Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Fy0fGeAcFwsj61MSHo8TvMfby8o.roa
File: Fy0fGeAcFwsj61MSHo8TvMfby8o.roa (raw, json)
Hash identifier: 8iWeEcQctWGPyNzawCQAoD2mR9VPpFzAT+jZGEjGnU4=
Subject key identifier: 17:2D:1F:19:E0:1C:17:0B:23:EB:53:12:1E:8F:13:BC:C7:DB:CB:CA
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01827CEBAE0FC27491392366D0452120AC66
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Fy0fGeAcFwsj61MSHo8TvMfby8o.roa
Signing time: Mon 08 Aug 2022 10:06:36 +0000
ROA not before: Mon 08 Aug 2022 10:06:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 80.243.130.0/23 maxlen: 24
80.243.128.0/23 maxlen: 24
80.243.128.0/21 maxlen: 24
46.3.40.0/21 maxlen: 24
46.232.64.0/21 maxlen: 24
46.232.64.0/22 maxlen: 24
46.3.48.0/21 maxlen: 24
46.3.48.0/20 maxlen: 20
46.3.56.0/21 maxlen: 24
46.3.72.0/21 maxlen: 21
46.3.80.0/21 maxlen: 22
46.3.86.0/23 maxlen: 24
46.232.20.0/22 maxlen: 24
46.3.20.0/22 maxlen: 24
46.3.32.0/21 maxlen: 24
46.3.32.0/19 maxlen: 24
46.3.32.0/20 maxlen: 20
46.3.164.0/22 maxlen: 24
46.3.160.0/22 maxlen: 24
46.3.96.0/20 maxlen: 24
46.3.120.0/21 maxlen: 22
46.3.208.0/21 maxlen: 21
46.3.216.0/22 maxlen: 24
46.3.216.0/21 maxlen: 22
46.3.224.0/21 maxlen: 22
46.3.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:eb:ae:0f:c2:74:91:39:23:66:d0:45:21:20:ac:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Aug 8 10:06:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172d1f19e01c170b23eb53121e8f13bcc7dbcbca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f7:a8:49:66:46:5c:e8:d5:13:0c:c2:b3:42:
40:1c:85:be:91:93:0d:02:50:ce:bc:c5:06:e9:09:
31:1b:2c:79:31:cc:7b:47:d3:2b:e3:a6:e2:4c:70:
12:f9:b4:b8:34:af:69:fc:a5:c7:2b:42:f9:4b:4b:
c7:6a:f6:6b:e7:3d:2f:5d:9c:4b:74:4e:ae:73:14:
d3:0e:af:b1:f4:25:8b:f7:8c:4b:44:22:08:23:4a:
05:19:33:04:91:c8:9b:43:d2:bc:4c:c4:9b:38:ef:
e2:f4:13:1d:73:b4:f3:80:07:ef:07:20:e3:f8:60:
d9:14:ee:98:ab:d0:ce:3a:ad:b1:61:1c:3d:3e:7f:
6b:25:50:31:01:41:87:c7:77:d9:21:0f:ae:e9:f7:
2e:1d:ce:a2:87:88:8a:33:03:e6:bf:fb:d4:31:c3:
c9:bd:5b:88:e6:0a:74:c9:cb:c4:8c:4d:b5:7b:68:
fd:ac:12:88:22:63:4b:09:b9:6e:c4:4b:3b:6a:c8:
55:99:ca:52:2c:4a:dd:0e:b1:cc:23:77:0f:5d:5d:
ed:0b:fe:6e:44:51:bf:96:8e:17:d0:35:b1:8b:f4:
36:45:9e:16:6d:9a:ef:2e:ac:50:a9:aa:18:1f:31:
8f:f8:1e:09:74:8e:04:02:31:3c:b6:67:8f:e9:1c:
40:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2D:1F:19:E0:1C:17:0B:23:EB:53:12:1E:8F:13:BC:C7:DB:CB:CA
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Fy0fGeAcFwsj61MSHo8TvMfby8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.20.0/22
46.3.32.0/19
46.3.72.0-46.3.87.255
46.3.96.0/20
46.3.120.0/21
46.3.160.0/21
46.3.208.0-46.3.231.255
46.232.20.0/22
46.232.64.0/21
80.243.128.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:0e:e7:bb:ba:94:67:35:e4:2c:b2:2c:32:d7:d2:ce:2f:18:
5c:e0:fe:b0:53:80:66:6e:1e:c1:d1:4a:09:e3:0f:22:39:ae:
c7:0b:2e:37:c8:71:db:bb:d2:1d:8d:80:47:28:9b:db:bc:ac:
c7:66:8d:7a:9b:8b:26:f9:ba:bd:e6:19:25:8f:39:ec:3f:50:
66:9f:79:eb:93:f3:63:71:c3:d5:99:18:39:59:e9:f9:7c:7d:
a5:06:e5:eb:6e:84:62:8e:d7:c9:70:3f:86:5f:4a:9c:95:16:
0d:54:49:81:df:23:2f:fd:44:69:1c:0f:96:c6:89:49:cb:d4:
5a:b0:d7:99:4a:5d:c7:80:82:eb:c6:51:92:99:51:e9:b3:9a:
ee:5a:89:72:f5:b9:a4:4d:2d:a1:63:de:7f:2f:ef:d7:b3:6b:
a4:db:d2:9a:48:cf:ca:1b:3e:a5:0f:ca:a8:1b:d0:4d:e9:a6:
cd:e4:09:57:ef:35:9a:cb:d4:4b:21:22:a9:96:32:f7:1c:13:
d0:e7:7c:56:2f:d9:7f:09:81:5a:92:55:94:ea:52:81:1b:e4:
93:cf:30:bc:f7:18:12:2b:3f:d3:69:37:40:ac:6f:4e:0c:46:
45:c4:1e:c0:35:69:a1:c4:e8:91:dd:8e:0c:53:5a:a4:9e:2d:
95:77:16:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org