Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/a94780-1bf3-467a-9369-e98ff33f697c/1/JyaLQ-r9WxHOPo43dVJRudAPTH0.roa
File: JyaLQ-r9WxHOPo43dVJRudAPTH0.roa (raw, json)
Hash identifier: kcC59Nq6+Nq0zgl2cXxTbL5E5AW4ceRGpRzmQpCzytg=
Subject key identifier: 27:26:8B:43:EA:FD:5B:11:CE:3E:8E:37:75:52:51:B9:D0:0F:4C:7D
Certificate issuer: /CN=fa6df53c9fd2c5fc74f1db71834d7e46a76e91d7
Certificate serial: 61B1CF
Authority key identifier: FA:6D:F5:3C:9F:D2:C5:FC:74:F1:DB:71:83:4D:7E:46:A7:6E:91:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-m31PJ_Sxfx08dtxg01-Rqdukdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/a94780-1bf3-467a-9369-e98ff33f697c/1/JyaLQ-r9WxHOPo43dVJRudAPTH0.roa
Signing time: Mon 10 Jan 2022 11:51:14 +0000
ROA not before: Mon 10 Jan 2022 11:51:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210647
IP address blocks: 193.222.254.0/24 maxlen: 24
2a11:a5c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6402511 (0x61b1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa6df53c9fd2c5fc74f1db71834d7e46a76e91d7
Validity
Not Before: Jan 10 11:51:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27268b43eafd5b11ce3e8e37755251b9d00f4c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:61:de:03:36:d2:e3:85:63:06:77:13:1b:16:
16:3d:a5:2e:86:e1:ab:d9:fd:68:b2:f5:cb:dd:13:
54:8e:d7:59:c8:d7:2e:12:06:b5:83:18:83:87:af:
2b:e7:7c:2c:2c:13:0e:e6:e7:8a:6d:b5:9b:b9:5e:
0c:8d:2b:5b:f7:8b:a1:76:95:71:7b:7b:5a:2b:d6:
33:29:44:75:f2:45:07:a8:94:70:5e:93:5b:76:9f:
aa:1f:b0:3f:11:33:e4:a9:18:39:ca:ff:4b:13:6d:
06:fc:48:1b:52:fd:2e:23:3a:67:da:fd:17:af:65:
72:d2:23:2c:5f:a6:08:ea:cc:55:b8:28:a4:d1:de:
a9:6b:9c:95:3a:54:98:a0:d4:94:30:ab:57:ab:64:
7c:b0:57:3a:d9:73:ff:f5:b4:ac:94:ef:de:49:77:
4c:23:88:93:8d:64:f9:ab:1d:dc:5c:f1:aa:56:c6:
f4:90:ba:86:78:ac:7f:5c:91:c0:8e:c8:1a:31:af:
3d:a6:30:e7:3e:61:c4:f8:7d:02:76:1c:2d:c7:8d:
86:6b:8a:4c:17:75:0a:55:f3:0b:59:ed:c4:cd:67:
1b:61:18:68:d8:8c:94:36:e6:32:55:9d:17:9c:f3:
30:06:d3:5b:10:83:45:ee:1d:4d:ea:5c:da:e6:9d:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:8B:43:EA:FD:5B:11:CE:3E:8E:37:75:52:51:B9:D0:0F:4C:7D
X509v3 Authority Key Identifier:
keyid:FA:6D:F5:3C:9F:D2:C5:FC:74:F1:DB:71:83:4D:7E:46:A7:6E:91:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-m31PJ_Sxfx08dtxg01-Rqdukdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/a94780-1bf3-467a-9369-e98ff33f697c/1/JyaLQ-r9WxHOPo43dVJRudAPTH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/a94780-1bf3-467a-9369-e98ff33f697c/1/1-m31PJ_Sxfx08dtxg01-Rqdukdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.254.0/24
IPv6:
2a11:a5c0::/29
Signature Algorithm: sha256WithRSAEncryption
