Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VelQn6NHEe75aZ7N79SMSEjKMrc.roa
File: VelQn6NHEe75aZ7N79SMSEjKMrc.roa (raw, json)
Hash identifier: wz6iEyEzkDENwmYeC9M5n8lxp+jhDJyXBbxPwnK5Qjw=
Subject key identifier: 55:E9:50:9F:A3:47:11:EE:F9:69:9E:CD:EF:D4:8C:48:48:CA:32:B7
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0182F94A43B99E2C1A438EDC9F15AB899208
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VelQn6NHEe75aZ7N79SMSEjKMrc.roa
Signing time: Thu 01 Sep 2022 13:42:49 +0000
ROA not before: Thu 01 Sep 2022 13:42:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.3.80.0/20 maxlen: 20
46.232.96.0/19 maxlen: 19
46.232.0.0/18 maxlen: 18
46.232.0.0/19 maxlen: 19
46.232.0.0/17 maxlen: 17
46.232.0.0/24 maxlen: 24
46.232.16.0/22 maxlen: 22
46.3.16.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
46.3.30.0/24 maxlen: 24
46.3.152.0/22 maxlen: 22
46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.92.0/22 maxlen: 22
46.3.129.0/24 maxlen: 24
46.3.131.0/24 maxlen: 24
46.3.128.0/23 maxlen: 23
46.3.216.0/21 maxlen: 21
46.3.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:4a:43:b9:9e:2c:1a:43:8e:dc:9f:15:ab:89:92:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Sep 1 13:42:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55e9509fa34711eef9699ecdefd48c4848ca32b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a9:d1:97:29:70:35:ec:9a:b9:42:2a:cd:17:
ae:b7:83:70:56:92:32:fa:b4:72:60:63:04:71:bd:
ed:7a:ed:45:6f:10:47:9b:b2:5d:84:63:87:05:de:
f9:3c:92:18:6b:ec:37:cb:ec:95:8b:f2:ed:0e:29:
24:a9:b5:ea:a9:9f:cb:da:bf:1b:c0:08:e7:35:42:
97:73:6b:79:e2:c3:99:07:ed:d8:f0:e1:31:17:d6:
3c:66:ab:f7:5e:e8:16:03:32:94:6a:aa:2e:ee:aa:
48:f9:7f:cf:4c:26:08:24:0f:1a:18:73:bf:d8:eb:
79:86:1b:82:5b:9c:ad:3a:d5:94:34:52:e5:5e:55:
5d:88:09:95:34:20:d1:a4:67:e5:56:2c:42:80:5b:
b5:6a:e7:64:0f:0e:bf:93:f8:96:d4:37:8d:70:92:
0b:a8:9e:85:0e:99:55:8c:6e:c8:8f:86:c7:8b:66:
02:16:90:3e:22:9e:68:66:24:f1:ec:c9:32:2e:7c:
43:f9:32:95:5f:6e:e6:34:af:85:4a:83:89:ff:bf:
5b:a2:dc:9c:be:83:c1:ee:a4:89:ac:6f:31:25:b9:
21:7d:65:90:aa:00:b1:58:42:13:60:9a:69:7b:e2:
4a:d0:b4:fe:52:af:f0:9e:2a:99:ae:8e:5b:9d:b4:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E9:50:9F:A3:47:11:EE:F9:69:9E:CD:EF:D4:8C:48:48:CA:32:B7
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VelQn6NHEe75aZ7N79SMSEjKMrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0-46.3.19.255
