Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rCRoq88ZTYfbyb3sf1_pmPENEJ4.roa
File: rCRoq88ZTYfbyb3sf1_pmPENEJ4.roa (raw, json)
Hash identifier: hLe+l7i+nXh69xAwKMMYfBtxd+ZpiPr5uKqF+T2riMo=
Subject key identifier: AC:24:68:AB:CF:19:4D:87:DB:C9:BD:EC:7F:5F:E9:98:F1:0D:10:9E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 08DEC5F9
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rCRoq88ZTYfbyb3sf1_pmPENEJ4.roa
Signing time: Mon 14 Feb 2022 12:43:44 +0000
ROA not before: Mon 14 Feb 2022 12:43:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.80.0/20 maxlen: 22
46.3.72.0/21 maxlen: 21
46.3.96.0/20 maxlen: 20
46.3.208.0/21 maxlen: 21
46.232.112.0/20 maxlen: 22
149.126.192.0/18 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148817401 (0x8dec5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Feb 14 12:43:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac2468abcf194d87dbc9bdec7f5fe998f10d109e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8b:18:a1:ee:c2:87:26:68:8f:55:ff:b3:0e:
07:b8:01:c8:7a:0f:0d:2d:27:05:3d:ef:b1:3e:65:
46:0f:11:cd:55:5f:6c:13:ac:3a:e8:25:6f:97:df:
c3:b6:8f:3c:41:3f:b5:ae:0d:87:06:f4:0f:db:81:
ed:e1:bb:19:fd:a1:f5:41:1f:40:20:e2:ed:f4:6a:
ca:ae:44:28:66:1c:40:72:4e:1d:31:f4:e7:1c:4a:
12:b2:ae:e2:61:10:5f:d9:da:51:2b:b1:47:65:35:
2a:a8:ac:4f:65:38:6b:e9:c8:6d:9f:bf:e5:65:db:
ad:b2:d8:6d:da:2c:cc:cf:43:13:ed:35:8d:ac:10:
8c:94:48:f9:36:d6:56:af:9e:ca:91:2e:8d:a3:33:
1e:25:ba:33:8d:73:ea:78:cd:18:69:1f:bd:87:ba:
7b:a2:8d:d8:7e:27:c2:43:79:2e:ef:d5:bf:f2:f6:
8d:76:9f:bf:e3:9a:b1:07:d8:d5:3d:6d:4c:7b:87:
c6:68:7d:d6:42:cd:95:c7:c4:86:38:94:5f:c6:70:
e4:d6:81:f7:04:97:49:d4:74:7d:61:97:51:38:08:
51:4b:3f:2f:d4:4d:7d:ba:20:60:aa:17:30:06:28:
6a:13:eb:88:06:f5:2a:04:25:05:a7:19:12:70:3c:
03:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:24:68:AB:CF:19:4D:87:DB:C9:BD:EC:7F:5F:E9:98:F1:0D:10:9E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rCRoq88ZTYfbyb3sf1_pmPENEJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.72.0/21
46.3.96.0/20
46.3.208.0/21
46.232.80.0/20
46.232.112.0/20
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
44:84:4c:e9:ae:d2:15:2f:68:61:7a:92:f1:df:aa:57:0f:72:
f7:a6:a5:cc:d5:95:1b:50:48:ac:68:b0:e5:88:a0:01:13:b2:
08:ef:8d:96:79:2a:e0:c5:96:e6:fe:a2:94:bd:8e:3d:4e:a2:
87:d0:93:8c:40:a2:66:f8:64:13:66:f5:e8:d0:91:57:75:75:
88:ca:69:d9:d5:55:72:71:09:59:0e:60:95:3a:5e:0e:c1:29:
f8:00:ea:5b:36:3d:b2:67:d6:f2:e0:73:d9:6a:9f:5f:e8:bf:
42:99:48:ca:72:85:54:5e:75:24:b2:61:db:e7:d2:07:4d:1f:
aa:de:5c:ca:89:7b:4d:d8:bb:f5:91:89:0e:72:04:1a:3b:49:
41:02:6c:b6:27:2d:d1:fb:b7:1b:f0:1f:1b:37:3e:20:a9:ea:
9b:38:81:92:bc:1e:0f:a0:ac:de:fe:5c:07:bd:34:4d:fb:b9:
ea:b8:de:16:02:2c:d7:f3:29:73:06:93:27:d5:5e:5d:4e:07:
91:18:e1:d7:d1:6f:65:71:80:55:bc:1e:9a:1f:7d:de:06:8e:
42:c1:5c:55:8d:01:ed:ae:75:97:a7:35:3d:89:23:c5:31:d2:
75:92:67:7c:f4:f9:c3:ee:44:d7:e5:db:c5:47:2a:d2:be:3b:
22:dd:70:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org