Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/WtHEkUU1bR0BTCo4wA8B1Ci-SM4.roa
File: WtHEkUU1bR0BTCo4wA8B1Ci-SM4.roa (raw, json)
Hash identifier: 2LIFssJg+OWPGvV4X9xQbWCOFBa2v8V2ZxgJCFNdDEw=
Subject key identifier: 5A:D1:C4:91:45:35:6D:1D:01:4C:2A:38:C0:0F:01:D4:28:BE:48:CE
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 090A7F94
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/WtHEkUU1bR0BTCo4wA8B1Ci-SM4.roa
Signing time: Wed 02 Mar 2022 10:37:42 +0000
ROA not before: Wed 02 Mar 2022 10:37:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57494
IP address blocks: 46.3.168.0/22 maxlen: 22
46.3.172.0/22 maxlen: 22
46.3.176.0/22 maxlen: 22
46.3.180.0/22 maxlen: 22
46.3.184.0/22 maxlen: 22
46.3.188.0/24 maxlen: 24
46.3.188.0/22 maxlen: 22
46.3.192.0/22 maxlen: 22
46.3.192.0/23 maxlen: 23
46.3.196.0/22 maxlen: 22
80.243.128.0/22 maxlen: 22
80.243.136.0/23 maxlen: 23
46.3.140.0/22 maxlen: 22
80.243.140.0/23 maxlen: 23
46.232.2.0/23 maxlen: 23
46.232.4.0/22 maxlen: 22
46.3.206.0/23 maxlen: 23
46.3.223.0/24 maxlen: 24
46.3.228.0/23 maxlen: 23
149.126.216.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
149.126.220.0/22 maxlen: 22
149.126.232.0/22 maxlen: 22
149.126.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151682964 (0x90a7f94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 2 10:37:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ad1c49145356d1d014c2a38c00f01d428be48ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:cd:d2:d9:39:65:50:e1:b5:3d:d3:ee:25:
3c:dd:e6:0a:5e:81:92:d8:51:e7:97:43:3e:6d:72:
17:08:61:41:d6:00:bf:db:06:be:40:b5:54:00:9f:
ef:4d:4e:46:52:4d:c7:e9:c6:c4:e7:1e:30:72:6e:
ba:ba:9d:ce:eb:d6:58:1b:b8:b8:62:f2:76:4d:82:
a4:1b:44:17:82:22:e5:60:e1:52:ca:9d:20:dc:58:
7b:4c:38:e4:fe:ca:53:f3:17:14:8d:80:b2:79:16:
18:71:7b:96:9f:95:20:bb:db:9e:7a:07:b6:9d:13:
7f:69:79:c5:5f:b0:68:99:70:45:ed:96:c8:8d:34:
8d:6e:1c:bd:9d:85:fd:f4:9c:4d:ef:56:03:8f:f3:
66:e4:af:e9:56:a2:00:bf:50:aa:a2:67:77:bb:c3:
a7:1f:2f:cb:12:26:9d:07:38:50:77:7a:02:3b:39:
cf:f5:16:c2:99:87:4d:c0:e1:d4:db:00:76:5b:f2:
4b:67:32:ed:16:ee:f0:7b:a8:b2:07:a3:a7:36:03:
8c:57:5d:61:ac:12:b8:7f:ec:ba:2d:64:e2:21:04:
fb:01:da:9c:fb:a3:35:97:59:65:f0:97:ea:08:20:
33:74:fb:13:59:ae:8c:c5:1e:06:8f:3a:d2:bf:73:
99:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D1:C4:91:45:35:6D:1D:01:4C:2A:38:C0:0F:01:D4:28:BE:48:CE
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/WtHEkUU1bR0BTCo4wA8B1Ci-SM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.24.0/22
46.3.140.0/22
46.3.168.0-46.3.199.255
46.3.206.0/23
46.3.223.0/24
46.3.228.0/23
46.232.2.0-46.232.7.255
80.243.128.0/22
80.243.136.0/23
80.243.140.0/23
149.126.216.0/21
149.126.232.0/21
Signature Algorithm: sha256WithRSAEncryption
18:dc:22:b9:3b:09:57:24:61:63:4b:62:12:8c:97:1a:66:45:
08:3d:43:ac:ef:54:96:ee:01:4b:b4:1c:86:9d:34:8f:83:c7:
48:99:2c:0f:d3:45:76:6c:92:5e:dc:b9:50:7c:7b:d6:4d:cf:
21:07:89:b4:5f:23:45:0d:3b:c5:27:92:fe:89:23:76:9d:b6:
0f:02:71:8a:8e:e4:1f:48:72:9b:33:1f:1f:9d:09:c5:b8:48:
61:36:30:6d:29:85:f4:e8:62:72:1f:b4:39:a8:e6:2f:f4:dd:
ec:68:9f:e3:1e:91:3d:9a:e2:0c:0c:08:1d:d9:da:20:e6:b7:
8d:89:c6:c2:9d:3f:e3:b1:15:c1:a6:b6:8b:99:51:ea:40:0b:
62:05:be:86:19:a4:d2:3a:ea:86:a0:d1:52:74:dc:34:12:ad:
35:cc:93:59:35:67:71:7f:6f:28:17:14:f0:fe:33:f8:5b:19:
e2:61:19:03:60:94:04:c4:33:76:50:c4:f1:19:58:32:7c:01:
83:54:7b:26:48:4b:9f:ba:03:c1:b8:c7:ed:60:2b:c2:cc:00:
f2:cd:f8:63:2b:02:ec:d6:3d:04:41:39:58:d4:fd:ad:e8:37:
e6:5f:9f:0b:c8:d9:a9:8a:0f:c8:16:bb:81:2d:9f:f7:a1:80:
04:0d:57:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org