Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/dy96e-MBkziP-7B-z7v6TzxzuN0.roa
File: dy96e-MBkziP-7B-z7v6TzxzuN0.roa (raw, json)
Hash identifier: wu6aU+oauHmDdC79tYpshKLGmgX1FiiHW/vnEOND/nI=
Subject key identifier: 77:2F:7A:7B:E3:01:93:38:8F:FB:B0:7E:CF:BB:FA:4F:3C:73:B8:DD
Certificate issuer: /CN=c2d82ccf0c8dea7d7f6ad72e8e62462d7be20d56
Certificate serial: 11DC5532
Authority key identifier: C2:D8:2C:CF:0C:8D:EA:7D:7F:6A:D7:2E:8E:62:46:2D:7B:E2:0D:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtgszwyN6n1_atcujmJGLXviDVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/dy96e-MBkziP-7B-z7v6TzxzuN0.roa
Signing time: Sat 01 Jan 2022 13:56:28 +0000
ROA not before: Sat 01 Jan 2022 13:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49810
IP address blocks: 45.84.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299652402 (0x11dc5532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d82ccf0c8dea7d7f6ad72e8e62462d7be20d56
Validity
Not Before: Jan 1 13:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=772f7a7be30193388ffbb07ecfbbfa4f3c73b8dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:52:09:db:72:95:86:4d:45:97:30:27:18:
4a:6b:9c:1e:83:4e:b0:16:e9:23:f0:2f:86:9d:c1:
1c:fd:62:2e:4c:f7:99:96:5b:0f:5a:ad:fb:09:81:
60:98:8d:9e:79:81:07:62:a0:1b:03:81:0a:74:67:
28:83:c2:fc:7b:a7:ae:82:b2:79:9f:1c:e7:40:f9:
f5:a3:67:fb:bd:98:34:91:4b:9a:e2:e6:15:c2:64:
1b:99:43:8b:cb:68:eb:99:01:50:46:61:02:62:7c:
b7:27:cc:81:ea:10:fa:be:c8:76:0c:e6:45:f1:16:
b4:12:04:d2:8e:a5:cc:d7:c9:6f:00:a4:cd:d2:1c:
e4:45:5c:a2:7b:a9:3d:1e:dd:98:84:b2:f6:74:19:
76:da:d1:ca:19:48:13:9d:60:73:12:84:9a:42:2f:
32:bf:cb:90:f4:06:16:13:2f:c3:ff:ea:63:ab:29:
5d:7f:b0:20:21:83:52:b9:e3:7b:00:79:4d:01:61:
ee:1a:72:92:ad:c7:db:1b:89:1e:bf:69:ce:a9:37:
f4:19:13:52:bb:2d:bb:23:23:41:cb:d8:83:36:d4:
39:8c:d4:c7:b6:df:b2:1d:e2:f3:1a:ae:d9:d0:e3:
78:fd:1a:0d:50:0e:a2:b5:1a:55:c2:b1:d9:66:58:
7c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2F:7A:7B:E3:01:93:38:8F:FB:B0:7E:CF:BB:FA:4F:3C:73:B8:DD
X509v3 Authority Key Identifier:
keyid:C2:D8:2C:CF:0C:8D:EA:7D:7F:6A:D7:2E:8E:62:46:2D:7B:E2:0D:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtgszwyN6n1_atcujmJGLXviDVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/dy96e-MBkziP-7B-z7v6TzxzuN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/wtgszwyN6n1_atcujmJGLXviDVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.146.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ae:af:88:b0:15:46:7b:02:40:74:4a:25:b7:87:70:b4:d3:
f4:9b:7d:f3:8b:87:af:44:b6:3e:ba:27:5a:95:1d:24:0a:bb:
f0:27:39:85:35:54:a9:40:a1:a0:41:a3:35:3e:85:14:d9:93:
99:ae:e1:96:2b:06:b2:34:de:b5:c4:a2:12:68:7c:38:69:82:
e1:10:bf:79:e7:e3:7d:dc:99:d0:92:d0:85:18:b0:a1:2e:17:
61:d8:b2:bf:6b:7c:9a:57:7c:c3:b9:0c:6a:21:a5:4c:18:06:
44:c2:7c:d0:ba:91:45:3e:59:34:8f:55:65:81:0b:6a:36:c2:
ef:e1:70:8b:3a:a8:4e:84:5a:ad:2b:9a:00:9a:8f:63:88:58:
c7:35:db:2c:02:ba:e2:83:e9:7b:4d:87:87:de:75:cc:68:0d:
48:c2:3c:41:b8:5a:ab:f7:0a:ff:4d:a6:c4:05:bf:d0:3a:2a:
78:e3:c5:bc:61:ed:5e:54:63:d3:34:09:3c:cf:21:58:3b:9b:
a4:04:7a:c1:81:de:64:b5:a3:7f:01:f4:f3:00:f9:6d:85:6e:
85:53:b4:6f:04:16:54:87:72:aa:9e:74:8a:02:a4:af:ba:f9:
97:d3:e2:6a:68:38:8f:fa:4a:2b:93:e2:0e:b4:b8:c1:93:a7:
50:a6:c5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org