Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bI66AwwfsPbQ0egTdgMl7BNNGB8.roa
File: bI66AwwfsPbQ0egTdgMl7BNNGB8.roa (raw, json)
Hash identifier: 9kC+/VFMeLqYkTYu8X4kA6zf8WnX3thKCCE8UY2JJaA=
Subject key identifier: 6C:8E:BA:03:0C:1F:B0:F6:D0:D1:E8:13:76:03:25:EC:13:4D:18:1F
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 09FB5E11
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bI66AwwfsPbQ0egTdgMl7BNNGB8.roa
Signing time: Fri 03 Jun 2022 15:47:20 +0000
ROA not before: Fri 03 Jun 2022 15:47:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.232.96.0/19 maxlen: 19
46.232.0.0/19 maxlen: 19
46.232.0.0/18 maxlen: 18
46.232.0.0/24 maxlen: 24
46.232.0.0/17 maxlen: 17
46.232.16.0/22 maxlen: 22
46.3.16.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
46.3.30.0/24 maxlen: 24
46.3.32.0/20 maxlen: 24
46.3.152.0/22 maxlen: 22
46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.92.0/22 maxlen: 22
46.3.128.0/23 maxlen: 23
46.3.129.0/24 maxlen: 24
46.3.131.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.3.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167468561 (0x9fb5e11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 3 15:47:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c8eba030c1fb0f6d0d1e813760325ec134d181f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:21:79:ba:16:15:96:ff:df:02:85:9b:dc:6a:
7e:55:bb:1c:3d:18:4c:6d:aa:c5:31:80:9c:1c:24:
dc:41:3b:36:66:23:37:36:8f:e3:23:07:a5:bd:1d:
78:fb:81:14:d9:6f:ea:90:d3:6a:b6:07:2a:9d:8f:
16:76:97:f0:ba:e6:36:e2:48:68:06:8c:b1:83:44:
c3:81:30:4d:4b:e0:57:a6:0e:61:1f:ed:e2:81:fe:
d8:64:5b:7c:7b:2d:9a:ae:96:46:83:24:d8:e4:f6:
a0:e5:8e:56:df:1e:10:cb:cd:2a:5b:68:aa:6b:41:
b7:36:27:ce:c3:09:a3:96:65:12:59:98:73:10:17:
a0:32:f0:e4:64:b1:0f:f8:23:e8:9a:62:c3:1b:88:
af:c6:94:e9:5c:8d:56:d6:07:00:ab:b3:fc:61:3a:
4f:fa:f1:bf:69:ea:e3:13:2d:f3:f6:aa:c0:e1:f1:
e6:e9:d3:a2:49:3e:c0:2a:95:06:02:df:93:d7:45:
98:9e:ee:ba:c9:7e:85:74:a3:f1:41:20:e8:15:5f:
0b:33:e6:e1:8e:43:dd:1e:da:bd:41:a3:fe:e8:25:
fb:a5:54:b4:07:b1:08:22:d1:df:1b:a0:b8:ad:65:
fe:19:c7:45:f0:b3:62:05:58:de:a0:de:77:83:cb:
ed:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8E:BA:03:0C:1F:B0:F6:D0:D1:E8:13:76:03:25:EC:13:4D:18:1F
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bI66AwwfsPbQ0egTdgMl7BNNGB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0-46.3.19.255
46.3.24.0/22
46.3.30.0/24
46.3.32.0/20
46.3.64.0-46.3.129.255
46.3.131.0/24
46.3.152.0/22
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/17
Signature Algorithm: sha256WithRSAEncryption
27:ee:3e:83:95:e4:a3:42:07:0e:8f:30:c9:5d:42:c8:60:54:
d6:43:8e:06:3b:34:14:31:cd:f5:86:50:5c:86:46:4a:16:b2:
14:17:35:6c:28:f7:f4:8a:84:b5:74:fb:39:88:24:3e:52:8a:
9e:95:1a:92:13:81:87:41:65:c4:44:9a:d5:e2:f7:76:5b:f7:
54:a4:a8:e3:09:28:47:83:b9:28:73:58:6c:2d:c5:47:6f:57:
19:0e:b3:57:ce:1c:6c:5a:9e:0d:d2:6d:83:74:25:4e:c0:9b:
32:28:71:4c:98:58:6a:c3:a6:aa:54:5b:a0:43:bc:7b:b0:a0:
e7:62:8f:a2:60:8e:e2:5a:63:ee:90:d8:83:3e:60:88:b3:64:
c3:83:85:4c:a9:a9:8d:11:ce:4b:7e:56:e9:83:e4:5f:ff:50:
18:94:67:7d:3d:65:e8:d8:b3:a1:67:66:f7:26:07:33:cf:d9:
24:7c:fb:00:0d:86:87:3c:bf:6e:a3:c4:26:dc:d7:9c:d6:4a:
40:ef:9f:ee:f4:b5:44:14:36:89:f6:26:b0:c2:56:02:79:94:
f1:7b:7f:bb:de:98:d1:6a:3a:a4:9c:78:41:4e:f9:94:bb:d6:
57:c0:21:e7:08:f3:6f:08:b0:d7:d6:bd:13:66:a8:46:27:95:
db:1b:a1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org