Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/b9f29b-ee3d-4bde-adc6-43e91e5ef145/1/Y3p42iaCENE4EdZDmVUNKHY6MUM.roa
File: Y3p42iaCENE4EdZDmVUNKHY6MUM.roa (raw, json)
Hash identifier: uHOzCEZkJkWKrghERTey2kDGRFRNhBCurzl9K4jAiG8=
Subject key identifier: 63:7A:78:DA:26:82:10:D1:38:11:D6:43:99:55:0D:28:76:3A:31:43
Certificate issuer: /CN=ecd6bdacc521edca4c076048da86fed5dcd61220
Certificate serial: 0809A568
Authority key identifier: EC:D6:BD:AC:C5:21:ED:CA:4C:07:60:48:DA:86:FE:D5:DC:D6:12:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Na9rMUh7cpMB2BI2ob-1dzWEiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/b9f29b-ee3d-4bde-adc6-43e91e5ef145/1/Y3p42iaCENE4EdZDmVUNKHY6MUM.roa
Signing time: Sat 01 Jan 2022 15:05:02 +0000
ROA not before: Sat 01 Jan 2022 15:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56851
IP address blocks: 45.83.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134849896 (0x809a568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecd6bdacc521edca4c076048da86fed5dcd61220
Validity
Not Before: Jan 1 15:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=637a78da268210d13811d64399550d28763a3143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:8a:52:48:79:e5:04:a6:40:39:80:9c:76:
dc:9e:77:02:65:12:5f:5f:66:4f:37:e3:da:86:e7:
aa:6a:00:4d:44:b4:9a:8e:d8:1f:d3:bc:08:a7:83:
34:96:3a:11:97:24:23:d2:8d:1e:41:61:ff:4f:8b:
8d:29:77:14:ee:32:63:0d:1c:b0:df:b5:47:52:4a:
c5:ac:59:dd:d6:c1:f2:46:e7:22:8b:04:d5:61:e2:
99:aa:cb:83:9c:d4:89:0a:10:07:4e:5e:36:25:82:
1d:e6:21:31:72:c9:08:61:08:e4:d5:19:b2:52:b0:
9b:de:be:d7:8e:11:41:97:55:6d:63:b4:f3:3a:c9:
57:40:4c:39:7b:70:66:1e:6a:4c:b8:99:b5:04:7c:
97:85:10:56:4a:fa:66:9c:00:66:58:fc:b6:ce:8d:
a9:de:fb:b2:5a:d4:14:81:98:a5:72:cf:27:5b:e2:
77:3c:e5:e6:16:f3:12:a2:81:e6:f3:31:7f:ab:17:
c4:cc:1f:2a:58:7e:dc:a6:04:ac:e3:44:6c:e5:c0:
be:d3:01:df:a2:ff:47:66:a4:d3:85:23:23:53:cd:
99:1a:19:d8:7a:66:da:72:d0:ad:e0:28:5c:1c:ce:
23:bd:3c:37:83:6a:02:0b:a8:fb:ef:63:2c:fc:70:
b6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7A:78:DA:26:82:10:D1:38:11:D6:43:99:55:0D:28:76:3A:31:43
X509v3 Authority Key Identifier:
keyid:EC:D6:BD:AC:C5:21:ED:CA:4C:07:60:48:DA:86:FE:D5:DC:D6:12:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Na9rMUh7cpMB2BI2ob-1dzWEiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/b9f29b-ee3d-4bde-adc6-43e91e5ef145/1/Y3p42iaCENE4EdZDmVUNKHY6MUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/b9f29b-ee3d-4bde-adc6-43e91e5ef145/1/7Na9rMUh7cpMB2BI2ob-1dzWEiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.192.0/22
Signature Algorithm: sha256WithRSAEncryption
88:c1:01:06:d9:76:26:13:e9:f0:88:66:f3:df:70:c1:07:36:
8b:67:64:9c:d0:72:62:29:ce:4e:0d:37:39:4c:07:21:6a:53:
15:2b:f9:24:ce:a8:5f:3c:d1:84:c9:cd:3b:73:ba:23:5d:e4:
2a:6c:78:27:e3:25:3f:d9:8a:68:d5:68:07:f9:5c:9e:ac:13:
49:50:e8:64:bf:1d:2d:d1:19:3b:04:4c:8d:83:62:4f:f0:df:
28:3e:ad:d5:5a:59:5e:f8:47:a4:d3:62:50:27:6e:52:b1:06:
0d:46:96:37:59:95:48:7e:00:a5:7b:bb:4b:5d:28:5b:33:38:
10:41:c3:44:e9:f8:82:fe:fb:8a:e8:a3:9d:a0:c4:a8:37:ba:
60:c7:ca:7a:d6:db:7a:e9:40:e4:c4:be:36:a8:91:fe:24:40:
04:8d:10:76:95:e1:10:c4:7a:4e:bb:0e:67:4b:28:2a:9c:24:
89:cd:e7:af:26:1e:1e:be:d3:ac:66:28:79:1f:aa:6c:7c:95:
83:e1:fb:14:10:ab:be:3a:92:f0:aa:f2:c4:bc:d9:a4:1e:0c:
ad:3b:76:f5:f1:97:ab:db:15:54:85:11:59:e6:0b:7b:13:8c:
e8:2d:00:e1:db:49:fe:b1:0e:96:b3:52:e8:7c:16:52:b4:ab:
a5:0f:36:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:35 2023 by rpki-client on console-ams.rpki-client.org