Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5exyABgB0LvoJH2JuGQ1_A0bvIw.roa
File: 5exyABgB0LvoJH2JuGQ1_A0bvIw.roa (raw, json)
Hash identifier: mQRpFQcA2LpQrOElbQtROIP5jRydM/19GjZ6cbebK/U=
Subject key identifier: E5:EC:72:00:18:01:D0:BB:E8:24:7D:89:B8:64:35:FC:0D:1B:BC:8C
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09A77688
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5exyABgB0LvoJH2JuGQ1_A0bvIw.roa
Signing time: Thu 16 Jun 2022 19:17:45 +0000
ROA not before: Thu 16 Jun 2022 19:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161969800 (0x9a77688)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 16 19:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5ec72001801d0bbe8247d89b86435fc0d1bbc8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:49:50:c7:ef:2f:51:ae:43:66:43:e5:12:c1:
4f:2b:a1:3c:cb:54:ce:4a:f2:2c:6b:1e:af:34:cc:
ff:2b:f7:f4:c9:c6:2c:58:9b:29:df:b5:df:c2:65:
e2:45:30:e2:49:eb:97:40:33:06:0f:0b:11:8f:36:
55:04:8c:fb:0c:c3:ca:68:2e:82:d9:bb:dd:8b:20:
d0:90:76:af:02:41:70:ec:ee:1c:55:58:5b:9f:bd:
2c:bb:c7:1e:21:4e:c1:cc:af:a5:1b:ec:b6:d6:8b:
ba:fe:89:3a:6b:72:00:70:52:23:75:b9:9a:9d:49:
d6:e6:33:0d:e4:0e:95:0c:17:7b:8c:d6:39:22:e1:
a4:67:bf:8a:db:58:44:f8:9d:57:cc:35:2d:36:3a:
a6:be:5c:81:4e:8e:6a:fb:f6:10:b1:b9:f4:d2:47:
a5:72:05:69:ff:3c:0b:10:e3:ed:93:8b:0c:90:53:
2f:9c:de:37:c3:24:54:ba:7d:d6:ea:ad:f6:71:b2:
f8:07:5d:37:2f:80:13:5b:b7:d3:c1:c9:0f:38:9f:
13:04:d5:7b:31:42:4a:fa:d2:49:29:37:5d:cf:3d:
c2:f5:2e:98:d2:1f:56:1d:3c:95:7f:3a:38:39:25:
68:02:96:d6:3b:40:33:eb:75:04:eb:88:e4:a7:db:
7f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:EC:72:00:18:01:D0:BB:E8:24:7D:89:B8:64:35:FC:0D:1B:BC:8C
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5exyABgB0LvoJH2JuGQ1_A0bvIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.164.0/24
77.90.179.0/24
77.90.181.0/24
77.90.191.0/24
185.230.15.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.143.0-213.209.144.255
213.209.147.0/24
213.209.158.0/23
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
ab:ee:ca:52:5c:dd:86:c5:c0:17:af:df:92:a9:94:65:62:3a:
1f:a0:b0:34:56:64:d7:ba:0d:7c:7a:70:7f:77:2f:fa:b9:0e:
97:ab:7b:dd:22:ec:6e:09:b6:20:9e:ee:a4:c6:bb:11:50:a2:
97:5b:35:96:70:f0:ad:5f:22:57:c2:94:dd:4a:a9:0f:af:67:
35:00:c4:d5:f9:78:eb:5b:5a:1d:e7:56:7e:49:c5:d3:47:4b:
14:ae:30:f1:b1:60:6e:97:d5:4b:05:a0:12:d5:7c:53:46:bb:
ea:6f:a4:51:29:7e:2b:a8:0e:96:5c:33:5d:87:ff:8f:6e:28:
ee:32:1d:f1:1e:b8:2b:5b:93:3c:ae:19:74:94:4e:26:7a:40:
02:6f:e8:5b:cf:bd:32:df:3e:c5:83:02:05:47:58:56:9e:c0:
58:b1:c6:1a:b8:46:8c:94:b7:37:c6:c1:7e:33:d6:f6:4f:62:
c5:2c:b1:4d:4d:53:0d:05:d3:48:48:86:2b:80:b0:7b:5b:1e:
d4:5d:52:e4:cb:ec:0a:4c:38:2f:55:f2:19:f6:65:75:ce:fc:
f9:5c:55:4d:ee:64:02:a2:1c:a7:f2:b3:08:89:49:7b:09:56:
43:92:a5:e8:56:5a:ce:81:39:b7:b4:5f:f4:f1:7b:b2:43:51:
6a:5f:5b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org