Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0due233_-DxiltnCzcPuuKGMbKA.roa
File: 0due233_-DxiltnCzcPuuKGMbKA.roa (raw, json)
Hash identifier: sn5uWdl1dNd8EiWF9wOcu24HW/OP/6MBvVKFe+U6fck=
Subject key identifier: D1:DB:9E:DB:7D:FF:F8:3C:62:96:D9:C2:CD:C3:EE:B8:A1:8C:6C:A0
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0182C5799E84EE4434CDC90121F1F75686DB
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0due233_-DxiltnCzcPuuKGMbKA.roa
Signing time: Mon 22 Aug 2022 12:14:18 +0000
ROA not before: Mon 22 Aug 2022 12:14:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.190.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
77.90.149.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.166.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.149.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:79:9e:84:ee:44:34:cd:c9:01:21:f1:f7:56:86:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 22 12:14:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1db9edb7dfff83c6296d9c2cdc3eeb8a18c6ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0f:7a:80:cb:17:33:14:67:a4:48:03:c6:7e:
a2:54:00:6d:de:9b:d0:0c:3a:7b:68:d8:d2:0a:56:
70:c1:25:dd:69:58:fb:a1:75:98:f2:ae:07:47:a4:
b5:f2:56:e5:a4:f5:16:21:6f:ec:b6:65:91:c8:0d:
75:0c:31:1c:71:5f:ad:c8:68:43:06:0c:ef:16:38:
de:a4:45:f0:55:0a:d6:1c:24:6d:91:55:0c:ba:54:
9e:25:f9:68:02:54:14:e9:21:c6:f0:61:4a:67:bd:
ba:72:ee:89:ea:b3:e7:08:38:66:c5:85:cb:3b:4c:
91:3a:5d:c9:5e:ec:13:38:ba:4f:9c:16:96:72:83:
45:f5:63:f1:d4:f8:89:4c:08:b9:ac:27:0a:5c:76:
b1:78:4c:ff:31:48:b3:b1:9f:c1:c5:10:7e:52:97:
4c:ac:01:b8:85:c7:e1:be:5b:77:67:49:37:0f:f4:
d4:10:98:a4:bf:a7:06:b4:6f:f6:18:3c:15:3d:29:
41:51:54:6b:77:96:01:f1:e7:2a:64:22:11:4c:bd:
72:bd:79:b5:9a:fa:d1:93:72:78:50:19:97:47:64:
a6:46:36:a6:94:72:af:f7:06:4d:10:6b:3d:f1:28:
12:4a:25:2d:01:8b:10:5c:3a:f2:b0:dd:18:12:f1:
5c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DB:9E:DB:7D:FF:F8:3C:62:96:D9:C2:CD:C3:EE:B8:A1:8C:6C:A0
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0due233_-DxiltnCzcPuuKGMbKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.150.255
77.90.152.0-77.90.154.255
77.90.157.0/24
77.90.166.0/24
77.90.173.0/24
77.90.179.0/24
77.90.181.0/24
77.90.188.0/24
77.90.190.0/23
185.230.12.0/24
213.209.130.0/24
213.209.133.0-213.209.134.255
213.209.138.0/24
213.209.144.0/23
213.209.147.0/24
213.209.149.0/24
213.209.157.0-213.209.159.255
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
00:33:bd:a7:1e:76:b2:90:b3:6b:65:01:3c:50:71:e1:ff:c7:
8f:06:3b:ab:cc:b5:75:5e:c0:3e:b5:32:31:34:8c:33:f7:40:
24:0d:b9:24:c6:f3:c7:bb:ce:d8:3a:26:fb:f9:5c:7c:76:80:
ae:4b:32:fa:c6:5a:51:68:83:af:ee:fa:2f:16:f2:02:00:53:
78:b6:b8:7b:99:7c:0c:82:e2:d3:ca:7d:75:84:21:98:f0:6b:
35:ad:ec:8a:b8:5a:03:db:e9:ec:4f:d5:a1:9d:38:72:25:ee:
23:07:02:ae:35:5a:54:1b:da:26:27:45:82:d0:c3:d9:76:ec:
3d:61:8e:7f:af:96:00:68:6d:c7:ea:78:15:75:c8:63:d8:78:
01:7a:c5:e4:63:0b:44:0c:02:96:89:f3:c1:bd:f8:24:01:fc:
6b:7a:46:f6:9e:a9:32:8e:30:99:5a:52:9f:99:46:10:00:d7:
64:f5:cc:c7:8e:22:af:13:61:41:18:54:b5:9c:5e:bb:dd:24:
c4:90:fb:24:11:1c:e0:10:98:66:b9:32:3c:2f:3c:de:97:45:
9d:6c:82:47:c2:af:37:e7:60:6c:7c:ca:ba:e1:20:8b:27:62:
e6:6b:a5:47:be:35:60:81:47:31:ad:09:2d:30:6c:37:2c:c8:
bd:da:9d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org