Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/RmnYiOyafNW0czVlJs28B3rjOhw.roa
File: RmnYiOyafNW0czVlJs28B3rjOhw.roa (raw, json)
Hash identifier: j8VmZQlC7Y25Qbz9NwTLIXMETJuuBWzle1gjYpBDTrk=
Subject key identifier: 46:69:D8:88:EC:9A:7C:D5:B4:73:35:65:26:CD:BC:07:7A:E3:3A:1C
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 0183DD2B7647EA37A8D16C838F26C62FAC1E
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/RmnYiOyafNW0czVlJs28B3rjOhw.roa
Signing time: Sat 15 Oct 2022 19:42:36 +0000
ROA not before: Sat 15 Oct 2022 19:42:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43395
IP address blocks: 46.148.35.0/24 maxlen: 24
46.148.36.0/24 maxlen: 24
46.148.43.0/24 maxlen: 24
46.148.38.0/23 maxlen: 23
46.148.41.0/24 maxlen: 24
46.148.45.0/24 maxlen: 24
46.148.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:dd:2b:76:47:ea:37:a8:d1:6c:83:8f:26:c6:2f:ac:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Oct 15 19:42:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4669d888ec9a7cd5b473356526cdbc077ae33a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ca:3c:78:e4:a9:35:6e:ca:ec:ab:64:b0:50:
fb:c0:0d:5c:7c:80:17:70:ff:26:18:a7:35:07:3f:
a9:00:e2:d2:a9:5c:3d:a7:49:20:ab:e9:78:f3:7f:
a9:24:dd:d2:a2:e0:f7:c4:b0:ab:f7:61:6e:e7:67:
79:c8:90:10:45:60:4c:1c:40:5d:21:ea:93:02:0b:
1f:3b:0e:7f:3d:9d:20:63:6c:6c:0f:48:ed:e0:fc:
0f:40:bc:f7:95:eb:61:66:49:4f:e9:f4:cc:09:5e:
14:16:0b:26:3e:a0:6e:8a:97:45:99:49:a5:77:1e:
12:96:a8:34:65:99:e1:01:ee:ff:b5:14:5d:f4:a3:
2a:5e:f2:96:d5:56:03:b1:a6:f9:66:4d:02:33:d6:
ce:36:46:22:95:18:65:74:71:bd:20:32:12:dc:37:
b2:25:24:be:88:80:e2:a0:41:f2:8f:ae:62:48:ae:
4f:56:bb:2e:c8:d8:e1:62:54:ef:c9:84:74:c3:c4:
59:72:1a:f0:b0:97:62:60:bd:44:3b:e5:e5:a7:01:
76:88:50:e8:b8:aa:f9:b0:6c:5d:76:71:99:e9:af:
9b:8a:9e:0e:fe:ec:a9:63:6f:bd:0a:5e:9d:d2:ca:
07:ad:9d:8a:61:c9:d3:38:18:83:42:f0:c6:b2:40:
cf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:69:D8:88:EC:9A:7C:D5:B4:73:35:65:26:CD:BC:07:7A:E3:3A:1C
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/RmnYiOyafNW0czVlJs28B3rjOhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.35.0-46.148.36.255
46.148.38.0/23
46.148.41.0/24
46.148.43.0/24
46.148.45.0-46.148.46.255
Signature Algorithm: sha256WithRSAEncryption
62:ef:72:01:ec:1a:9b:3f:7b:4e:22:ef:b3:f0:4a:8d:ff:ee:
b9:2f:2d:aa:aa:a9:8e:0c:ea:1a:ea:a4:00:c1:99:4c:3f:66:
61:d2:b8:c2:ac:1f:ce:32:57:0c:2c:40:21:b6:e2:62:00:bd:
38:15:45:e8:bc:62:d0:54:bb:ce:77:29:ae:23:7a:75:6e:52:
db:83:c8:cd:d1:54:6f:54:57:36:40:ef:59:69:3b:f8:b9:86:
fa:57:6b:9c:cb:86:54:86:d4:c9:1a:46:91:71:87:05:7b:7c:
da:a5:49:7f:c8:d1:f5:fc:19:4d:80:73:6a:f5:32:f0:27:40:
bf:0a:5e:b0:0f:95:13:96:55:4a:29:28:a7:88:ec:ea:2a:1e:
a7:81:51:d9:8e:c1:ae:dc:cc:58:0c:a3:2f:fe:31:1b:29:40:
55:6f:3e:f4:7a:47:c8:de:3a:03:70:4b:92:50:93:d5:b7:b7:
e7:fc:22:19:a8:ab:5f:b5:0c:0a:45:f5:c9:04:f7:ba:2e:51:
c8:b6:ef:dd:d3:7b:d3:ba:3d:81:a8:52:7c:1e:63:41:de:57:
9a:9f:54:f4:f9:06:8f:61:99:a3:e8:b0:47:60:04:ea:ab:25:
b8:03:c0:36:e8:69:aa:a5:4d:32:70:7e:da:63:fa:06:16:7c:
b9:f5:5b:86
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAYPdK3ZH6jeo0WyDjybGL6weMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4OWMyY2M0ODllYmU0OGY0OTA1ODRhYzg2NmZlMzYyYzQx
MTdlNzUwHhcNMjIxMDE1MTk0MjM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NjY5ZDg4OGVjOWE3Y2Q1YjQ3MzM1NjUyNmNkYmMwNzdhZTMzYTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8o8eOSpNW7K7KtksFD7wA1cfIAX
cP8mGKc1Bz+pAOLSqVw9p0kgq+l483+pJN3SouD3xLCr92Fu52d5yJAQRWBMHEBd
IeqTAgsfOw5/PZ0gY2xsD0jt4PwPQLz3lethZklP6fTMCV4UFgsmPqBuipdFmUml
dx4Slqg0ZZnhAe7/tRRd9KMqXvKW1VYDsab5Zk0CM9bONkYilRhldHG9IDIS3Dey
JSS+iIDioEHyj65iSK5PVrsuyNjhYlTvyYR0w8RZchrwsJdiYL1EO+XlpwF2iFDo
uKr5sGxddnGZ6a+bip4O/uypY2+9Cl6d0soHrZ2KYcnTOBiDQvDGskDP6QIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFEZp2IjsmnzVtHM1ZSbNvAd64zocMB8GA1UdIwQY
MBaAFMicLMSJ6+SPSQWErIZv42LEEX51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEt
YWYyY2ZhNjIyZDE4LzEvUm1uWWlPeWFmTlcwY3pWbEpzMjhCM3JqT2h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEtYWYyY2ZhNjIyZDE4
LzEveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAAulCMD
BAAulCQDBAEulCYDBAAulCkDBAAulCswDAMEAC6ULQMEAC6ULjANBgkqhkiG9w0B
AQsFAAOCAQEAYu9yAewamz97TiLvs/BKjf/uuS8tqqqpjgzqGuqkAMGZTD9mYdK4
wqwfzjJXDCxAIbbiYgC9OBVF6Lxi0FS7zncpriN6dW5S24PIzdFUb1RXNkDvWWk7
+LmG+ldrnMuGVIbUyRpGkXGHBXt82qVJf8jR9fwZTYBzavUy8CdAvwpesA+VE5ZV
Sikop4js6ioep4FR2Y7BrtzMWAyjL/4xGylAVW8+9HpHyN46A3BLklCT1be35/wi
GairX7UMCkX1yQT3ui5RyLbv3dN707o9gahSfB5jQd5Xmp9U9PkGj2GZo+iwR2AE
6qsluAPANuhpqqVNMnB+2mP6BhZ8ufVbhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:47 2024 by rpki-client on console-ams.rpki-client.org