46.3.24.0/22
46.3.30.0/24
46.3.64.0-46.3.129.255
46.3.131.0/24
46.3.152.0/22
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/17
Signature Algorithm: sha256WithRSAEncryption
40:73:43:89:2f:88:26:68:b3:c1:3a:a8:f5:7b:8d:08:23:bb:
0d:e2:cb:b3:31:92:a8:7e:2a:4d:66:c3:e1:a3:d5:18:8f:05:
23:89:7e:bd:12:33:70:5e:d6:74:d4:5a:4e:c3:00:9f:8f:bd:
75:cc:e6:10:20:15:c6:8d:50:15:5b:e9:7f:c9:75:ef:b4:29:
4b:d0:f6:0e:f8:bc:02:26:7f:11:d8:2e:09:e2:4d:80:d2:bf:
a7:e4:02:93:71:f6:4c:23:54:4b:db:b5:c1:d1:6e:08:39:92:
9f:b1:36:41:ec:d0:a5:32:0f:79:62:b7:73:4c:4b:b4:57:08:
ba:ac:d8:97:45:ab:46:19:77:81:e3:c0:61:d5:c4:23:12:af:
b0:ad:bf:ba:21:f2:3e:8c:4f:8b:fa:23:86:8a:07:5c:35:9d:
05:eb:1e:c3:f2:cb:54:16:d2:f0:6b:23:4e:1a:03:c5:bf:53:
e8:01:77:20:d6:ed:b8:ba:6b:e8:0c:e4:a9:0a:69:88:8d:5c:
b1:82:aa:4f:5d:05:99:ad:74:c8:c3:d2:49:df:18:7c:c7:c1:
e8:ce:d8:7a:a1:3c:b8:78:f1:ba:2e:e4:9a:ee:79:81:d6:68:
65:63:60:77:05:d2:f0:0f:b0:32:2b:4b:e7:b1:d7:cb:be:96:
00:8e:7c:06
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYL5SkO5niwaQ47cnxWriZIIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjIwOTAxMTM0MjQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWU5NTA5ZmEzNDcxMWVlZjk2OTllY2RlZmQ0OGM0ODQ4Y2EzMmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAianRlylwNeyauUIqzReut4NwVpIy
+rRyYGMEcb3teu1FbxBHm7JdhGOHBd75PJIYa+w3y+yVi/LtDikkqbXqqZ/L2r8b
wAjnNUKXc2t54sOZB+3Y8OExF9Y8Zqv3XugWAzKUaqou7qpI+X/PTCYIJA8aGHO/
2Ot5hhuCW5ytOtWUNFLlXlVdiAmVNCDRpGflVixCgFu1audkDw6/k/iW1DeNcJIL
qJ6FDplVjG7Ij4bHi2YCFpA+Ip5oZiTx7MkyLnxD+TKVX27mNK+FSoOJ/79botyc
voPB7qSJrG8xJbkhfWWQqgCxWEITYJppe+JK0LT+Uq/wniqZro5bnbQBBQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFFXpUJ+jRxHu+Wmeze/UjEhIyjK3MB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvVmVsUW42TkhFZTc1YVo3Tjc5U01TRWpLTXJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOMAwDBAIuAwwD
BAIuAxADBAIuAxgDBAAuAx4wDAMEBi4DQAMEAS4DgAMEAC4DgwMEAi4DmAMEBS4D
oDAMAwQDLgPYAwQCLgPgAwQHLugAMA0GCSqGSIb3DQEBCwUAA4IBAQBAc0OJL4gm
aLPBOqj1e40II7sN4suzMZKofipNZsPho9UYjwUjiX69EjNwXtZ01FpOwwCfj711
zOYQIBXGjVAVW+l/yXXvtClL0PYO+LwCJn8R2C4J4k2A0r+n5AKTcfZMI1RL27XB
0W4IOZKfsTZB7NClMg95YrdzTEu0Vwi6rNiXRatGGXeB48Bh1cQjEq+wrb+6IfI+
jE+L+iOGigdcNZ0F6x7D8stUFtLwayNOGgPFv1PoAXcg1u24umvoDOSpCmmIjVyx
gqpPXQWZrXTIw9JJ3xh8x8Hozth6oTy4ePG6LuSa7nmB1mhlY2B3BdLwD7AyK0vn
sdfLvpYAjnwG
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org