Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0w-DJIdGAQ9bWR38bQjsSb_nrHU.roa
File: 0w-DJIdGAQ9bWR38bQjsSb_nrHU.roa (raw, json)
Hash identifier: b2yc2+oxukEfF82i0/DtyHLDwW+U+2QDSrIPad5lhxg=
Subject key identifier: D3:0F:83:24:87:46:01:0F:5B:59:1D:FC:6D:08:EC:49:BF:E7:AC:75
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01823FE7AD97AF397D954CA1F4713FD871E2
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0w-DJIdGAQ9bWR38bQjsSb_nrHU.roa
Signing time: Wed 27 Jul 2022 13:45:24 +0000
ROA not before: Wed 27 Jul 2022 13:45:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.149.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3f:e7:ad:97:af:39:7d:95:4c:a1:f4:71:3f:d8:71:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 27 13:45:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d30f83248746010f5b591dfc6d08ec49bfe7ac75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fc:e2:a7:ce:e1:55:f0:7a:69:85:d9:a9:8a:
da:fb:83:ac:60:2d:d1:a0:ad:08:b2:3b:f5:02:89:
c3:03:06:ac:ab:d1:7e:1b:05:9e:ac:a2:a4:91:58:
36:92:f9:b9:c7:49:a0:ef:7e:fc:97:28:26:57:7e:
29:0c:9c:42:dd:cd:d9:fc:23:e9:fb:3f:12:17:bd:
74:f9:22:76:aa:00:ba:a3:7d:3f:d1:18:db:96:ff:
ce:72:40:6e:53:85:e0:f5:33:d8:50:0e:bd:49:f6:
7a:91:94:3b:cd:26:ae:2a:c8:08:c8:0e:3c:27:48:
70:77:f6:e6:3d:f0:55:0d:b8:9c:68:dd:dc:db:53:
57:fd:2d:21:0d:3e:8b:5c:f1:ac:7a:80:fb:29:20:
e2:bb:48:ee:be:31:9d:f4:88:ea:38:55:3e:47:ed:
63:36:1a:ec:19:fb:95:73:ff:60:b9:72:1b:a2:80:
c6:f0:7d:ce:e4:d9:05:6d:8a:cc:4a:59:4b:df:5d:
eb:dd:a7:38:51:2b:a0:bc:7d:6f:db:ad:af:a2:a8:
bb:d6:eb:10:87:ff:64:d6:a3:61:8c:8b:65:20:34:
f5:d4:17:81:f8:0d:92:6d:3c:8b:a6:8f:31:7f:be:
a5:f5:d3:4c:1a:b7:27:8f:44:f9:dc:4b:de:bf:fc:
8d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0F:83:24:87:46:01:0F:5B:59:1D:FC:6D:08:EC:49:BF:E7:AC:75
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/0w-DJIdGAQ9bWR38bQjsSb_nrHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.149.255
77.90.152.0/24
77.90.154.0/24
77.90.157.0/24
77.90.164.0/24
77.90.173.0/24
77.90.188.0/24
77.90.191.0/24
185.230.12.0/24
213.209.130.0/24
213.209.133.0/24
213.209.138.0/24
213.209.144.0/23
213.209.157.0-213.209.158.255
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
af:8e:07:6f:02:6b:2d:c7:3d:95:bf:56:49:92:cb:47:67:25:
e8:fb:a1:7d:e4:a0:ca:dc:a9:f3:5d:08:8d:f3:8f:56:08:00:
b7:cc:ed:91:d9:b5:66:97:68:ca:f3:a7:9f:d8:e6:18:54:b3:
c7:b2:8f:30:e7:78:c4:87:fa:9d:0b:1e:d7:c9:41:2e:f4:2d:
63:be:ce:de:b1:51:7a:49:65:fe:d6:e2:82:ba:a6:74:68:55:
2f:8b:74:b9:cc:d4:5e:58:63:f8:98:1d:9d:ce:a2:8e:04:81:
4c:f4:52:68:01:4d:b1:a7:3b:7c:e4:57:d4:17:bd:28:fd:70:
f4:55:26:12:78:f0:d3:2d:14:ff:25:67:75:9a:35:8d:73:27:
04:c6:fc:2f:e3:15:b8:20:fd:81:7a:c7:57:99:8f:6b:43:81:
43:fe:ea:eb:a3:9d:a6:7b:f5:0b:18:df:65:26:21:eb:42:42:
e5:62:fc:9c:92:b6:d6:b3:ca:2f:4b:ed:ee:15:b4:59:8f:10:
ee:1f:54:43:79:8d:ee:91:1d:b9:66:e6:6f:53:ba:78:97:c6:
39:92:87:c4:e4:a6:bc:ab:a4:c0:16:9f:fa:9d:1c:9a:fa:1b:
59:43:d8:e2:7c:81:30:cc:cb:c2:48:b4:47:39:8c:c7:3c:7d:
d1:8d:ef:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org