Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OZOExqvkLFCZkM586rMZXbRWUoA.roa
File: OZOExqvkLFCZkM586rMZXbRWUoA.roa (raw, json)
Hash identifier: 0jGVgOXQgjNHknof135iUBrK/6CBBaZyE2V11Tw5z2s=
Subject key identifier: 39:93:84:C6:AB:E4:2C:50:99:90:CE:7C:EA:B3:19:5D:B4:56:52:80
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0184B8C078A121EC706E4B4C092A3E5B2F7F
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OZOExqvkLFCZkM586rMZXbRWUoA.roa
Signing time: Sun 27 Nov 2022 11:02:12 +0000
ROA not before: Sun 27 Nov 2022 11:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399989
IP address blocks: 46.3.157.0/24 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.96.0/20 maxlen: 20
46.3.120.0/21 maxlen: 21
46.3.135.0/24 maxlen: 24
46.3.48.0/20 maxlen: 20
46.232.64.0/21 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
46.232.80.0/20 maxlen: 20
46.3.80.0/21 maxlen: 21
46.3.200.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.3.224.0/21 maxlen: 21
46.232.24.0/21 maxlen: 21
46.232.32.0/20 maxlen: 20
46.3.32.0/20 maxlen: 20
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:c0:78:a1:21:ec:70:6e:4b:4c:09:2a:3e:5b:2f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 27 11:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=399384c6abe42c509990ce7ceab3195db4565280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:39:3b:40:5f:c2:45:33:ff:4e:de:b5:dd:
d5:27:fa:78:ef:1c:9d:44:55:f4:e3:b2:75:a3:a2:
b0:4f:c2:61:48:18:9a:95:dc:c2:d4:40:1d:29:50:
c7:7d:60:4a:f8:23:1b:12:81:49:3e:5d:63:c1:69:
f7:36:d1:ce:bc:fe:6e:81:2e:2b:d1:f7:a1:a3:bf:
da:66:cc:c6:0e:0f:d2:11:13:7c:51:4e:32:5a:4b:
ac:14:cb:19:48:9c:9b:20:3a:0d:14:75:71:41:15:
45:ea:26:3a:17:d3:ad:77:ee:fa:b3:63:3c:1a:90:
13:79:89:e3:ac:ed:33:36:41:97:b5:b7:4b:50:88:
65:45:c4:2d:6a:11:b3:ba:37:d9:1c:c9:8e:ab:99:
a2:cf:4c:61:48:dd:84:ca:2d:c4:34:65:2f:de:93:
5b:35:b3:31:e5:1d:b8:91:71:ad:20:cd:ae:c6:e4:
d9:f3:15:f8:5a:79:f2:68:1b:98:5d:8c:ce:88:15:
ef:e0:2d:87:a2:19:b4:0a:0e:09:ae:59:59:1e:aa:
2f:07:1f:21:23:8b:26:2d:38:2f:3a:01:eb:aa:f8:
c4:43:27:a9:32:c0:1a:a7:06:12:ee:af:3f:ae:76:
74:5c:ba:67:a7:31:60:1e:63:27:08:dc:60:d5:55:
10:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:93:84:C6:AB:E4:2C:50:99:90:CE:7C:EA:B3:19:5D:B4:56:52:80
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OZOExqvkLFCZkM586rMZXbRWUoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.32.0/19
46.3.80.0/21
46.3.96.0/20
46.3.120.0/21
46.3.135.0/24
46.3.156.0/23
46.3.200.0/24
46.3.216.0-46.3.231.255
46.3.250.0/24
46.3.252.0/24
46.232.24.0-46.232.47.255
46.232.64.0/21
46.232.80.0/20
149.126.253.0/24
149.126.255.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d3:7a:4c:61:1b:b8:45:83:29:fe:81:32:f7:f2:cc:0d:56:
5c:df:94:8a:5d:50:84:86:78:1b:36:43:8a:00:7c:20:46:d3:
aa:c5:9e:25:a3:73:a0:af:5b:d2:1c:76:77:de:6c:cc:cb:52:
a0:ba:3f:6d:cb:1d:b9:51:60:fd:d4:89:b8:88:9c:fe:50:65:
34:f4:64:29:32:cf:f7:c5:fb:1e:3e:f9:fd:9f:c6:c2:2d:da:
8e:8b:fa:5d:b1:0d:a8:ca:4f:32:eb:eb:57:18:ec:cd:54:82:
22:83:b0:97:ef:f4:f1:57:d4:44:a9:f6:45:9e:b6:9a:3f:38:
7d:59:b1:c2:bb:61:7c:57:1b:02:95:2b:5a:39:e5:98:a6:85:
ce:c0:c4:22:f9:b9:49:ec:5e:0b:19:71:96:b3:f5:9b:21:5e:
92:66:7e:29:11:4b:05:e1:c4:7e:9a:e1:9e:de:e9:25:09:6f:
34:58:10:d5:71:da:82:b1:22:84:fc:44:ce:09:21:e4:0d:06:
e4:84:9a:2c:63:c3:1d:ad:c8:7f:4a:13:d3:44:c0:c6:8f:e4:
23:51:60:ea:17:6c:ad:a1:67:7c:cc:e2:f4:86:2e:89:cc:65:
c7:89:a2:07:9d:86:d4:5c:98:b2:e3:38:99:5b:fe:ad:93:60:
74:78:bf:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org