Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0_RnCSVjIDhfnS4ciWHrG5Ihvkw.roa
File: 0_RnCSVjIDhfnS4ciWHrG5Ihvkw.roa (raw, json)
Hash identifier: UqRVd8HrVscZNAkkxkY7UamAqX4naMZwKd1BWDuKkMk=
Subject key identifier: D3:F4:67:09:25:63:20:38:5F:9D:2E:1C:89:61:EB:1B:92:21:BE:4C
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 095899B0
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0_RnCSVjIDhfnS4ciWHrG5Ihvkw.roa
Signing time: Fri 01 Apr 2022 08:53:30 +0000
ROA not before: Fri 01 Apr 2022 08:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57494
IP address blocks: 80.243.128.0/22 maxlen: 22
80.243.136.0/23 maxlen: 23
80.243.140.0/23 maxlen: 23
46.3.64.0/22 maxlen: 22
46.3.68.0/22 maxlen: 22
46.232.2.0/23 maxlen: 23
46.232.4.0/22 maxlen: 22
46.3.168.0/22 maxlen: 22
46.3.172.0/22 maxlen: 22
46.3.176.0/22 maxlen: 22
46.3.180.0/22 maxlen: 22
46.3.184.0/22 maxlen: 22
46.3.188.0/24 maxlen: 24
46.3.188.0/22 maxlen: 22
46.3.192.0/22 maxlen: 22
46.3.192.0/23 maxlen: 23
46.3.196.0/22 maxlen: 22
46.3.140.0/22 maxlen: 22
46.3.206.0/23 maxlen: 23
46.3.223.0/24 maxlen: 24
46.3.228.0/23 maxlen: 23
149.126.216.0/22 maxlen: 22
149.126.220.0/22 maxlen: 22
149.126.232.0/22 maxlen: 22
149.126.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156801456 (0x95899b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Apr 1 08:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f46709256320385f9d2e1c8961eb1b9221be4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:47:04:fc:ca:34:34:60:b0:e4:9b:b8:4d:57:
ad:28:ae:49:09:03:92:df:89:f6:01:28:67:62:7a:
77:ab:97:53:1e:30:95:77:26:42:17:b7:62:24:b2:
a1:34:34:01:da:0d:46:78:ae:f4:b6:74:ba:1c:f8:
7e:fe:99:fa:8d:f7:66:6c:35:ac:ed:f4:2a:25:05:
a1:63:ee:43:ce:88:2f:ad:8e:f4:0e:59:54:d3:4e:
67:38:95:21:32:58:d8:6c:7c:89:ac:9e:2e:bc:ae:
92:f6:2f:5a:78:5d:a5:b6:c9:aa:90:de:e9:49:85:
e6:ec:7c:ff:61:a1:c0:37:5e:a5:83:51:93:e1:39:
a9:b7:d5:9e:b6:f7:c8:90:93:f5:12:a7:9f:f2:1a:
3b:4a:4e:cf:6a:04:77:6c:6f:41:37:57:96:ea:14:
34:53:ac:36:aa:a0:c9:0c:5f:b5:6d:aa:da:48:4d:
d7:e3:8b:83:b3:f5:f1:5d:c0:d2:21:9b:99:51:a3:
ec:1e:98:cb:1b:ac:61:e9:5d:b0:76:12:c2:da:b6:
85:c1:d8:e8:09:ab:ca:4f:b6:32:9b:d7:7b:2e:20:
9b:8f:fc:9d:a0:87:b8:ed:86:39:36:72:1a:da:60:
16:16:df:21:47:2b:0c:a3:39:2e:6b:68:a2:bd:47:
6a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F4:67:09:25:63:20:38:5F:9D:2E:1C:89:61:EB:1B:92:21:BE:4C
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/0_RnCSVjIDhfnS4ciWHrG5Ihvkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.64.0/21
46.3.140.0/22
46.3.168.0-46.3.199.255
46.3.206.0/23
46.3.223.0/24
46.3.228.0/23
46.232.2.0-46.232.7.255
80.243.128.0/22
80.243.136.0/23
80.243.140.0/23
149.126.216.0/21
149.126.232.0/21
Signature Algorithm: sha256WithRSAEncryption
66:4b:05:9a:21:d9:27:44:51:28:30:85:31:1f:35:61:6b:60:
51:a6:9b:65:ed:ac:1b:2e:33:91:27:92:ae:c4:20:c9:5b:29:
c8:cc:84:76:ca:d8:c9:51:bd:6b:45:0d:c8:2a:7b:c1:d3:ff:
49:35:73:f1:2f:0e:2b:9c:2a:9d:3b:1e:b4:e5:82:b8:c1:6f:
9e:e7:67:2c:3e:c2:b1:95:52:94:07:53:09:ab:99:6f:68:ac:
d5:9e:3a:9c:0c:09:14:5b:35:93:e2:00:ff:4c:fb:96:95:0e:
bd:23:fa:82:36:4b:16:2f:ff:2f:33:b9:1f:96:d5:38:cb:f6:
70:22:2a:63:86:50:40:22:00:38:82:83:c6:3c:98:f9:51:c8:
73:93:c4:74:87:d3:01:6b:6b:4c:b2:b5:cc:67:6f:21:09:61:
75:8c:43:94:12:8f:8e:5d:63:18:63:62:8f:a2:6c:6d:2e:f4:
54:02:7b:17:82:8b:44:9d:5f:4e:28:48:8e:0f:1e:b7:f4:44:
94:32:b7:9d:8c:64:b0:8c:4e:7e:1c:9b:dc:2d:21:07:ef:42:
be:08:b3:3f:03:95:4c:ea:b9:ad:0a:b2:ec:f1:8d:8c:12:b7:
13:27:d7:64:04:a4:7b:1c:2e:ca:b5:65:44:34:c5:1b:3d:4a:
c9:a4:28:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org