Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LDSmYFdRL-f7WxdbnAHkGnwh4qk.roa
File: LDSmYFdRL-f7WxdbnAHkGnwh4qk.roa (raw, json)
Hash identifier: JibZvWy8MTqyjoZnHvmUquVFm3qOFORj/yWZy/ocVUc=
Subject key identifier: 2C:34:A6:60:57:51:2F:E7:FB:5B:17:5B:9C:01:E4:1A:7C:21:E2:A9
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 094F3034
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LDSmYFdRL-f7WxdbnAHkGnwh4qk.roa
Signing time: Wed 30 Mar 2022 08:30:57 +0000
ROA not before: Wed 30 Mar 2022 08:30:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.232.96.0/19 maxlen: 19
46.232.0.0/19 maxlen: 19
46.232.0.0/18 maxlen: 18
46.232.0.0/24 maxlen: 24
46.232.0.0/17 maxlen: 17
46.232.16.0/22 maxlen: 22
46.3.16.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
46.3.30.0/24 maxlen: 24
46.3.32.0/19 maxlen: 19
46.3.152.0/22 maxlen: 22
46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.92.0/22 maxlen: 22
46.3.116.0/22 maxlen: 22
46.3.128.0/23 maxlen: 23
46.3.131.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.3.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156184628 (0x94f3034)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 30 08:30:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c34a66057512fe7fb5b175b9c01e41a7c21e2a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:80:ca:eb:50:c9:4f:b0:bd:9e:10:ff:82:e9:
0d:87:c9:a4:90:3a:82:f6:0a:52:52:11:01:7d:a0:
4b:47:b1:25:2a:89:93:0e:72:ba:5f:f7:a9:fa:b4:
2d:11:77:68:c6:08:3f:9d:9c:65:70:86:89:ac:7f:
fa:2d:29:66:54:a4:bd:72:d2:27:0b:3e:f0:08:6a:
10:28:af:56:9c:b7:a2:74:b1:bb:f6:a8:32:ad:12:
bc:45:ab:e9:83:d8:73:fc:ef:79:30:7d:2c:a2:8f:
8b:72:d0:d1:64:8f:eb:87:06:8c:d0:58:eb:6a:d3:
c9:2c:a1:58:74:7c:89:11:89:2f:3c:45:87:cf:5a:
82:94:96:e2:01:21:ec:a4:97:1e:4e:4b:e3:5f:d1:
de:7b:06:c3:4b:16:11:fa:3e:bd:53:16:d8:24:13:
60:95:3d:36:3e:5e:22:a3:32:72:c0:77:35:b2:df:
98:9c:90:bb:06:6c:07:b5:10:f1:8c:ab:a4:9b:27:
b3:f1:c4:31:14:03:56:46:40:a9:70:cd:1f:7d:9c:
3d:82:69:74:f5:48:f9:cb:1f:ee:17:38:69:5f:d9:
59:44:e5:e0:97:d8:e5:15:61:1f:16:a6:7e:a7:bc:
1a:36:a0:e0:55:d1:4e:de:eb:91:a3:c1:f3:94:b8:
d1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:34:A6:60:57:51:2F:E7:FB:5B:17:5B:9C:01:E4:1A:7C:21:E2:A9
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LDSmYFdRL-f7WxdbnAHkGnwh4qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0-46.3.19.255
46.3.24.0/22
46.3.30.0/24
46.3.32.0-46.3.129.255
46.3.131.0/24
46.3.152.0/22
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/17
Signature Algorithm: sha256WithRSAEncryption
06:95:8b:39:6e:75:4f:d0:0a:96:46:d1:91:ef:ec:71:a1:f7:
78:a3:f4:dd:36:ab:bc:ec:56:34:3b:9a:a6:8e:c7:da:73:14:
53:ce:b5:57:ed:38:5f:60:ff:f8:de:81:8b:bc:50:b1:fb:f9:
4a:d3:fd:90:a6:c0:78:b2:a3:a8:a1:0e:21:a2:b7:fe:6e:7f:
e0:c5:37:f8:86:37:34:45:33:dd:7f:02:74:d9:1d:b4:63:69:
1a:83:d0:ba:76:c7:a2:96:fd:8f:5f:27:d4:9a:04:91:9e:15:
71:02:b8:4c:ab:00:1f:e1:dc:c5:3d:6b:3c:26:09:56:67:e9:
b5:d6:f6:39:19:8b:b8:4c:3d:18:41:b1:08:88:72:c3:f9:61:
f5:e9:94:45:f3:39:4c:9f:83:46:88:a2:3a:60:d0:bf:a0:16:
9d:08:e3:ae:72:83:d2:97:5e:77:b4:3c:53:43:81:06:21:f6:
a5:06:64:7d:01:c3:9f:f2:12:bb:7d:b5:7d:f5:89:02:99:09:
80:33:62:ba:2b:64:fa:61:a4:5a:b0:26:65:4e:b8:b9:f9:91:
85:c7:cd:1f:05:f1:13:6b:77:dc:d2:23:ef:3a:c9:a1:c6:49:
c9:73:83:fd:aa:26:35:65:b2:22:bd:04:36:c4:a4:8d:0a:e7:
1f:e6:72:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org