Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sgtWc0NkBgoziHERUF_EghAf7mc.roa
File: sgtWc0NkBgoziHERUF_EghAf7mc.roa (raw, json)
Hash identifier: Iqfy2mfK8aVIuTwlrbDuOT1BTvfZs1MdvH3NGOpzF5M=
Subject key identifier: B2:0B:56:73:43:64:06:0A:33:88:71:11:50:5F:C4:82:10:1F:EE:67
Certificate issuer: /CN=b73973bc4f57cfefede1ec96160bce6cea42b179
Certificate serial: 0A9F6D16
Authority key identifier: B7:39:73:BC:4F:57:CF:EF:ED:E1:EC:96:16:0B:CE:6C:EA:42:B1:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tzlzvE9Xz-_t4eyWFgvObOpCsXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sgtWc0NkBgoziHERUF_EghAf7mc.roa
Signing time: Sat 01 Jan 2022 02:53:06 +0000
ROA not before: Sat 01 Jan 2022 02:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 194.110.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178220310 (0xa9f6d16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b73973bc4f57cfefede1ec96160bce6cea42b179
Validity
Not Before: Jan 1 02:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b20b56734364060a33887111505fc482101fee67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1a:11:1b:e4:4e:a8:14:fd:df:52:47:6f:c0:
32:9a:1e:5f:17:b6:ee:3d:02:b9:a9:a9:e4:70:d1:
8c:f5:14:5a:b1:19:da:9a:da:fe:a6:8f:f4:b7:0e:
17:d6:26:94:83:51:84:ae:14:0b:dc:44:55:f2:d2:
c1:02:b9:a7:ce:d4:7c:fe:9c:36:10:48:26:42:c3:
44:9b:38:5d:70:f2:92:d6:66:37:03:e0:16:fa:bf:
7b:7e:02:2e:6f:6c:ab:a4:2a:b5:af:50:b3:90:1e:
1f:8c:e8:ba:61:46:df:5d:89:2a:2d:40:50:91:04:
8a:9b:e5:02:b8:c1:27:69:21:9a:c1:61:25:68:1a:
11:13:98:60:53:94:d7:16:be:ba:f3:8f:a3:ca:3b:
cf:17:1f:ba:52:85:d4:dd:68:00:62:26:b3:ef:90:
fb:e0:f2:85:e7:0b:e8:a3:06:cd:61:9d:e7:34:09:
f2:ad:0c:23:18:e1:d4:14:68:cb:57:e2:56:19:09:
ac:32:72:84:45:82:a1:37:6a:97:1f:dd:5e:5d:2b:
80:67:16:07:9e:08:2f:9d:cd:bb:c4:8c:b8:a6:49:
5b:7b:a2:af:2b:98:7a:d4:12:0c:82:28:aa:0f:83:
b8:19:dc:37:d1:46:c2:25:49:8e:fa:c0:ba:bd:c4:
94:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0B:56:73:43:64:06:0A:33:88:71:11:50:5F:C4:82:10:1F:EE:67
X509v3 Authority Key Identifier:
keyid:B7:39:73:BC:4F:57:CF:EF:ED:E1:EC:96:16:0B:CE:6C:EA:42:B1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tzlzvE9Xz-_t4eyWFgvObOpCsXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sgtWc0NkBgoziHERUF_EghAf7mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/tzlzvE9Xz-_t4eyWFgvObOpCsXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.120.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:13:cd:17:0a:d8:bc:c3:81:fb:44:d2:a5:cd:62:0f:fd:0d:
