Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/lys-YlTwdAF_b3Ix-jtXNC27I5Q.roa
File: lys-YlTwdAF_b3Ix-jtXNC27I5Q.roa (raw, json)
Hash identifier: LwL2fDoqA2vGvQ6LAfmqERiMKX0cIpywqTt1MgUQyhQ=
Subject key identifier: 97:2B:3E:62:54:F0:74:01:7F:6F:72:31:FA:3B:57:34:2D:BB:23:94
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A32383
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/lys-YlTwdAF_b3Ix-jtXNC27I5Q.roa
Signing time: Sat 01 Jan 2022 08:01:44 +0000
ROA not before: Sat 01 Jan 2022 08:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34854
IP address blocks: 94.124.117.0/24 maxlen: 24
2a09:0:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128131971 (0x7a32383)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=972b3e6254f074017f6f7231fa3b57342dbb2394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2e:11:0b:84:73:2e:56:2c:ef:88:27:6f:4a:
16:d1:51:08:60:e7:bb:1e:43:a7:93:4b:1d:24:1e:
b3:11:e4:1e:c5:09:aa:cf:38:b9:49:6d:32:b3:06:
8a:b1:1e:71:64:da:9d:51:75:42:dc:98:c8:90:c6:
52:17:63:f4:39:4e:4f:29:da:c7:e5:7a:d3:3e:27:
73:cc:4f:ec:92:a3:ec:18:56:36:29:a4:ff:c0:69:
67:d8:56:11:5b:f2:21:d6:a4:9e:3c:1d:42:3e:52:
9f:a4:6f:fc:f1:dc:f2:1a:b0:29:96:92:46:c8:03:
59:6c:ee:ce:16:89:cc:b1:10:79:8e:5b:06:f5:ae:
6a:a4:70:d8:e9:83:bc:9f:f8:5d:b1:b5:d3:71:9f:
72:c9:6a:93:f7:ef:d8:42:a6:a9:15:6f:72:67:61:
4f:6e:d0:a5:a8:cf:4b:f8:4b:11:b4:c2:b6:17:64:
25:e3:ad:91:31:26:6a:16:8d:66:33:10:c8:dd:df:
5d:6e:a1:82:19:1d:2b:40:b7:11:ac:95:16:8c:ca:
5a:42:df:e7:9b:ac:cb:da:12:90:3b:33:a5:7c:72:
57:84:e7:b7:b5:54:4c:46:49:68:c0:6b:20:18:7c:
62:56:fb:9b:6f:e1:0f:f4:11:50:ba:a9:ba:7d:58:
28:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2B:3E:62:54:F0:74:01:7F:6F:72:31:FA:3B:57:34:2D:BB:23:94
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/lys-YlTwdAF_b3Ix-jtXNC27I5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.117.0/24
IPv6:
2a09:0:10::/48
Signature Algorithm: sha256WithRSAEncryption
61:51:6d:ae:62:dd:5b:3d:aa:3b:b7:43:8f:6e:a6:6e:13:c4:
bd:bf:92:19:a8:b3:75:96:56:ec:94:0d:a6:28:7e:d4:79:d4:
be:b3:96:d3:e6:3c:5e:28:c6:b7:29:0d:46:72:4e:a5:d1:39:
f1:f1:ab:d4:0c:b0:69:c4:53:9a:53:e4:31:65:10:d8:99:d9:
f6:f8:b2:a5:bc:e3:31:9a:b4:35:dd:c6:c6:ca:1a:cf:1a:d6:
de:f9:1c:86:f5:1a:d0:20:cc:e0:23:f7:36:ab:d2:36:6f:e6:
b0:76:26:c5:82:8e:29:ca:4d:8a:3a:5c:87:24:86:2b:4b:76:
32:f5:4f:39:ea:56:78:7c:20:cb:a9:f0:58:0f:1a:3d:c3:55:
aa:33:25:1d:fa:bd:58:ec:c7:32:b8:f8:fc:49:3b:4a:33:20:
4b:e5:80:cc:53:30:66:f6:e4:72:aa:3f:16:e2:49:cd:e4:52:
00:ea:e2:e5:d3:b9:7c:39:58:99:36:d9:18:d0:c9:8a:92:94:
ac:50:ef:8e:57:3f:17:53:26:1b:55:27:9b:ab:3c:e7:83:0e:
a9:40:29:d4:c1:6c:1a:5b:63:33:1d:31:e3:72:cf:fd:01:25:
07:d5:c4:80:fb:01:0d:15:c6:4f:bd:67:d9:40:13:f2:a2:54:
72:b0:af:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org