7b:85:46:51:2c:c9:c8:8c:90:c1:88:e8:ec:85:a9:7d:a9:79:
4d:f2:d0:5e:fc:8c:4e:3f:cc:79:df:79:5a:30:18:6f:ea:b4:
c6:15:3b:14:c1:10:53:81:b2:cc:69:c0:58:08:5f:86:1e:38:
0a:57:fe:7b:96:96:3b:a8:0a:fe:76:2f:78:e8:07:f0:7e:75:
e8:a4:50:6c:72:14:b9:69:11:3f:ec:2f:72:0d:b5:1e:57:5f:
58:75:ab:b0:a9:47:05:ba:10:b9:b1:6e:01:2d:01:84:66:a2:
0a:65:6a:74:a5:0a:81:8d:cf:cd:81:65:b0:79:96:fb:2b:6d:
82:b7:67:34:4a:2a:11:d2:85:4d:cc:d4:db:60:e3:29:13:3d:
41:3e:15:51:ca:23:a6:4e:a6:ab:e0:b3:ca:6c:a4:a6:7a:a7:
b4:e5:71:a8:85:ba:6e:2a:44:a2:89:10:ca:66:68:80:15:3f:
c9:11:aa:bf:8f:93:01:c4:a9:91:e3:99:2c:7e:84:44:cc:29:
80:94:69:cf:df:ff:19:6f:c1:fd:91:78:a1:79:2a:5c:3e:48:
8d:94:79:1c:0c:d8:66:0d:12:48:86:10:08:24:83:08:6e:7a:
9e:df:38:65:90:7c:f1:63:b2:90:c4:d7:63:ec:70:48:ad:eb:
c8:85:1a:1a
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIDYbHPMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZh
NmRmNTNjOWZkMmM1ZmM3NGYxZGI3MTgzNGQ3ZTQ2YTc2ZTkxZDcwHhcNMjIwMTEw
MTE1MTE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyNzI2OGI0M2VhZmQ1
YjExY2UzZThlMzc3NTUyNTFiOWQwMGY0YzdkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA5mHeAzbS44VjBncTGxYWPaUuhuGr2f1osvXL3RNUjtdZyNcu
Ega1gxiDh68r53wsLBMO5ueKbbWbuV4MjStb94uhdpVxe3taK9YzKUR18kUHqJRw
XpNbdp+qH7A/ETPkqRg5yv9LE20G/EgbUv0uIzpn2v0Xr2Vy0iMsX6YI6sxVuCik
0d6pa5yVOlSYoNSUMKtXq2R8sFc62XP/9bSslO/eSXdMI4iTjWT5qx3cXPGqVsb0
kLqGeKx/XJHAjsgaMa89pjDnPmHE+H0Cdhwtx42Ga4pMF3UKVfMLWe3EzWcbYRho
2IyUNuYyVZ0XnPMwBtNbEINF7h1N6lza5p2VzwIDAQABo4ICGjCCAhYwHQYDVR0O
BBYEFCcmi0Pq/VsRzj6ON3VSUbnQD0x9MB8GA1UdIwQYMBaAFPpt9Tyf0sX8dPHb
cYNNfkanbpHXMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEFBQcBAQRZMFcwVQYIKwYB
BQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MS1tMzFQSl9TeGZ4MDhkdHhnMDEtUnFkdWtkYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTMvYTk0NzgwLTFiZjMtNDY3YS05MzY5LWU5OGZmMzNmNjk3Yy8x
L0p5YUxRLXI5V3hIT1BvNDNkVkpSdWRBUFRIMC5yb2EwgYIGA1UdHwR7MHkwd6B1
oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTMv
YTk0NzgwLTFiZjMtNDY3YS05MzY5LWU5OGZmMzNmNjk3Yy8xLzEtbTMxUEpfU3hm
eDA4ZHR4ZzAxLVJxZHVrZGMuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBADB3v4wDQQCAAIwBwMFAyoRpcAw
DQYJKoZIhvcNAQELBQADggEBAHuFRlEsyciMkMGI6OyFqX2peU3y0F78jE4/zHnf
eVowGG/qtMYVOxTBEFOBssxpwFgIX4YeOApX/nuWljuoCv52L3joB/B+deikUGxy
FLlpET/sL3INtR5XX1h1q7CpRwW6ELmxbgEtAYRmogplanSlCoGNz82BZbB5lvsr
bYK3ZzRKKhHShU3M1Ntg4ykTPUE+FVHKI6ZOpqvgs8pspKZ6p7TlcaiFum4qRKKJ
EMpmaIAVP8kRqr+PkwHEqZHjmSx+hETMKYCUac/f/xlvwf2ReKF5Klw+SI2UeRwM
2GYNEkiGEAgkgwhuep7fOGWQfPFjspDE12PscEit68iFGho=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:26 2023 by rpki-client on console-fra.rpki-client.org