Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CmBfM5Y92EKMMvMKOYsea2T8RFg.roa
File: CmBfM5Y92EKMMvMKOYsea2T8RFg.roa (raw, json)
Hash identifier: 40p6/bX1rtPE4p0WlkIVM+g7G0F/xDoszJNv51/CKmg=
Subject key identifier: 0A:60:5F:33:96:3D:D8:42:8C:32:F3:0A:39:8B:1E:6B:64:FC:44:58
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018240D69EBA462F3250BC901C266FFC93EF
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CmBfM5Y92EKMMvMKOYsea2T8RFg.roa
Signing time: Wed 27 Jul 2022 18:06:23 +0000
ROA not before: Wed 27 Jul 2022 18:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 80.243.130.0/23 maxlen: 24
80.243.128.0/21 maxlen: 24
80.243.128.0/23 maxlen: 24
46.3.40.0/21 maxlen: 24
46.232.64.0/21 maxlen: 24
46.232.64.0/22 maxlen: 24
46.3.48.0/21 maxlen: 24
46.3.48.0/20 maxlen: 20
46.3.56.0/21 maxlen: 24
46.3.72.0/21 maxlen: 21
46.3.80.0/21 maxlen: 22
46.3.86.0/23 maxlen: 24
46.232.20.0/22 maxlen: 24
46.3.20.0/22 maxlen: 24
46.3.32.0/21 maxlen: 24
46.3.32.0/19 maxlen: 24
46.3.32.0/20 maxlen: 20
46.3.164.0/22 maxlen: 24
46.3.96.0/20 maxlen: 24
46.3.120.0/21 maxlen: 22
46.3.208.0/21 maxlen: 21
46.3.216.0/22 maxlen: 24
46.3.216.0/21 maxlen: 22
46.3.222.0/24 maxlen: 24
46.3.224.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:d6:9e:ba:46:2f:32:50:bc:90:1c:26:6f:fc:93:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 27 18:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a605f33963dd8428c32f30a398b1e6b64fc4458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:28:d8:cc:48:13:7d:5b:61:b0:77:21:78:0b:
35:20:3b:3a:6f:ca:8e:f8:d6:7f:1b:77:10:81:ce:
f0:1c:5d:38:eb:72:f8:a2:dd:4e:7f:55:4e:f2:ab:
c0:80:ad:eb:67:2b:f6:7e:30:d2:7a:97:9d:3a:aa:
c3:9d:08:cf:63:45:88:62:1f:0a:37:4e:f2:52:92:
ec:a2:b9:a5:eb:22:91:86:58:2d:6d:b2:1c:6b:e4:
23:16:3a:83:d2:90:eb:e8:92:e8:99:e0:ac:17:f9:
2c:b9:67:db:cc:7d:80:fd:de:af:1f:f7:a2:ad:86:
7e:3b:db:48:09:ba:9d:12:dc:db:78:58:5c:e2:9d:
59:0d:ee:e8:25:32:fc:2f:c3:9d:8f:9b:c0:63:25:
1a:29:69:3a:03:3a:b0:39:8e:0a:a4:1f:6f:ce:b4:
3f:34:bb:18:ca:b4:ef:ca:5f:b1:18:de:ee:63:87:
76:f7:3b:10:8e:2c:af:1e:e2:18:25:01:d2:5c:17:
8f:9e:77:18:f7:12:b9:a7:1b:0b:4d:ee:01:a7:f8:
95:b9:7e:33:83:a0:ec:55:fa:b3:8a:eb:2b:1f:13:
64:80:3e:a3:85:b0:08:14:38:fb:6a:df:9c:6e:f8:
c3:4a:9b:c1:6f:74:68:b2:52:f1:5f:a6:54:e7:fa:
d5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:60:5F:33:96:3D:D8:42:8C:32:F3:0A:39:8B:1E:6B:64:FC:44:58
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CmBfM5Y92EKMMvMKOYsea2T8RFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.20.0/22
46.3.32.0/19
46.3.72.0-46.3.87.255
46.3.96.0/20
46.3.120.0/21
46.3.164.0/22
46.3.208.0-46.3.231.255
46.232.20.0/22
46.232.64.0/21
80.243.128.0/21
Signature Algorithm: sha256WithRSAEncryption
86:34:ed:86:7b:8e:36:ad:0e:b5:5c:46:38:18:70:e3:26:72:
30:79:20:dd:2b:fa:b0:75:dd:9a:d9:32:22:1d:cd:29:ab:2a:
16:08:1c:2f:3f:ca:02:af:4e:54:6b:33:51:5c:3f:4b:cc:00:
02:f4:6c:8f:13:10:74:af:f9:8c:db:cd:1a:ba:3f:1c:b4:3f:
ea:d3:37:79:e1:f8:f9:79:92:69:45:b5:9e:fb:91:89:1e:1f:
14:6b:c4:7f:04:6b:34:02:80:1e:a1:5f:d3:aa:21:47:37:96:
0c:d5:b0:a2:3a:60:ba:0e:61:3a:dd:89:e9:34:35:35:c8:d6:
14:ad:77:4f:e1:42:1e:d9:a9:52:c5:20:7d:9a:29:f8:eb:a0:
a3:0f:1e:15:0c:28:18:85:e8:df:83:84:eb:6d:5f:d4:70:f4:
af:c6:8f:37:bd:38:ae:12:9f:b1:95:2e:f2:40:60:3d:e4:92:
ba:1c:85:0b:6b:1f:2b:78:27:f2:c7:d4:1a:c5:32:52:da:2b:
a5:c5:72:ff:94:5b:6e:ef:f3:64:49:ab:84:46:b2:c6:69:e5:
9d:24:3b:4f:fa:a1:ae:99:17:2d:d6:5e:79:61:01:6d:54:c5:
43:94:bc:54:4e:3e:45:d8:67:5a:5d:f2:2b:4c:bc:97:6a:30:
4b:aa:32:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org