Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/y5gs9rdg5b37JNoRdjUdXwed6u0.roa
File: y5gs9rdg5b37JNoRdjUdXwed6u0.roa (raw, json)
Hash identifier: GiEK9BYY2c4oFhNCSc9YVei/M+/FVCOrC+zQzsHryIM=
Subject key identifier: CB:98:2C:F6:B7:60:E5:BD:FB:24:DA:11:76:35:1D:5F:07:9D:EA:ED
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 086DDBB7
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/y5gs9rdg5b37JNoRdjUdXwed6u0.roa
Signing time: Sat 01 Jan 2022 13:03:06 +0000
ROA not before: Sat 01 Jan 2022 13:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38136
IP address blocks: 46.232.120.0/22 maxlen: 24
46.3.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141417399 (0x86ddbb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 1 13:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb982cf6b760e5bdfb24da1176351d5f079deaed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:6c:cf:e3:7c:1b:ae:bf:90:7c:9d:3b:bc:
62:5f:fc:2b:71:35:ff:10:fe:1b:37:9f:30:21:44:
9b:6b:6c:47:94:d0:77:98:56:ab:f7:bd:d7:7a:2f:
c7:7c:45:68:d2:1b:ac:7d:bb:62:1c:3f:bd:f8:25:
da:aa:d2:db:5c:99:bb:c4:dc:83:16:4f:e0:7c:72:
0d:3e:8a:2e:86:ab:7b:f4:d5:8d:3a:37:e2:20:15:
80:85:25:c3:d0:3d:a3:4e:d5:70:b7:85:2b:43:41:
c1:f1:fe:72:bb:06:5c:fe:42:06:de:1d:04:a7:77:
ca:66:6b:62:21:c3:95:9e:6b:69:a7:e3:8e:93:7f:
82:98:e9:67:b5:49:71:5d:c7:59:67:d5:4b:38:ab:
10:50:ff:78:0d:61:17:39:0f:9c:a5:dc:94:cd:fe:
a6:09:cf:66:f6:89:84:20:cf:55:64:80:6f:4f:0e:
c0:18:bd:38:f1:c8:c5:45:f4:bd:06:5f:9f:e6:d4:
f5:60:04:0f:10:2f:e1:6a:42:0a:23:b5:6a:1b:5f:
64:1b:1f:62:80:fe:af:b4:e1:24:66:6f:98:b8:92:
f1:b5:35:37:4a:cc:ae:78:ad:02:fa:c6:99:e7:81:
55:e4:97:13:66:79:af:a4:d2:0b:fa:41:8c:ad:d1:
36:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:98:2C:F6:B7:60:E5:BD:FB:24:DA:11:76:35:1D:5F:07:9D:EA:ED
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/y5gs9rdg5b37JNoRdjUdXwed6u0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.240.0/22
46.232.120.0/22
Signature Algorithm: sha256WithRSAEncryption
99:a8:86:0e:d7:75:c0:a9:a7:9a:62:7c:26:b2:f8:54:67:8c:
6e:d2:da:56:76:b9:9b:3a:04:7f:15:47:ca:71:40:f5:2b:b5:
89:05:16:24:bf:dc:7d:e9:5f:5f:12:4e:0e:67:32:d6:01:02:
a3:9e:4e:5c:64:13:d5:df:eb:fa:70:05:70:22:c0:9c:9c:ca:
03:3f:98:dc:b3:45:e7:a4:21:9f:b1:e7:02:10:e3:93:5d:fe:
0f:c3:a1:2e:0c:70:92:2e:97:89:36:85:38:bb:c9:45:21:26:
59:43:8c:7e:60:af:fe:25:48:82:7f:7a:a6:65:bd:5d:52:1a:
47:3d:a8:91:86:05:79:c4:c4:e2:02:9a:83:82:8f:e4:45:7a:
a5:c2:c6:f9:d6:5e:8f:7f:e5:3d:a5:bd:2c:48:1e:07:38:60:
e5:7b:98:01:46:02:4b:42:18:ff:32:3e:47:df:51:bd:15:8c:
c9:f9:e6:39:19:0d:2a:e9:c8:e2:ee:39:0e:e7:f8:e7:63:5f:
6d:af:f4:ed:b3:a2:99:11:49:8f:20:c4:a9:79:4a:b4:b1:2c:
23:6d:37:12:00:9c:80:d7:12:97:a9:30:7a:87:10:e8:b7:be:
ef:99:f3:f5:be:61:b7:a5:33:51:6e:48:1a:25:2b:9a:b2:80:
4d:f2:6c:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:23:37 2025 by rpki-client