Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/8yLTuf9T-ROJSUM51m_mlXpdppk.roa
File: 8yLTuf9T-ROJSUM51m_mlXpdppk.roa (raw, json)
Hash identifier: epGq9G0SeyEygKFi99lEJ0K3vpKA+TDCc+c5mFAG6rA=
Subject key identifier: F3:22:D3:B9:FF:53:F9:13:89:49:43:39:D6:6F:E6:95:7A:5D:A6:99
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0183A8520DA4C4254E9DBC1B3FEF3C780679
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/8yLTuf9T-ROJSUM51m_mlXpdppk.roa
Signing time: Wed 05 Oct 2022 13:24:53 +0000
ROA not before: Wed 05 Oct 2022 13:24:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a8:52:0d:a4:c4:25:4e:9d:bc:1b:3f:ef:3c:78:06:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Oct 5 13:24:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f322d3b9ff53f91389494339d66fe6957a5da699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:18:23:9c:30:81:f6:ce:e5:cb:62:3c:37:a0:
9f:cb:1a:97:01:98:4d:1a:71:29:fb:61:55:8b:72:
1c:3d:dc:f6:bd:28:d8:96:6f:b2:12:c6:b1:9e:16:
d4:f5:89:92:8a:45:f7:b1:a0:f4:96:e1:47:d5:1d:
40:81:20:61:1e:73:73:c6:ae:8c:43:4a:7b:9d:46:
a2:0d:db:69:b3:ad:9e:87:db:d4:7a:1b:4f:f2:74:
ba:66:c2:59:c3:ef:47:74:08:78:01:2b:c7:2b:d6:
52:42:40:53:9b:50:a4:49:e6:1b:99:59:b8:21:e2:
55:00:6a:4a:d1:ce:3b:e9:c3:20:f1:19:96:24:a0:
3a:77:ae:12:be:5d:88:71:c1:a4:61:4b:05:31:2b:
9a:98:98:70:15:f6:73:e9:9a:86:09:81:98:49:1b:
d1:a6:32:36:18:51:f9:65:39:68:63:65:31:4e:3e:
7a:58:e2:bc:16:c1:4e:46:c7:a3:b2:46:d4:0e:f3:
67:d6:08:82:60:b6:68:86:67:1d:75:f5:2f:89:d5:
8f:65:a5:52:31:41:85:e3:10:47:b6:0f:ef:0b:77:
19:c9:b4:26:0f:6d:28:fe:0f:d0:15:c2:92:60:7e:
eb:8b:29:ab:83:ea:a6:c4:18:10:d0:6e:67:57:43:
b0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:22:D3:B9:FF:53:F9:13:89:49:43:39:D6:6F:E6:95:7A:5D:A6:99
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/8yLTuf9T-ROJSUM51m_mlXpdppk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.178.0/24
185.230.13.0/24
213.209.138.0/24
213.209.143.0/24
213.209.156.0/23
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
13:4d:6b:67:cc:9c:7f:c3:88:69:70:8b:03:2e:1d:db:f3:29:
1d:a4:97:24:2f:a4:a1:c9:d4:16:92:16:81:16:4a:85:0a:5b:
8c:b5:3b:72:c2:c3:e3:12:fd:04:f0:08:8b:cd:17:34:84:3e:
fb:5a:d3:1a:35:e3:77:bd:fe:61:d8:13:ce:2c:30:50:4e:b0:
f0:cf:8c:91:70:3b:38:51:ed:70:08:ec:db:fe:28:39:9f:d0:
32:a6:05:90:07:de:58:e1:09:cb:68:30:49:80:71:4a:3b:2c:
3f:e1:26:a6:c4:d4:f3:28:ef:9d:9b:3a:d5:c6:0b:93:e7:e4:
b6:f8:2a:76:fa:0a:d4:25:1f:b0:3d:67:04:26:a2:6b:c3:bc:
9b:f1:ed:87:b1:4c:fd:2e:d9:19:77:5c:52:d9:4f:44:3b:40:
5a:91:a7:ab:b0:4f:b1:3a:b8:10:a6:9a:7a:a7:4d:c6:13:bb:
60:92:9b:18:6c:e3:73:4f:57:89:61:be:6c:d6:b1:0f:3b:28:
65:2e:56:3d:81:42:c4:42:97:fe:73:84:30:f9:dd:9b:b1:c3:
31:8c:8f:ff:93:5c:ab:00:8f:7a:69:38:60:a6:79:38:da:9e:
51:e6:62:53:db:36:b2:db:d1:b6:2c:06:8a:2c:a2:fc:4c:f8:
19:8e:0c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org