Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/62Rz-DSs9zyD10Zyc91REoIkQtw.roa
File: 62Rz-DSs9zyD10Zyc91REoIkQtw.roa (raw, json)
Hash identifier: 5zqfAz52v0yFRCIa4cm4c/fUAGxByuNMg1QTfEa0b7M=
Subject key identifier: EB:64:73:F8:34:AC:F7:3C:83:D7:46:72:73:DD:51:12:82:24:42:DC
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0890F075
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/62Rz-DSs9zyD10Zyc91REoIkQtw.roa
Signing time: Wed 13 Apr 2022 11:17:56 +0000
ROA not before: Wed 13 Apr 2022 11:17:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143716469 (0x890f075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 13 11:17:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb6473f834acf73c83d7467273dd5112822442dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:50:d5:3c:c6:f1:0a:ad:7a:fc:ca:22:81:00:
52:fe:c3:f7:46:ab:49:aa:f2:8b:68:78:8e:e2:17:
d5:88:4d:47:60:60:e9:78:09:f7:1c:16:0f:8d:63:
34:33:1c:2c:5a:28:af:78:32:74:01:20:7b:77:47:
32:68:65:15:cc:e2:cb:73:ef:9c:c0:27:8f:48:8e:
6c:15:62:e4:76:82:6d:82:9d:e3:02:c2:89:a2:18:
3d:b0:2d:c7:56:69:86:17:ac:23:20:cf:83:c6:7d:
e5:e4:c6:93:db:5a:ea:5a:f1:95:a4:18:2f:f0:22:
60:02:65:6b:4a:b0:89:57:7c:3f:82:0c:73:a3:b7:
bf:94:d3:c9:82:ed:83:e5:ee:9e:d1:2b:ad:0c:2f:
52:e6:ff:64:a2:25:fc:42:e9:9d:ca:2b:99:e3:0d:
c3:41:06:a0:f4:52:99:a4:5e:aa:4a:2a:9f:76:9d:
95:a8:fb:17:51:fb:a2:76:b4:bf:0e:9d:b6:45:91:
c0:e2:fe:8b:83:00:ba:b4:44:ba:a5:bc:76:02:65:
84:75:48:35:f3:69:c5:64:94:a9:0e:f0:10:26:ce:
12:f7:f5:3e:f3:03:c3:b2:3a:0b:57:e8:f2:75:6c:
43:d5:18:12:32:dc:2d:89:1e:0c:92:6e:c4:77:ee:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:64:73:F8:34:AC:F7:3C:83:D7:46:72:73:DD:51:12:82:24:42:DC
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/62Rz-DSs9zyD10Zyc91REoIkQtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.157.0/24
77.90.180.0/24
77.90.184.0/23
185.230.13.0-185.230.14.255
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.146.0/23
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
35:82:83:9f:30:2a:e5:eb:4f:13:82:ea:ba:ae:64:2c:7c:79:
ba:3b:38:e6:40:9c:57:6e:ec:ae:2c:60:ba:57:b9:18:8d:2c:
79:25:2c:f4:b6:eb:6f:d1:a7:74:1a:93:7f:f5:06:c0:14:7c:
74:42:7c:d7:f1:dd:5b:0e:9c:f0:53:0c:cc:53:6a:31:f7:d1:
25:f9:9f:47:54:67:c2:3f:cb:5f:7f:3b:1b:77:6b:30:6d:6b:
d4:35:00:30:61:9b:a1:13:3e:48:ca:11:72:6b:fc:de:f4:a4:
48:db:dd:9e:a9:99:c7:90:10:66:ef:80:10:64:b1:71:c9:78:
53:7e:92:45:73:b2:17:bf:94:8f:64:a5:7b:80:67:11:2b:05:
3c:4d:40:00:f8:46:33:ec:c7:67:84:24:26:b2:a3:fe:7d:a3:
28:4b:4a:6f:c0:67:be:6f:32:0e:65:f8:ce:63:44:7b:f3:d0:
aa:e4:92:09:21:c4:49:a0:ea:e0:74:fa:ef:5b:79:29:c0:22:
93:39:85:d3:a5:af:5d:82:0b:40:f3:43:d7:1f:7e:09:40:8e:
8f:cd:f5:70:80:31:9d:d4:ba:40:49:02:77:40:6f:9b:06:38:
74:d9:bf:ea:6b:c5:b3:ff:62:2a:69:85:d8:00:f3:42:ef:d9:
99:59:29:e8
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgIECJDwdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDQx
MzExMTc1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWI2NDczZjgzNGFj
ZjczYzgzZDc0NjcyNzNkZDUxMTI4MjI0NDJkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVQ1TzG8QqtevzKIoEAUv7D90arSaryi2h4juIX1YhNR2Bg
6XgJ9xwWD41jNDMcLFoor3gydAEge3dHMmhlFcziy3PvnMAnj0iObBVi5HaCbYKd
4wLCiaIYPbAtx1ZphhesIyDPg8Z95eTGk9ta6lrxlaQYL/AiYAJla0qwiVd8P4IM
c6O3v5TTyYLtg+XuntErrQwvUub/ZKIl/ELpncormeMNw0EGoPRSmaReqkoqn3ad
laj7F1H7ona0vw6dtkWRwOL+i4MAurREuqW8dgJlhHVINfNpxWSUqQ7wECbOEvf1
PvMDw7I6C1fo8nVsQ9UYEjLcLYkeDJJuxHfur5sCAwEAAaOCAoQwggKAMB0GA1Ud
DgQWBBTrZHP4NKz3PIPXRnJz3VESgiRC3DAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
LzYyUnotRFNzOXp5RDEwWnljOTFSRW9Ja1F0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
mQYIKwYBBQUHAQcBAf8EgYkwgYYwbgQCAAEwaDAMAwQHTVqAAwQATVqCMAwDBAJN
WoQDBABNWooDBABNWowwDAMEAU1ajgMEAE1alAMEAE1anQMEAE1atAMEAU1auDAM
AwQAueYNAwQAueYOAwQA1dGCAwQA1dGIAwQA1dGKAwQB1dGSMBQEAgACMA4DBQAq
BCnCAwUAKgQpxzANBgkqhkiG9w0BAQsFAAOCAQEANYKDnzAq5etPE4Lquq5kLHx5
ujs45kCcV27srixgule5GI0seSUs9Lbrb9GndBqTf/UGwBR8dEJ81/HdWw6c8FMM
zFNqMffRJfmfR1Rnwj/LX387G3drMG1r1DUAMGGboRM+SMoRcmv83vSkSNvdnqmZ
x5AQZu+AEGSxccl4U36SRXOyF7+Uj2Sle4BnESsFPE1AAPhGM+zHZ4QkJrKj/n2j
KEtKb8Bnvm8yDmX4zmNEe/PQquSSCSHESaDq4HT671t5KcAikzmF06WvXYILQPND
1x9+CUCOj831cIAxndS6QEkCd0BvmwY4dNm/6mvFs/9iKmmF2ADzQu/ZmVkp6A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org