Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/12bd09-6917-4b10-8623-335c2a52a71a/1/YGPe5njw4DmizETAQLg13PQBEZ8.roa
File: YGPe5njw4DmizETAQLg13PQBEZ8.roa (raw, json)
Hash identifier: +F4vDlumZLAU0r67LTsLz+HcXi/R2TU0uO453YHWdiY=
Subject key identifier: 60:63:DE:E6:78:F0:E0:39:A2:CC:44:C0:40:B8:35:DC:F4:01:11:9F
Certificate issuer: /CN=465e78a5ec57231c693d654544618c6782d6190a
Certificate serial: 08277DD2
Authority key identifier: 46:5E:78:A5:EC:57:23:1C:69:3D:65:45:44:61:8C:67:82:D6:19:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl54pexXIxxpPWVFRGGMZ4LWGQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/12bd09-6917-4b10-8623-335c2a52a71a/1/YGPe5njw4DmizETAQLg13PQBEZ8.roa
Signing time: Sat 01 Jan 2022 13:07:29 +0000
ROA not before: Sat 01 Jan 2022 13:07:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51540
IP address blocks: 46.31.145.0/24 maxlen: 24
46.31.144.0/24 maxlen: 24
185.198.196.0/24 maxlen: 24
185.198.197.0/24 maxlen: 24
185.198.198.0/24 maxlen: 24
185.198.199.0/24 maxlen: 24
46.31.146.0/24 maxlen: 24
46.31.147.0/24 maxlen: 24
46.31.148.0/24 maxlen: 24
46.31.149.0/24 maxlen: 24
46.31.150.0/24 maxlen: 24
46.31.151.0/24 maxlen: 24
185.14.20.0/24 maxlen: 24
185.14.21.0/24 maxlen: 24
185.14.22.0/24 maxlen: 24
185.14.23.0/24 maxlen: 24
2a03:6c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136805842 (0x8277dd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465e78a5ec57231c693d654544618c6782d6190a
Validity
Not Before: Jan 1 13:07:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6063dee678f0e039a2cc44c040b835dcf401119f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:1d:07:2a:db:fc:c4:ba:2d:72:cf:9f:fd:
62:85:13:d8:4b:02:ce:cd:28:2c:2b:36:4d:f2:30:
8b:39:a3:7a:52:d2:aa:cd:22:a1:65:19:b5:d6:e7:
2d:d5:0a:8a:f6:1d:e2:a1:9a:f7:04:02:88:41:79:
21:8b:70:bd:41:90:c7:a1:e6:95:fd:e8:7e:1c:b3:
90:c7:76:6d:48:89:2f:98:2c:13:6b:fd:6f:b1:90:
31:37:43:b2:6d:94:7e:b0:70:cc:32:0a:a0:04:f6:
a3:d2:b6:12:e5:ef:0d:e3:3d:05:62:80:10:b7:d0:
6d:1a:c7:e4:1e:a5:0f:91:92:af:28:72:ba:4f:55:
6a:69:e8:fb:d5:4f:96:db:77:7e:c5:a5:a5:6b:e7:
b9:71:59:bb:eb:51:4a:36:aa:da:08:36:6d:33:21:
97:bb:bc:32:6f:c7:40:74:18:b5:a1:2e:9e:90:71:
ea:6d:3b:9c:1a:af:a4:3a:f9:45:88:17:fe:74:12:
2f:df:b8:75:ee:8c:a3:55:8f:47:82:61:df:ef:e7:
44:ec:9a:80:d8:e9:fb:e9:47:92:ca:28:2b:09:9c:
b9:72:f6:e0:15:96:05:b0:16:ed:8a:fc:37:03:f7:
73:ee:db:9c:0f:9d:ec:e6:10:18:71:05:47:e7:a0:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:63:DE:E6:78:F0:E0:39:A2:CC:44:C0:40:B8:35:DC:F4:01:11:9F
X509v3 Authority Key Identifier:
keyid:46:5E:78:A5:EC:57:23:1C:69:3D:65:45:44:61:8C:67:82:D6:19:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl54pexXIxxpPWVFRGGMZ4LWGQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/12bd09-6917-4b10-8623-335c2a52a71a/1/YGPe5njw4DmizETAQLg13PQBEZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/12bd09-6917-4b10-8623-335c2a52a71a/1/Rl54pexXIxxpPWVFRGGMZ4LWGQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.144.0/21
185.14.20.0/22
185.198.196.0/22
IPv6:
2a03:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
2f:51:6d:55:6e:36:70:67:39:ab:b1:3f:52:93:d6:81:c7:f4:
88:69:05:5f:36:74:85:db:15:9e:49:48:93:21:3a:15:bb:6e:
92:75:78:ea:5e:50:78:4d:b6:4a:5f:04:7c:a7:9f:d7:bb:37:
d0:37:75:d7:72:d2:9f:91:32:a0:e6:90:45:4f:92:25:4e:14:
6e:31:7a:91:5e:06:f2:2b:5e:08:f3:4b:57:43:b9:5d:ca:29:
82:ce:1b:87:10:8a:4f:5f:de:1c:bc:11:12:9a:fc:81:3d:57:
34:f2:a2:92:34:ed:5b:c0:fa:d3:fa:de:3b:a3:c6:95:b1:f0:
ac:d1:1e:1b:0c:4a:a7:9d:56:b2:92:82:39:53:23:49:7d:81:
a5:7a:e0:41:52:73:35:93:b0:b7:b4:4d:b3:a5:9d:65:2a:56:
5a:15:c6:34:ad:50:c4:85:b7:81:22:5e:8b:f8:ac:6e:02:28:
2e:17:f7:f8:6e:20:a2:b3:ff:86:d3:56:e5:af:5d:b8:4b:a1:
e6:f4:f8:5d:88:1a:99:48:08:91:2e:b6:c1:85:fb:10:bb:41:
72:d3:91:be:9a:38:1f:b8:87:ad:e2:13:43:d9:90:f9:3e:8a:
d0:2c:51:b4:db:d0:12:91:5a:c5:ea:85:9b:07:a1:1d:47:bb:
92:fc:d6:7f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:28 2024 by rpki-client on console-ams.rpki-client.org