Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JJYA97riuTCkQQGzK0e7z2fxkBs.roa
File: JJYA97riuTCkQQGzK0e7z2fxkBs.roa (raw, json)
Hash identifier: H1KEtgpNl+Fe2a594rRywKdqRCuEkNr2YSBWK6Z2iyw=
Subject key identifier: 24:96:00:F7:BA:E2:B9:30:A4:41:01:B3:2B:47:BB:CF:67:F1:90:1B
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0182D3EB65621B59AC39D10E0A4912040005
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JJYA97riuTCkQQGzK0e7z2fxkBs.roa
Signing time: Thu 25 Aug 2022 07:33:15 +0000
ROA not before: Thu 25 Aug 2022 07:33:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138687
IP address blocks: 193.93.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d3:eb:65:62:1b:59:ac:39:d1:0e:0a:49:12:04:00:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Aug 25 07:33:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=249600f7bae2b930a44101b32b47bbcf67f1901b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a4:5b:a8:c2:d9:a4:08:aa:39:db:aa:ea:42:
af:67:c9:91:33:f1:1a:c8:29:a3:1d:e7:18:a6:af:
f6:f9:5c:9b:b6:02:12:69:b5:a8:ef:5f:94:96:cc:
78:31:68:5f:56:8d:84:c5:3a:39:0e:e8:3c:10:ea:
e5:db:30:b2:c9:7b:c9:fe:2f:bb:81:a2:a4:ca:50:
f8:f8:8d:9f:a1:68:33:8b:6e:4b:0e:c2:06:85:4b:
77:44:57:59:f0:6b:bf:63:24:3a:81:e2:1a:5e:24:
21:29:56:d1:c4:2c:37:81:5d:90:04:ee:69:54:cf:
be:7f:3e:9d:f0:0f:2a:d7:b0:9d:bc:24:dd:59:50:
77:3a:16:00:93:79:b1:96:e3:b0:5f:ea:1c:aa:75:
95:34:0f:65:62:40:63:21:9b:61:6e:ff:a8:ad:57:
c1:e3:6e:ca:d6:ce:8a:48:4e:24:15:7d:08:f8:6d:
45:86:e4:8e:19:53:7d:b8:ff:12:97:a5:4c:77:1c:
70:13:4a:11:b2:dc:8e:32:7b:f8:44:b5:a8:00:6b:
23:7d:44:d5:a3:16:e4:fd:b5:73:67:21:e8:9f:79:
b3:b6:06:b7:71:c7:97:ca:14:7e:79:0f:47:93:3f:
f1:71:91:6e:3c:06:80:5f:19:ad:84:5d:2d:31:6d:
dc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:96:00:F7:BA:E2:B9:30:A4:41:01:B3:2B:47:BB:CF:67:F1:90:1B
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/JJYA97riuTCkQQGzK0e7z2fxkBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.53.0/24
Signature Algorithm: sha256WithRSAEncryption
17:71:51:18:07:86:33:23:63:22:c0:3f:9d:d2:0b:a7:31:d5:
44:17:8b:72:d8:6d:a9:17:76:4c:c0:01:d8:8b:46:62:0a:fc:
5e:1b:f5:40:38:95:04:19:d4:9d:59:5a:39:4c:fc:ed:a2:3d:
23:7e:e5:50:73:8b:2d:34:f2:f7:e7:1c:c7:86:d1:ec:81:69:
19:29:88:18:d6:b7:a5:4d:56:3d:c3:97:87:71:70:c2:a0:80:
14:62:57:95:16:2d:c0:eb:12:6b:d8:f9:29:77:4b:a0:f1:0a:
48:4e:e6:d1:3e:b9:a6:3f:84:5a:41:e9:8b:78:16:e0:48:58:
4b:df:2b:c2:40:75:37:0d:a6:4f:c9:f9:e4:bb:ae:16:b0:65:
e8:6b:1e:ef:79:d4:24:19:2a:bb:5d:19:84:bf:f8:e5:e1:4d:
29:68:7e:09:8c:de:d1:1f:5d:c7:6a:87:2d:3e:8b:ac:71:9b:
60:1f:62:7f:41:3a:14:2d:29:00:67:02:fe:22:99:be:1a:66:
d9:11:ac:c5:e6:92:38:d5:65:80:a5:ee:37:89:d8:02:e2:47:
ca:91:e4:94:5b:27:1c:b0:52:2b:a7:a8:16:2e:d0:8c:4d:e5:
e6:79:25:27:be:3d:52:83:4e:c6:50:d2:ed:68:85:27:ba:4c:
5a:5a:aa:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLT62ViG1msOdEOCkkSBAAFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjIwODI1MDczMzE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDk2MDBmN2JhZTJiOTMwYTQ0MTAxYjMyYjQ3YmJjZjY3ZjE5MDFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqRbqMLZpAiqOduq6kKvZ8mRM/Ea
yCmjHecYpq/2+VybtgISabWo71+Ulsx4MWhfVo2ExTo5Dug8EOrl2zCyyXvJ/i+7
gaKkylD4+I2foWgzi25LDsIGhUt3RFdZ8Gu/YyQ6geIaXiQhKVbRxCw3gV2QBO5p
VM++fz6d8A8q17CdvCTdWVB3OhYAk3mxluOwX+ocqnWVNA9lYkBjIZthbv+orVfB
427K1s6KSE4kFX0I+G1FhuSOGVN9uP8Sl6VMdxxwE0oRstyOMnv4RLWoAGsjfUTV
oxbk/bVzZyHon3mztga3cceXyhR+eQ9Hkz/xcZFuPAaAXxmthF0tMW3cvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCSWAPe64rkwpEEBsytHu89n8ZAbMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvSkpZQTk3cml1VENrUVFHekswZTd6MmZ4a0JzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwV01MA0G
CSqGSIb3DQEBCwUAA4IBAQAXcVEYB4YzI2MiwD+d0gunMdVEF4ty2G2pF3ZMwAHY
i0ZiCvxeG/VAOJUEGdSdWVo5TPztoj0jfuVQc4stNPL35xzHhtHsgWkZKYgY1rel
TVY9w5eHcXDCoIAUYleVFi3A6xJr2Pkpd0ug8QpITubRPrmmP4RaQemLeBbgSFhL
3yvCQHU3DaZPyfnku64WsGXoax7vedQkGSq7XRmEv/jl4U0paH4JjN7RH13Haoct
PouscZtgH2J/QToULSkAZwL+Ipm+GmbZEazF5pI41WWApe43idgC4kfKkeSUWycc
sFIrp6gWLtCMTeXmeSUnvj1Sg07GUNLtaIUnukxaWqpI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org