Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/4VWldfT28lWOSyasfK487k6SkJ4.roa
File: 4VWldfT28lWOSyasfK487k6SkJ4.roa (raw, json)
Hash identifier: uCtHsbI9Ekt1Ndz+KO22PnCSiBSjLggh7WKyhTlVyHc=
Subject key identifier: E1:55:A5:75:F4:F6:F2:55:8E:4B:26:AC:7C:AE:3C:EE:4E:92:90:9E
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018288669B63A6BA44EC9BCFD720D43ACD03
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/4VWldfT28lWOSyasfK487k6SkJ4.roa
Signing time: Wed 10 Aug 2022 15:36:41 +0000
ROA not before: Wed 10 Aug 2022 15:36:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 77.90.156.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:66:9b:63:a6:ba:44:ec:9b:cf:d7:20:d4:3a:cd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 10 15:36:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e155a575f4f6f2558e4b26ac7cae3cee4e92909e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:02:d3:90:8c:8f:a1:c5:d3:61:bd:9d:61:31:
09:73:45:28:8c:8a:11:aa:c0:75:cb:29:db:13:20:
2b:ac:fd:2a:be:07:11:eb:9d:7f:62:89:11:9e:51:
e5:94:b4:f0:03:ed:db:de:16:a5:0f:0b:4d:0d:e4:
35:1b:8f:33:95:be:c7:11:df:08:77:af:f9:a8:b5:
d4:25:df:cd:21:41:de:6f:81:d2:8d:0c:88:8e:32:
57:93:3f:46:58:56:59:1f:51:ba:02:40:e6:d9:d5:
e8:d3:af:78:17:89:f9:0c:46:cf:cb:69:cd:bb:3f:
2e:fc:6e:45:72:45:9d:ae:85:02:db:c0:e6:3f:da:
46:05:a1:3e:11:37:02:9c:9e:b4:5d:c0:19:30:ae:
b3:7c:32:e3:f0:d5:8d:c7:e4:f5:86:b7:47:d8:d1:
de:65:a8:1a:2a:dd:66:e2:9e:42:8c:b7:dc:ee:a5:
1e:78:09:ac:ca:75:35:e9:df:4b:f2:e0:ec:7d:bd:
2c:71:df:48:24:f9:61:3d:ca:00:13:90:a3:61:3e:
c9:e1:53:d4:1f:4a:a9:f9:97:34:a0:53:f1:83:8c:
74:e1:53:5e:eb:b6:ee:40:93:3b:09:96:6f:cb:cf:
63:b8:43:5a:8c:d8:f5:ad:54:dd:17:ef:4d:f9:eb:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:55:A5:75:F4:F6:F2:55:8E:4B:26:AC:7C:AE:3C:EE:4E:92:90:9E
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/4VWldfT28lWOSyasfK487k6SkJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.156.0/24
77.90.164.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:45:c2:42:63:a6:20:65:46:ee:d2:14:0e:59:87:b0:4b:ea:
30:f4:ee:b6:1f:db:1e:42:d9:7e:d1:9f:f9:77:8b:54:03:42:
0b:cb:df:8b:60:11:59:b4:49:c0:fa:29:91:59:5d:7d:5b:d3:
b0:be:1c:35:e0:71:45:f8:86:20:83:66:97:71:29:42:c8:4a:
67:2f:96:ff:a0:c8:21:24:27:a5:4e:e5:92:e8:6c:84:6d:3f:
f9:7d:fa:88:14:7d:eb:66:40:56:c7:23:c7:48:10:0a:aa:e4:
65:36:93:be:77:09:a4:46:ff:72:00:0e:f0:58:31:83:ec:10:
86:60:3e:80:b4:b2:b3:b9:09:4b:b0:52:ab:fe:72:e0:06:db:
8a:8a:2b:6d:1f:37:99:79:36:12:e9:61:12:85:00:39:92:8b:
13:c2:88:8d:c9:e6:bc:40:dd:c0:6a:90:b9:30:99:78:4e:2d:
23:3b:84:b4:ee:8c:23:ed:09:55:b4:c2:b9:54:1b:52:79:f6:
34:8a:90:36:1f:4a:3e:d0:bb:be:84:15:7a:e9:ab:1d:7e:9d:
9f:4b:da:f8:ee:55:a7:c9:55:55:7b:c4:a3:dc:78:2f:36:00:
79:f2:7b:a3:c8:bf:87:63:1c:79:d4:69:db:c8:ec:12:6b:75:
18:03:15:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:02 2024 by rpki-client on console-fra.rpki-client.org