Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/4HIR6DyWpJ1jyNkE_bDgmw3eoNk.roa
File: 4HIR6DyWpJ1jyNkE_bDgmw3eoNk.roa (raw, json)
Hash identifier: zbd0gz9Dy9G4DWBPtDByGYMSmV2xAilYSItqe2V3ruw=
Subject key identifier: E0:72:11:E8:3C:96:A4:9D:63:C8:D9:04:FD:B0:E0:9B:0D:DE:A0:D9
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0184B8BF8A3FA2974C3920445F3AE1F1D999
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/4HIR6DyWpJ1jyNkE_bDgmw3eoNk.roa
Signing time: Sun 27 Nov 2022 11:01:11 +0000
ROA not before: Sun 27 Nov 2022 11:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 46.3.160.0/22 maxlen: 24
46.3.72.0/21 maxlen: 24
46.3.208.0/21 maxlen: 24
46.3.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:bf:8a:3f:a2:97:4c:39:20:44:5f:3a:e1:f1:d9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 27 11:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e07211e83c96a49d63c8d904fdb0e09b0ddea0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ed:1f:37:05:c5:39:fa:0a:aa:7c:36:6b:0b:
99:a9:60:ef:c7:fc:fe:03:31:36:92:aa:ff:2a:46:
7b:f9:cb:76:e5:0a:26:70:54:83:ae:d8:81:15:cc:
09:14:4f:aa:8d:27:e5:fa:9f:e1:95:5a:b0:31:cb:
24:4d:65:a1:c5:64:0f:7d:7a:62:e1:e0:82:55:e6:
00:f2:c0:2d:13:90:5a:7d:f1:1a:f8:92:55:30:8d:
6f:37:0c:00:ca:ae:de:8d:be:a9:33:68:e0:12:3b:
fb:7e:9c:91:7c:cb:8c:32:a6:55:48:5e:2a:4d:13:
c2:91:9d:0e:77:b6:3c:48:12:a1:79:a2:7b:75:d0:
5b:18:f8:f0:75:dd:61:00:db:52:03:8b:51:67:0e:
20:7c:e9:d4:d0:6c:ce:fb:7d:57:6d:f8:7d:d0:e3:
97:be:cb:62:24:ae:c8:37:d5:20:2d:83:20:52:e2:
24:d6:92:b8:a2:87:42:47:f9:b6:88:9d:bf:79:a8:
41:31:ac:22:99:4d:8f:14:44:83:c2:f7:a1:24:89:
c0:8a:61:ef:fd:09:02:fb:25:59:ac:55:02:71:61:
ea:f1:70:d6:e3:37:18:72:90:0d:26:3c:28:62:57:
d8:5c:89:1c:67:42:d9:de:d9:57:02:9f:e1:e1:cc:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:72:11:E8:3C:96:A4:9D:63:C8:D9:04:FD:B0:E0:9B:0D:DE:A0:D9
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/4HIR6DyWpJ1jyNkE_bDgmw3eoNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.72.0/21
46.3.160.0/22
46.3.208.0/21
46.3.224.0/22
Signature Algorithm: sha256WithRSAEncryption
20:17:c2:e2:26:fc:8f:76:70:b8:6a:c9:fb:a6:5a:5e:41:54:
38:10:5f:9b:a4:5f:a1:e8:96:55:c7:de:64:58:67:a4:1f:33:
18:54:d7:11:5e:65:77:f6:6a:e6:1f:ce:bb:b2:8d:0e:88:c7:
43:42:1e:dd:51:57:8b:34:54:be:71:e1:93:15:95:db:6d:43:
df:63:0e:b0:5a:20:1f:ae:40:43:cc:76:0e:aa:29:cc:95:b8:
7a:0f:df:ec:ce:0d:fb:95:ba:39:c0:67:a6:0b:b2:c0:57:7b:
41:5d:8a:68:d7:73:7f:36:5e:0e:4a:89:e7:02:aa:2a:96:4d:
cd:7a:d7:56:02:54:ec:36:37:61:40:59:69:5d:24:88:fa:56:
f2:ee:c6:b6:5e:02:9c:46:e1:79:1b:a9:48:aa:e4:b3:f3:a6:
a2:e6:a3:7b:5d:e7:de:d5:ff:62:f4:36:a1:b5:f5:23:d4:3a:
45:4f:57:f1:f7:12:0b:83:86:1e:20:c6:c9:e7:2f:ed:03:ce:
b6:f1:c3:d9:8e:7a:10:4e:ba:ed:7d:4b:dc:f6:bb:c8:0b:56:
1f:55:9a:76:69:60:ff:f0:f6:a2:5f:07:13:cc:48:a6:78:ba:
8f:d9:f5:f4:04:7f:5f:4a:07:22:57:60:55:24:da:a6:f8:d3:
d5:37:e1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:35 2023 by rpki-client on console-fra.rpki-client.org