c0:4b:1e:93:fa:4d:9f:90:d9:fe:9f:57:a3:64:a2:57:f9:d4:
b7:a1:b1:85:df:2f:1d:bb:85:38:52:cd:f4:99:59:72:3c:41:
d5:59:2a:0f:5f:2c:91:9f:c1:9f:8c:c7:1f:85:06:fe:0a:f7:
da:7d:07:fb:ba:68:47:64:54:98:e8:69:6a:9b:a6:25:30:a7:
ed:38:e0:a6:d3:eb:4d:21:91:59:17:b2:e8:ff:14:db:5e:08:
f8:91:69:8a:3f:9e:99:14:e6:98:73:14:bd:46:26:3b:be:70:
dd:ae:92:34:73:f4:65:a4:d3:cd:d7:9b:62:0c:2a:b7:f8:2a:
49:c2:77:73:df:8a:ea:02:36:57:d0:ce:ca:34:79:e6:06:2f:
8f:77:87:48:64:6a:b0:d3:ce:fa:af:b6:34:58:85:8c:58:48:
35:21:69:e9:a9:7d:78:05:a0:49:46:35:aa:84:b4:7a:d0:e5:
1c:a7:00:87:7b:f2:23:32:2d:e1:fe:46:1b:7f:81:b0:29:11:
3a:bd:b0:0f:20:f8:75:32:31:1f:b9:0c:08:91:03:bd:01:98:
d9:cf:fa:68:6c:05:95:7a:5a:51:99:cc:f7:1d:f8:6e:55:b1:
09:11:c4:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECp9tFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzM5NzNiYzRmNTdjZmVmZWRlMWVjOTYxNjBiY2U2Y2VhNDJiMTc5MB4XDTIyMDEw
MTAyNTMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjIwYjU2NzM0MzY0
MDYwYTMzODg3MTExNTA1ZmM0ODIxMDFmZWU2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM0aERvkTqgU/d9SR2/AMpoeXxe27j0Cuamp5HDRjPUUWrEZ
2pra/qaP9LcOF9YmlINRhK4UC9xEVfLSwQK5p87UfP6cNhBIJkLDRJs4XXDyktZm
NwPgFvq/e34CLm9sq6Qqta9Qs5AeH4zoumFG312JKi1AUJEEipvlArjBJ2khmsFh
JWgaEROYYFOU1xa+uvOPo8o7zxcfulKF1N1oAGIms++Q++DyhecL6KMGzWGd5zQJ
8q0MIxjh1BRoy1fiVhkJrDJyhEWCoTdqlx/dXl0rgGcWB54IL53Nu8SMuKZJW3ui
ryuYetQSDIIoqg+DuBncN9FGwiVJjvrAur3ElJkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSyC1ZzQ2QGCjOIcRFQX8SCEB/uZzAfBgNVHSMEGDAWgBS3OXO8T1fP7+3h
7JYWC85s6kKxeTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3R6bHp2RTlYei1fdDRleVdGZ3ZPYk9wQ3NYay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjEvMjg2MDg2LTY3ODctNDliMC1hNGUwLTA5ZDQ0N2E0NTY1Ni8x
L3NndFdjME5rQmdvemlIRVJVRl9FZ2hBZjdtYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEv
Mjg2MDg2LTY3ODctNDliMC1hNGUwLTA5ZDQ0N2E0NTY1Ni8xL3R6bHp2RTlYei1f
dDRleVdGZ3ZPYk9wQ3NYay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsJueDANBgkqhkiG9w0BAQsFAAOC
AQEAWhPNFwrYvMOB+0TSpc1iD/0NwEsek/pNn5DZ/p9Xo2SiV/nUt6Gxhd8vHbuF
OFLN9JlZcjxB1VkqD18skZ/Bn4zHH4UG/gr32n0H+7poR2RUmOhpapumJTCn7Tjg
ptPrTSGRWRey6P8U214I+JFpij+emRTmmHMUvUYmO75w3a6SNHP0ZaTTzdebYgwq
t/gqScJ3c9+K6gI2V9DOyjR55gYvj3eHSGRqsNPO+q+2NFiFjFhINSFp6al9eAWg
SUY1qoS0etDlHKcAh3vyIzIt4f5GG3+BsCkROr2wDyD4dTIxH7kMCJEDvQGY2c/6
aGwFlXpaUZnM9x34blWxCRHEkw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:15 2024 by rpki-client on console-fra.rpki-client.org