Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IsB8s9C3R48OMYWUtEcDVzfArME.roa
File: IsB8s9C3R48OMYWUtEcDVzfArME.roa (raw, json)
Hash identifier: 0lVYoFURYn94SZ7Nvu4qTigRRBIqSKKcKxN2rETul5k=
Subject key identifier: 22:C0:7C:B3:D0:B7:47:8F:0E:31:85:94:B4:47:03:57:37:C0:AC:C1
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 09F828FE
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IsB8s9C3R48OMYWUtEcDVzfArME.roa
Signing time: Thu 02 Jun 2022 09:25:20 +0000
ROA not before: Thu 02 Jun 2022 09:25:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.232.96.0/19 maxlen: 19
46.232.0.0/19 maxlen: 19
46.232.0.0/18 maxlen: 18
46.232.0.0/24 maxlen: 24
46.232.0.0/17 maxlen: 17
46.232.16.0/22 maxlen: 22
46.3.16.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
46.3.30.0/24 maxlen: 24
46.3.32.0/19 maxlen: 19
46.3.152.0/22 maxlen: 22
46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.92.0/22 maxlen: 22
46.3.128.0/23 maxlen: 23
46.3.129.0/24 maxlen: 24
46.3.131.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.3.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167258366 (0x9f828fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 2 09:25:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22c07cb3d0b7478f0e318594b447035737c0acc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:a0:b1:2c:31:5e:c6:05:d1:17:43:dc:8d:
f0:86:40:c9:22:d1:9f:99:c5:85:97:62:46:f1:a8:
cc:8d:ce:0e:35:9a:2a:0a:da:74:b4:30:f1:34:cf:
2f:54:5e:c1:38:35:eb:9e:c8:37:9e:a4:2b:51:7b:
bc:5f:78:c0:1e:1d:c5:54:67:67:ed:5a:28:2a:db:
59:16:8d:ef:02:e7:f5:5d:fb:30:ec:ed:28:86:bb:
87:11:14:62:0a:ff:99:6f:d2:0e:52:8c:7c:07:87:
d4:ff:09:9d:15:07:ba:ea:c9:39:a2:1f:99:89:65:
34:96:ff:f0:6e:5f:ec:92:c9:0f:f3:25:c8:f9:cb:
7f:63:5e:dd:ae:4f:6f:93:0a:e6:91:03:d4:e3:81:
22:48:55:c9:90:10:b3:d3:1f:b6:3c:f9:5d:a4:38:
47:a0:60:e9:1f:17:44:cd:e4:5a:78:42:83:a3:7e:
44:44:f2:fd:81:9d:96:fc:01:1f:c4:06:4a:53:3c:
26:09:3b:10:76:d2:16:97:32:9d:44:40:9b:f5:71:
f3:12:b3:f8:1f:26:22:99:87:ef:7e:3a:5d:3d:9d:
8f:fb:9e:04:42:8f:f8:ee:51:23:9f:57:a5:7a:e9:
47:2c:bf:9b:b3:e1:27:2d:01:5f:dc:6e:f4:67:d8:
c8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C0:7C:B3:D0:B7:47:8F:0E:31:85:94:B4:47:03:57:37:C0:AC:C1
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IsB8s9C3R48OMYWUtEcDVzfArME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0-46.3.19.255
46.3.24.0/22
46.3.30.0/24
46.3.32.0-46.3.129.255
46.3.131.0/24
46.3.152.0/22
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/17
Signature Algorithm: sha256WithRSAEncryption
88:d1:9e:f0:fb:35:88:3e:45:30:b5:5b:ed:d2:a6:ad:1d:a5:
80:28:e1:88:a0:85:07:e0:b0:fc:e6:31:8b:55:d9:d4:65:63:
a3:a2:d5:2a:b7:b8:da:d6:5e:bc:5c:c5:bf:ee:b3:ec:73:57:
95:a9:6f:0a:15:5e:dc:e5:a7:1b:e0:2a:ed:98:f4:bb:56:bb:
e3:10:18:92:8c:6c:59:c9:aa:b7:19:7d:32:62:7b:ab:05:ba:
d1:92:26:72:a9:1a:f3:c6:95:47:e1:65:92:df:5b:28:13:aa:
dd:62:78:8d:d7:2a:6b:da:d9:be:56:ee:6a:09:ad:95:1c:d2:
84:b4:4f:00:69:90:7e:d7:5e:0a:0c:fe:99:d8:60:da:3f:8a:
8c:5e:6f:3b:cd:f1:b2:3d:c2:e7:a2:77:18:2f:5f:82:79:67:
a7:30:1f:90:3b:e9:05:a2:a6:88:fb:64:b8:c8:15:1a:e8:bf:
1b:b0:52:ee:da:07:a1:f1:c5:a9:cd:a0:00:63:7e:78:43:c2:
4e:f5:e9:44:6a:cd:32:50:c3:46:be:b2:da:3c:f0:34:dd:e0:
72:3a:87:aa:df:cd:9d:64:a9:be:13:ea:68:9c:9a:bf:26:4b:
cf:b0:5c:b1:9d:c4:4e:16:62:93:80:8e:04:1a:21:a1:04:75:
24:1b:6d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org