Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/9Jo22b67V82Z5DI6JuT_LDZrKKo.roa
File: 9Jo22b67V82Z5DI6JuT_LDZrKKo.roa (raw, json)
Hash identifier: s0Ljtl8aslHRN7ze4ZcRMA1Mqr+u2TaUfJCcdSg/v14=
Subject key identifier: F4:9A:36:D9:BE:BB:57:CD:99:E4:32:3A:26:E4:FF:2C:36:6B:28:AA
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 084AB920
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/9Jo22b67V82Z5DI6JuT_LDZrKKo.roa
Signing time: Thu 24 Mar 2022 07:14:06 +0000
ROA not before: Thu 24 Mar 2022 07:14:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139114784 (0x84ab920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Mar 24 07:14:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f49a36d9bebb57cd99e4323a26e4ff2c366b28aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:06:27:c1:c1:3a:71:af:d3:8a:08:de:8b:fe:
f5:f6:b6:24:21:20:d6:ac:af:e7:da:76:6f:bc:25:
25:cf:21:4e:ab:89:2d:9e:18:d5:57:9b:6d:eb:e6:
09:7a:08:04:ef:ec:9e:f0:09:05:75:d3:ce:1a:b6:
d5:e7:2a:91:b1:4d:46:33:de:54:d4:b5:77:49:4d:
66:22:b5:ea:9f:cc:10:54:15:4e:9a:20:a4:b3:2b:
a7:d9:2d:6b:49:aa:3c:43:1e:cb:7f:ae:45:82:25:
bc:db:e1:00:9b:e8:02:1d:b3:d9:5c:7d:53:f4:66:
46:ed:fd:51:4f:64:ae:52:e1:cb:ef:c5:e9:67:b8:
c7:1e:77:14:37:7f:57:31:bd:9e:6b:9a:30:53:a9:
57:81:76:58:ed:d5:56:dc:43:34:14:9a:00:63:83:
0c:7e:50:3f:aa:67:21:ff:88:2e:46:b3:97:82:4e:
c2:bf:ee:ac:fa:75:05:09:69:b3:7b:ce:62:01:e1:
45:af:72:9e:15:58:ea:67:44:38:61:1c:bf:6c:0b:
15:2d:ca:1d:4e:4b:3a:28:2f:ee:53:6a:9e:00:a5:
5d:91:46:19:b1:03:c3:df:60:bb:5f:d3:ce:be:23:
66:ec:a1:5a:ad:bd:88:d5:97:e8:f7:68:96:96:bd:
0c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9A:36:D9:BE:BB:57:CD:99:E4:32:3A:26:E4:FF:2C:36:6B:28:AA
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/9Jo22b67V82Z5DI6JuT_LDZrKKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.157.0/24
185.230.13.0-185.230.14.255
213.209.130.0/24
213.209.133.0/24
213.209.136.0/24
213.209.138.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
7a:80:65:e3:99:ed:e7:7b:2b:f9:46:cf:ed:78:60:0e:00:5f:
e7:56:95:f0:95:00:f5:d7:79:21:ba:e8:53:a4:6b:ec:59:fe:
5e:ad:34:2d:70:65:8a:81:d6:f0:67:1a:80:87:fd:81:64:c7:
8c:91:b3:6f:07:1f:a5:7e:b1:63:58:86:ef:50:19:0b:4f:30:
57:22:cb:e1:cf:57:5f:49:73:6a:63:7f:70:b4:38:c1:fd:93:
95:ac:b8:df:61:62:1a:b6:fd:06:ba:5a:69:39:38:82:fb:72:
8f:d4:85:d4:aa:f4:e5:b2:b9:06:6f:40:3e:89:5a:d5:cb:d6:
72:d5:26:84:3a:a3:c2:29:13:5e:0e:a5:0a:09:c4:8d:c1:ae:
d4:eb:e9:5f:99:fb:30:f9:dc:16:29:07:d2:10:f3:c3:4f:62:
b9:30:b9:86:bf:37:c6:a8:5b:bb:aa:3c:85:13:52:0e:a4:85:
e4:09:bb:ab:2b:29:9f:da:46:bb:a9:28:2d:74:92:c8:42:70:
83:49:53:ad:c1:ce:a4:67:1d:27:07:91:35:0a:71:9c:d1:b4:
55:87:07:4a:cd:59:96:88:1a:6d:64:c5:9c:fb:18:35:2a:ae:
e3:88:66:7d:f5:cd:43:c0:db:b7:aa:3f:b3:ae:ad:e8:a6:da:
00:97:a7:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:24 2024 by rpki-client on console-ams.rpki-client.org