Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BLQe09It5skhF15-7Y9MfuVqxfk.roa
File: BLQe09It5skhF15-7Y9MfuVqxfk.roa (raw, json)
Hash identifier: 8gEUaqWWgNM9PSEVy1yn8fBnCvRTXk5yCijtb/OhSV8=
Subject key identifier: 04:B4:1E:D3:D2:2D:E6:C9:21:17:5E:7E:ED:8F:4C:7E:E5:6A:C5:F9
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 09D00D14
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BLQe09It5skhF15-7Y9MfuVqxfk.roa
Signing time: Sun 15 May 2022 18:30:41 +0000
ROA not before: Sun 15 May 2022 18:30:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 46.3.116.0/22 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164629780 (0x9d00d14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 18:30:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04b41ed3d22de6c921175e7eed8f4c7ee56ac5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:69:e3:1c:85:92:f5:55:82:19:03:5d:0a:
1a:d1:12:18:ae:e8:fe:8b:00:ea:1c:68:03:50:03:
96:67:e2:29:d8:ee:8c:e1:e9:9d:21:5f:a8:0f:12:
05:77:f1:98:74:f9:d0:8d:bb:d0:c7:e0:84:6c:a0:
38:e9:27:2e:7d:53:4e:c7:6d:3c:3d:f3:e4:e4:ed:
5d:1a:ae:ca:9c:91:f3:89:75:e9:f7:ed:d5:7e:2b:
00:c3:f2:15:6c:cc:b8:cb:7b:fd:bf:ac:e2:d6:7c:
13:65:a2:a4:15:8b:71:67:5f:03:88:01:b9:30:dd:
a2:f5:0c:06:97:63:3d:14:50:d7:df:4e:69:2e:98:
2a:b6:04:9f:95:a8:38:75:4d:79:eb:39:7f:e3:9d:
c3:89:1d:88:4b:de:89:46:68:27:fe:8f:7c:24:68:
e1:d4:11:02:8d:d4:16:14:7c:09:6f:49:ed:8c:5c:
5e:6d:b7:58:80:62:80:f6:93:67:31:6d:e3:63:1b:
69:01:b2:fa:0b:5e:76:ed:21:54:2f:0b:03:99:8d:
22:0a:31:d2:00:90:95:c6:3b:13:e8:43:43:3f:fa:
1d:d5:62:54:fc:62:c2:df:61:b6:56:cf:b2:75:77:
a5:d2:e2:80:c7:6c:14:05:9b:12:ca:89:06:5a:94:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B4:1E:D3:D2:2D:E6:C9:21:17:5E:7E:ED:8F:4C:7E:E5:6A:C5:F9
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BLQe09It5skhF15-7Y9MfuVqxfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.116.0-46.3.127.255
46.3.220.0/23
46.3.230.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:e5:cb:99:7a:6a:e5:e3:f2:1b:ae:7d:f4:01:21:ec:1a:d5:
a3:51:87:10:d9:ab:5f:d1:d9:ff:bd:e5:45:7e:21:06:20:d1:
71:f1:d1:df:3f:c6:69:7f:c2:44:10:d4:00:7b:ff:13:7d:4e:
a2:a3:de:61:bb:a2:95:1f:b1:37:dc:0d:1b:d0:9c:97:23:c2:
a3:97:30:19:a6:c6:3b:0a:22:77:75:b3:26:66:5b:66:6e:2f:
b9:d1:8e:ea:4e:02:bb:28:2f:7c:2d:66:fd:4c:79:c4:6e:3f:
66:25:6b:c6:ad:ca:e1:e8:da:71:87:02:33:ce:92:ca:aa:dd:
f5:53:93:1f:2c:28:ff:60:c5:49:45:cd:2d:69:e0:3f:e2:6d:
0f:31:ff:2a:d4:35:b7:6c:cd:4e:74:49:a4:79:37:ab:22:32:
b6:55:36:a0:31:21:c5:c6:6f:f3:e2:8b:29:bf:09:6b:6e:46:
0e:80:bd:a4:cd:25:7e:2a:47:cf:d6:7c:32:fd:9e:3d:9d:d8:
29:1a:a5:3a:30:49:65:61:2e:b8:83:70:0a:bf:cc:2f:f4:3f:
6d:38:7a:03:6a:e9:2a:ae:c7:8c:73:33:73:23:9f:6d:27:51:
3f:2d:9c:46:18:0b:4d:56:20:cf:8c:5d:bf:fd:29:d9:92:f7:
af:05:1a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org