Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/JW5br_EXEMBK1rv6bPxySlRhGCc.roa
File: JW5br_EXEMBK1rv6bPxySlRhGCc.roa (raw, json)
Hash identifier: NWccgR6TMC7YpP2PmhS94Ib7IPhmhVVfkELBIM1O4M8=
Subject key identifier: 25:6E:5B:AF:F1:17:10:C0:4A:D6:BB:FA:6C:FC:72:4A:54:61:18:27
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0185670867285B9AC14ACFACF3CCE0CD87E1
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/JW5br_EXEMBK1rv6bPxySlRhGCc.roa
Signing time: Sat 31 Dec 2022 07:14:41 +0000
ROA not before: Sat 31 Dec 2022 07:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 46.232.64.0/21 maxlen: 24
46.3.64.0/22 maxlen: 24
46.232.80.0/20 maxlen: 24
46.3.68.0/22 maxlen: 24
46.3.4.0/22 maxlen: 24
46.232.24.0/21 maxlen: 24
46.3.16.0/22 maxlen: 24
46.232.32.0/20 maxlen: 24
46.3.24.0/22 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.92.0/22 maxlen: 24
46.3.135.0/24 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
149.126.203.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
46.3.224.0/22 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:08:67:28:5b:9a:c1:4a:cf:ac:f3:cc:e0:cd:87:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Dec 31 07:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256e5baff11710c04ad6bbfa6cfc724a54611827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:48:ba:27:2e:66:5c:08:53:c0:4f:23:dd:3f:
c3:d6:cd:bb:50:8f:4d:c7:90:82:a4:de:c0:38:b3:
95:95:09:11:fb:b4:e3:d7:14:7d:42:ea:23:04:48:
dd:3b:17:07:81:fb:a7:17:be:97:f8:3a:66:0d:b7:
d1:09:5f:e5:c7:22:79:bc:c5:22:1d:fa:36:b2:be:
77:fa:92:a6:7a:5b:98:a8:ac:96:0a:4e:16:18:cc:
b5:a4:84:6a:be:9f:16:f2:c5:0f:1d:99:b4:8e:c7:
a1:fe:e4:b0:69:18:f3:9b:99:aa:8a:37:a4:c1:f3:
89:16:cb:7a:c5:62:dc:72:96:8b:f4:b4:41:dd:ab:
c7:69:de:f3:25:1c:dc:fe:a2:64:cd:b1:85:18:58:
f9:ab:6f:cb:55:ad:07:c9:0c:1b:57:4e:61:21:ea:
02:ac:79:88:9b:e2:81:77:c8:26:f2:f8:80:6e:cd:
b7:e4:cd:29:65:b1:11:0e:a5:ae:74:8b:c0:4a:d1:
dd:a3:b8:42:88:55:83:85:73:ae:62:7d:3d:4b:de:
73:50:28:93:86:56:69:84:a2:e3:52:d1:b5:83:2e:
19:ef:71:be:48:c3:88:98:83:db:9d:38:80:86:ae:
12:69:c9:03:fd:36:0a:a3:a6:c4:6b:c4:f3:12:51:
64:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6E:5B:AF:F1:17:10:C0:4A:D6:BB:FA:6C:FC:72:4A:54:61:18:27
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/JW5br_EXEMBK1rv6bPxySlRhGCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.64.0/21
46.3.92.0/22
46.3.135.0/24
46.3.156.0/23
46.3.188.0/22
46.3.200.0/24
46.3.224.0/22
46.3.250.0/24
46.3.252.0/24
46.232.24.0-46.232.47.255
46.232.64.0/21
46.232.80.0/20
149.126.200.0/24
149.126.203.0/24
149.126.215.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
94:ed:1d:05:d6:b1:b6:0e:5b:3a:83:38:6f:be:81:1b:a7:59:
0b:c5:08:14:01:09:6f:fa:25:91:89:1d:99:7d:96:db:5b:4f:
6d:4d:90:be:83:ea:ac:66:87:c1:0c:ba:1b:0e:78:a0:82:38:
27:38:e1:b8:47:65:e1:fe:a8:3f:c8:15:a9:58:a6:d6:03:60:
e8:d4:37:87:4c:d3:ec:47:45:b7:83:72:76:9e:15:e0:af:3e:
d7:a4:00:ea:1a:32:08:b5:72:d8:57:aa:62:50:42:fe:58:cc:
16:c6:c6:0a:a3:ee:8f:f3:b9:80:d1:e2:90:0a:5b:7e:7c:1b:
f5:08:a5:f3:e3:43:03:68:c7:98:41:27:29:e4:ae:6a:ab:17:
64:02:30:88:00:30:c8:d7:41:68:c7:a8:f0:a1:f3:32:5d:39:
18:18:39:2f:66:47:59:86:c5:b2:cd:6f:b5:a2:f3:49:4d:aa:
50:a6:d6:9f:7b:b6:d9:d8:00:b2:dd:d5:e1:22:50:e5:68:57:
11:11:ae:bb:52:5e:c9:2c:97:f5:65:cd:90:ea:89:27:0e:d4:
95:cc:17:6d:96:26:d0:7b:4e:96:7b:1e:83:9f:87:2f:13:0e:
7b:e3:dc:6a:d0:f4:f3:7d:b4:51:7f:ad:df:93:2e:49:e5:26:
43:c6:c5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org