13:0b:7d:5e:9b:5b:44:89:13:86:41:4f:9d:19:
d6:dc:c3:17:d9:42:1f:75:d2:45:e0:41:ae:ac:fc:6b:55:27:
03:71:6f:ab:28:4e:92:95:50:05:7e:7b:f1:6a:1f:d7:31:26:
69:e7:0e:93:5c:20:81:57:51:64:63:46:e1:b4:34:62:05:00:
5e:f1:da:81:83:24:5e:34:e9:65:db:ff:f4:a3:55:80:49:70:
cf:95:7d:c8:3e:aa:34:a7:c0:ba:36:1f:9d:c3:56:16:35:00:
72:d8:48:01:fc:26:ee:e3:1d:b2:ce:28:5e:28:6f:06:88:83:
02:61:d8:c0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEAi6yRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmYxN2MzZTI3ZTlhMmI4ZmU2OWRkNzVmNDg5YmY3MjBhZjdkMmFhMB4XDTIyMDEw
MTAzNTQzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjBkNmEyODY0M2Vi
Y2UwZjI5NDdkNTdmODhmOWUxZDJjMTQ2M2IyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMsM4kDK1LhCai3MzDe7she45ZAwUM6YnZehlKWWtKpdKNw+
oKnyW5VQyIdWU08/Zb0CYt/Sofx3yZz7kdrGmldEPS87IiQtIH4yP38VV0YBzha0
75l8TImC3CNHee/4Vwpl3D/tdCuqG3FqQ9NpDKR29vlG97lVqLG29AEz8OZQ7feO
bsncRIpvekErXqAqx+q+S3sP5SYAeNhg7mvXg692vCQorT+CK2SbI3lj4P5Z5d29
cwMPR+c+0fZu+9XDS/+X9Y2D1XKfm/cK0BVGUAkMf5w1PvYBSpM02isK/s1XQhal
efZa7na/fUtJzXvv86T07V0p0wanWoR3FUcxERUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSw1qKGQ+vODylH1X+I+eHSwUY7KjAfBgNVHSMEGDAWgBSG8Xw+J+miuP5p
3XX0ib9yCvfSqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h2RjhQaWZwb3JqLWFkMTE5SW1fY2dyMzBxby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvNWQ1NjFjLTA2M2MtNGZiYi05MDNiLTJmMjFlOWRkNTcwOC8x
L3NOYWloa1Byemc4cFI5Vl9pUG5oMHNGR095by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
NWQ1NjFjLTA2M2MtNGZiYi05MDNiLTJmMjFlOWRkNTcwOC8xL2h2RjhQaWZwb3Jq
LWFkMTE5SW1fY2dyMzBxby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMJ5ODAPBAIAAjAJAwcAIAEGeA9E
MA0GCSqGSIb3DQEBCwUAA4IBAQB9n5DIBYag2JsRjHgYWfivvW+XNqOedXXpjZH9
yCXNc/zv9DBY2bD1+ky8PuPVtF2DYj5kBJzVKCLAM/yUGbf7l9+USgXb3IbRbtjn
nZY5h4Hqp3PpJHPZJv0vbrKV/MumVg2Fp5QJm7JAh+fopDzfhXlN26Jnf+Xsv2OW
hVHCiA9XEwt9XptbRIkThkFPnRnW3MMX2UIfddJF4EGurPxrVScDcW+rKE6SlVAF
fnvxah/XMSZp5w6TXCCBV1FkY0bhtDRiBQBe8dqBgyReNOll2//0o1WASXDPlX3I
Pqo0p8C6Nh+dw1YWNQBy2EgB/Cbu4x2yziheKG8GiIMCYdjA
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-ams.rpki-client.org