Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ZHFH-5xjYFsKargxDCjg0Fqcq_o.roa
File: ZHFH-5xjYFsKargxDCjg0Fqcq_o.roa (raw, json)
Hash identifier: w97TiM+tyzIfdkhx0m1jC+QPyk6Rx+Kz/5Cfqea7+38=
Subject key identifier: 64:71:47:FB:9C:63:60:5B:0A:6A:B8:31:0C:28:E0:D0:5A:9C:AB:FA
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018566D60C23587A7E1AC7A6F0F2B803FC4D
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ZHFH-5xjYFsKargxDCjg0Fqcq_o.roa
Signing time: Sat 31 Dec 2022 06:19:41 +0000
ROA not before: Sat 31 Dec 2022 06:19:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 46.232.64.0/21 maxlen: 24
46.3.64.0/22 maxlen: 24
46.232.80.0/20 maxlen: 24
46.3.68.0/22 maxlen: 24
46.3.88.0/22 maxlen: 22
46.3.4.0/22 maxlen: 24
46.3.0.0/16 maxlen: 24
46.232.24.0/21 maxlen: 24
46.3.16.0/22 maxlen: 24
46.232.32.0/20 maxlen: 24
46.3.24.0/22 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.92.0/22 maxlen: 24
46.3.135.0/24 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
149.126.203.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
46.3.224.0/22 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:66:d6:0c:23:58:7a:7e:1a:c7:a6:f0:f2:b8:03:fc:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Dec 31 06:19:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=647147fb9c63605b0a6ab8310c28e0d05a9cabfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e7:8a:ba:6f:a6:7c:42:5e:92:1f:cd:e4:9f:
f7:e0:79:5e:7d:70:b1:62:05:df:9f:6d:f7:36:25:
f3:9e:4d:b6:47:20:ac:c4:80:d2:a0:63:ce:f2:bf:
dc:11:1f:47:d8:b5:58:6c:f2:f2:ee:5f:ba:92:a9:
05:36:ee:76:28:01:82:c7:47:0e:c2:1f:b1:07:cd:
42:c8:ed:6c:25:19:99:f8:55:2a:a3:45:0f:b7:93:
bd:39:2f:25:f0:49:a0:36:ae:f1:ee:3f:11:ad:d5:
a0:e7:a2:b2:54:bc:46:3a:61:27:56:ec:9d:05:2e:
d4:be:ad:12:52:a3:38:56:20:29:86:9b:00:86:29:
15:be:e5:56:7b:92:80:f4:5c:e7:e1:91:8a:f1:96:
85:2a:c2:ce:89:f8:58:f9:9a:52:b1:3e:b5:95:0c:
76:6d:27:5d:34:b3:c7:e7:bc:cb:a9:38:2b:01:4b:
5f:7a:e3:87:eb:9e:8e:1a:e7:84:90:27:18:f7:8c:
4e:4f:96:9a:ee:a6:84:42:46:b1:df:22:4b:9f:07:
ff:f4:9b:46:d9:9d:ac:a3:31:6d:37:9b:af:3c:25:
d5:44:1d:fb:99:04:0f:c2:16:ad:cc:7a:8e:72:69:
9b:a6:de:90:b2:31:c1:2f:d6:e6:65:89:95:c1:9e:
4b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:71:47:FB:9C:63:60:5B:0A:6A:B8:31:0C:28:E0:D0:5A:9C:AB:FA
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/ZHFH-5xjYFsKargxDCjg0Fqcq_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.0.0/16
46.232.24.0-46.232.47.255
46.232.64.0/21
46.232.80.0/20
149.126.200.0/24
149.126.203.0/24
149.126.215.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
54:f9:9e:ce:af:69:70:19:31:6c:50:0c:f2:33:ec:08:02:52:
6e:40:dc:4e:e7:ca:8b:18:11:a0:af:f1:17:46:48:44:01:13:
01:ec:8d:46:1f:57:2e:6e:b7:11:99:c6:2f:aa:2e:96:5a:a8:
37:b2:be:e2:b9:b0:6f:89:34:ab:1d:aa:5e:88:2e:69:50:01:
a9:51:7d:05:ad:b1:4d:16:cc:99:df:a7:31:12:61:18:89:bd:
d0:8d:84:a0:e7:c5:33:92:d8:84:6d:4a:2c:4e:8a:1e:27:05:
5d:57:db:38:a1:2e:6d:3f:b3:e1:a6:88:ec:98:11:4b:51:0b:
f4:62:81:d6:16:dc:79:1a:f3:84:7a:ce:8a:7d:a7:22:5a:9d:
c2:ba:39:3a:ac:1c:95:95:88:f8:c8:23:ca:fb:eb:a5:09:e4:
f6:d8:9a:f4:39:90:92:d5:de:15:d8:37:2b:5a:5a:b3:13:e8:
3a:ec:e8:40:c0:42:2c:2a:95:33:22:d2:6c:5a:34:67:58:78:
df:61:00:3a:79:3b:42:5c:c1:e1:d9:90:1e:45:28:eb:a2:4b:
a9:1f:3d:fa:ad:b6:ce:18:eb:98:17:00:e3:f1:54:1d:bd:4b:
0c:1c:e6:c9:43:4f:8e:86:9b:85:3e:e6:90:87:fb:c6:79:b1:
ba:61:5b:77
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org