Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aww6-SqHPW2K5eOuCkA5-3MGokI.roa
File: aww6-SqHPW2K5eOuCkA5-3MGokI.roa (raw, json)
Hash identifier: RwC4KCn68aWeTrwquvaYHwUn0yRpiDet4Hsd2VnKM7I=
Subject key identifier: 6B:0C:3A:F9:2A:87:3D:6D:8A:E5:E3:AE:0A:40:39:FB:73:06:A2:42
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0186CD97A78CF634649F453FB7B96C64EA4C
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aww6-SqHPW2K5eOuCkA5-3MGokI.roa
Signing time: Fri 10 Mar 2023 22:15:13 +0000
ROA not before: Fri 10 Mar 2023 22:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.72.0/21 maxlen: 24
46.232.80.0/20 maxlen: 22
46.232.96.0/20 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
149.126.192.0/18 maxlen: 22
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:97:a7:8c:f6:34:64:9f:45:3f:b7:b9:6c:64:ea:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 10 22:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b0c3af92a873d6d8ae5e3ae0a4039fb7306a242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7b:d1:ce:28:cf:ea:aa:fd:0a:38:e9:54:b2:
de:30:b2:66:ef:7a:18:09:cb:e1:5a:57:80:0c:fe:
5f:f4:d9:af:a9:58:54:fb:80:9a:da:15:14:1e:78:
52:ae:45:bd:7f:06:a5:d0:98:ae:10:dc:c6:4e:82:
64:2b:0d:e4:47:11:ed:ef:1e:b0:64:35:51:e0:6e:
48:30:0b:d3:12:68:07:60:1e:9d:81:39:85:05:97:
cd:f9:b8:4d:2b:8a:8b:b6:17:44:a7:94:09:d7:94:
cd:18:37:e5:9f:21:1a:eb:af:c2:08:5c:ff:93:6c:
9a:f2:3f:e5:9b:93:8e:fe:47:82:f3:4e:34:1e:05:
de:c4:06:00:21:7e:f5:db:8b:d5:d3:1a:99:90:01:
4a:60:68:c8:d8:fe:6c:6e:c7:2a:4f:7a:30:63:c8:
27:29:86:16:b7:05:f2:45:4c:95:e8:c8:76:a9:32:
38:f1:ce:e4:d4:26:02:6c:4b:d9:52:ee:6b:47:1d:
a2:02:e4:df:74:0c:22:16:0f:9b:f3:7f:84:e8:cc:
cf:10:4c:78:6f:b6:91:a5:73:d5:47:80:13:50:35:
83:9a:88:5d:3f:66:55:a3:f1:6e:76:fc:59:0c:cd:
59:ed:5e:2b:08:d3:23:31:4a:a9:82:a8:d9:9a:d7:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0C:3A:F9:2A:87:3D:6D:8A:E5:E3:AE:0A:40:39:FB:73:06:A2:42
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aww6-SqHPW2K5eOuCkA5-3MGokI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0-46.3.188.255
46.3.201.0/24
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
46.232.72.0-46.232.127.255
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8a:94:3b:a1:78:5c:24:01:0a:bc:3d:d0:20:e5:da:6a:e3:d4:
70:9b:90:d7:07:49:22:85:eb:bf:65:89:ea:fa:e8:fe:a8:b9:
90:c2:43:c0:33:56:03:0e:4e:77:04:5a:19:3c:fd:d0:98:9e:
62:ad:e2:d9:28:cf:c7:8d:ea:dd:8f:8c:aa:ef:e1:10:93:f8:
67:7a:ec:46:1a:55:d5:25:96:33:04:9b:08:e8:17:d4:7e:6b:
80:4d:3d:50:82:2c:bc:ef:d0:f5:5a:63:24:16:eb:16:81:c1:
7a:4a:98:6a:8b:bf:53:9d:c6:89:f7:66:8d:df:10:db:9c:36:
d7:c1:de:7e:ba:d2:d4:02:96:da:29:4e:94:5e:d9:66:e5:9a:
b1:f7:22:01:c1:42:8f:f1:ab:a7:1e:46:4c:a7:12:ca:f8:73:
1c:65:e5:fc:6a:9e:10:24:fc:4c:35:ce:b9:fa:5c:cd:64:9a:
29:74:cb:d1:00:fc:cd:59:16:72:79:20:d3:48:c0:54:3e:e8:
00:06:07:bb:97:ad:a7:ac:9b:6b:d8:2b:90:29:d1:cd:f7:90:
6e:68:85:77:43:0c:f8:2c:25:5f:b0:60:ff:ce:84:3b:27:a4:
b3:d1:09:7d:c2:87:4d:8c:40:40:d7:e3:14:ca:5d:bd:24:53:
aa:b2:3d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 05:13:24 2025 by rpki-client