Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/81u8PQagyW7tnv3mc3Ba1ywpDYg.roa
File: 81u8PQagyW7tnv3mc3Ba1ywpDYg.roa (raw, json)
Hash identifier: L+9WJ9J1/V0H9KquaSkybksNvRxVlhjf8smb0i+0cGQ=
Subject key identifier: F3:5B:BC:3D:06:A0:C9:6E:ED:9E:FD:E6:73:70:5A:D7:2C:29:0D:88
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0184B8BF8A9D04836B01A33D4D5BCCC007DC
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/81u8PQagyW7tnv3mc3Ba1ywpDYg.roa
Signing time: Sun 27 Nov 2022 11:01:11 +0000
ROA not before: Sun 27 Nov 2022 11:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 80.243.130.0/23 maxlen: 24
80.243.128.0/23 maxlen: 24
80.243.128.0/21 maxlen: 24
46.3.40.0/21 maxlen: 24
46.232.64.0/22 maxlen: 24
46.3.48.0/21 maxlen: 24
46.3.48.0/20 maxlen: 20
46.3.56.0/21 maxlen: 24
46.3.72.0/21 maxlen: 21
46.3.80.0/21 maxlen: 22
46.3.86.0/23 maxlen: 24
46.232.20.0/22 maxlen: 24
46.3.20.0/22 maxlen: 24
46.3.32.0/21 maxlen: 24
46.3.32.0/19 maxlen: 24
46.3.32.0/20 maxlen: 20
46.3.164.0/22 maxlen: 24
46.3.160.0/22 maxlen: 24
46.3.96.0/20 maxlen: 24
46.3.120.0/21 maxlen: 22
46.3.208.0/21 maxlen: 21
46.3.216.0/22 maxlen: 24
46.3.216.0/21 maxlen: 22
46.3.224.0/21 maxlen: 22
46.3.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:bf:8a:9d:04:83:6b:01:a3:3d:4d:5b:cc:c0:07:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 27 11:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f35bbc3d06a0c96eed9efde673705ad72c290d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0d:d5:58:04:35:b6:cb:c7:54:99:2d:65:88:
4a:f3:cf:22:6d:6c:87:27:95:f6:f8:86:73:af:28:
d0:a2:e0:89:03:c4:01:1f:6b:bf:2a:3c:7f:45:93:
b9:90:04:f2:f2:06:ba:3c:d1:15:6e:a8:54:f7:40:
75:2b:69:99:43:12:aa:9f:7a:18:b7:10:40:85:c6:
14:3b:a4:13:c2:91:13:cf:ed:de:c3:0c:fa:31:12:
b2:1c:bf:86:91:29:15:11:b3:44:2c:76:74:00:ec:
8d:84:c5:22:8e:d5:12:cd:41:92:29:79:86:e3:74:
42:54:ac:3f:3a:f4:e0:0f:2a:d9:57:a2:09:09:40:
22:02:4e:fa:ae:72:61:1e:d4:47:20:26:ea:56:83:
9a:a9:c7:57:9d:f1:56:55:c0:df:98:88:88:1f:36:
68:ab:b0:3d:99:6c:a6:b4:5e:77:a8:c8:44:85:82:
6c:31:1a:05:62:29:24:c5:9b:4d:4a:7e:bc:bd:2b:
94:4e:73:0a:0e:29:d5:80:cc:10:35:30:54:6c:06:
31:84:60:e0:37:8a:c9:c1:0c:45:25:4d:c7:20:e0:
2d:4f:b5:ad:79:58:8b:6c:6b:f3:3b:c4:e1:e4:a6:
d3:19:a1:b1:aa:87:e8:b2:3f:f6:44:07:cf:1c:af:
8b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5B:BC:3D:06:A0:C9:6E:ED:9E:FD:E6:73:70:5A:D7:2C:29:0D:88
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/81u8PQagyW7tnv3mc3Ba1ywpDYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.20.0/22
46.3.32.0/19
46.3.72.0-46.3.87.255
46.3.96.0/20
46.3.120.0/21
46.3.160.0/21
46.3.208.0-46.3.231.255
46.232.20.0/22
46.232.64.0/22
80.243.128.0/21
Signature Algorithm: sha256WithRSAEncryption
51:e2:48:b2:5c:cc:35:46:89:59:2a:cf:ad:60:89:31:ba:0d:
4f:50:d7:51:18:c3:50:13:15:55:1e:6d:85:20:c2:4e:1b:63:
42:66:24:84:8e:3e:22:5f:3f:f5:8b:a8:97:af:36:44:c4:28:
0d:7c:b5:fa:a0:32:83:dd:79:29:83:c1:6e:c4:68:08:b4:9e:
30:f7:02:1c:3a:7b:ba:ca:7f:fc:33:c2:2b:2d:7e:52:cc:f2:
a8:2a:8b:75:bf:f6:3c:2e:c6:cc:ee:bb:d5:2c:e2:13:d8:00:
b4:dd:b9:cd:ef:ae:9d:d4:a7:07:0b:6c:6b:27:38:5e:20:7f:
d9:70:ad:77:f0:78:0b:38:71:1e:f2:6b:5b:38:c9:94:08:c2:
1c:14:3e:7a:26:3a:3c:14:fc:1c:e7:2f:ab:1c:b2:64:ba:5f:
aa:63:1b:b6:40:1e:1b:60:84:cb:f0:fc:ad:7f:a8:c3:cc:b0:
23:35:a4:7e:90:03:b0:04:71:11:66:a4:f9:44:84:06:aa:6c:
78:71:f1:5e:2d:61:4d:78:09:79:65:9f:46:91:16:98:eb:5d:
d1:c8:4a:da:f3:33:e3:fc:25:d3:e5:1d:3e:0f:82:8a:f3:6a:
9e:e3:4c:6f:93:eb:7f:7f:79:92:86:30:19:fb:5e:99:9e:b4:
14:f8:01:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org