Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/yJ-RPEDzOaiqaLrYzs4Wtg62I6g.roa
File: yJ-RPEDzOaiqaLrYzs4Wtg62I6g.roa (raw, json)
Hash identifier: cjRa1T68xHXYupZQaOj04OZ1Qrm6umhlQA7z+Aupnws=
Subject key identifier: C8:9F:91:3C:40:F3:39:A8:AA:68:BA:D8:CE:CE:16:B6:0E:B6:23:A8
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 086EC868
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/yJ-RPEDzOaiqaLrYzs4Wtg62I6g.roa
Signing time: Sat 01 Jan 2022 13:03:07 +0000
ROA not before: Sat 01 Jan 2022 13:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48024
IP address blocks: 46.232.56.0/21 maxlen: 24
46.3.0.0/22 maxlen: 24
46.232.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141477992 (0x86ec868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 1 13:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c89f913c40f339a8aa68bad8cece16b60eb623a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bb:89:b9:de:2d:4f:80:70:95:81:e0:a3:85:
50:1c:8b:ac:80:90:83:7a:9a:7a:7e:3d:98:58:c4:
0b:31:86:c8:77:ff:c8:e0:ad:df:d6:30:ce:bf:f8:
00:0c:29:18:b0:5c:7a:4b:7c:5d:0b:5c:ce:6b:43:
90:d1:51:26:e9:82:2d:92:f0:58:84:17:1b:9a:bb:
54:b0:86:ac:01:97:d3:c5:a7:27:7a:ed:e7:49:ea:
a9:3b:8d:36:8e:dd:65:6c:0a:a2:63:91:f4:b3:5a:
57:d1:36:eb:71:3e:28:c4:a2:3a:24:55:92:f3:9a:
d1:ea:d5:cb:a3:06:81:53:94:48:e6:fd:a4:17:1d:
67:91:e1:41:b0:61:0c:99:72:e1:eb:05:88:10:76:
0e:30:06:d1:7b:95:8e:df:c0:05:ab:26:c3:ab:62:
dc:4c:95:0a:08:72:e5:01:3b:47:3d:63:f0:3c:08:
d7:f5:90:3c:7b:cc:8c:ac:58:75:4c:ce:ae:61:e2:
75:f1:b3:4b:a0:b0:6f:97:c3:23:a5:55:9e:39:34:
e4:0b:d1:cd:05:86:f5:69:29:23:1c:ac:16:82:f1:
30:c3:31:f4:4c:48:9d:a3:e7:b9:8e:14:28:30:c8:
d1:7d:c9:db:e0:99:81:f4:dd:df:e2:ee:a6:90:f8:
b4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9F:91:3C:40:F3:39:A8:AA:68:BA:D8:CE:CE:16:B6:0E:B6:23:A8
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/yJ-RPEDzOaiqaLrYzs4Wtg62I6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.0.0/22
46.232.48.0/20
Signature Algorithm: sha256WithRSAEncryption
0e:b2:8c:81:b9:56:05:b2:ef:da:8b:f6:3e:8e:2c:c8:5d:91:
59:91:d2:1a:1e:de:27:cd:a3:ff:9f:92:2d:99:84:8d:0e:4f:
e2:9a:e1:1e:37:6a:a0:84:d8:bb:11:f6:12:9a:5a:ea:5e:61:
cd:a4:37:1b:e1:e3:73:ad:3a:14:84:8f:c8:73:1f:ad:dd:30:
41:c5:05:02:16:17:a9:dd:dd:d7:cb:7b:99:ea:17:6f:99:c8:
82:4e:6f:14:ee:19:92:53:5c:84:88:cd:24:22:ee:6f:c1:2e:
5f:c7:fd:51:38:7b:d3:49:66:0d:21:9f:d7:6a:e1:63:a8:1c:
be:72:d0:c6:c3:84:f5:ac:f5:1b:b3:d7:94:6b:69:a0:43:dd:
75:07:19:33:20:98:3d:96:71:45:07:d2:47:ac:81:99:52:88:
c1:54:82:43:21:51:fe:0a:57:7d:ea:fd:8f:d9:fb:00:97:62:
22:a1:3e:c0:15:d5:00:ae:f4:e6:9c:eb:2e:fe:c9:35:fd:f6:
b7:8c:ac:33:1b:aa:5f:4e:89:6c:f5:3d:87:b0:df:bb:f7:19:
c8:cc:af:12:3f:c7:83:fa:fe:bb:42:b5:ac:78:fa:2b:65:3c:
f4:c9:ed:6a:cc:f7:8c:ec:35:43:48:6a:e2:a9:0c:48:f7:db:
b6:7c:8a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org