Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/AW4Kz0Djvl2XJNN__Mm4y0KO-Ug.roa
File: AW4Kz0Djvl2XJNN__Mm4y0KO-Ug.roa (raw, json)
Hash identifier: 3Mydo7X74OUnmHIUYBv0RvDb6IdFb/o0GCS7SK2w7Rk=
Subject key identifier: 01:6E:0A:CF:40:E3:BE:5D:97:24:D3:7F:FC:C9:B8:CB:42:8E:F9:48
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0181F7C11B16C064799B31B9F9E2F9816E2E
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/AW4Kz0Djvl2XJNN__Mm4y0KO-Ug.roa
Signing time: Wed 13 Jul 2022 13:30:36 +0000
ROA not before: Wed 13 Jul 2022 13:30:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 213.209.131.0/24 maxlen: 24
77.90.159.0/24 maxlen: 24
77.90.177.0/24 maxlen: 24
77.90.186.0/24 maxlen: 24
77.90.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f7:c1:1b:16:c0:64:79:9b:31:b9:f9:e2:f9:81:6e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 13 13:30:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=016e0acf40e3be5d9724d37ffcc9b8cb428ef948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:5a:72:91:b8:47:fb:23:c6:df:d3:7d:59:
e7:04:1c:56:f5:ef:38:24:e3:68:3f:ca:bf:88:ac:
46:1a:ea:d7:4a:f7:fe:7b:df:ea:f8:35:51:b9:84:
9f:69:2b:94:a0:20:ca:ee:54:8f:da:d7:43:24:35:
a4:d0:31:20:86:96:ed:44:79:34:41:1f:65:19:70:
3c:80:c9:38:db:1e:20:4e:90:a7:26:d6:ae:0c:6a:
73:63:0f:de:47:af:98:e6:9f:44:da:f6:60:f6:9c:
db:7a:f4:d9:1b:ad:b9:d7:22:70:c7:a8:9b:f8:31:
4f:2d:4f:6e:14:a9:8f:01:b0:1c:7d:64:70:e8:54:
ec:69:b5:86:b7:8f:5e:16:80:66:6f:97:e4:14:c6:
08:fc:2e:33:28:29:53:c3:3f:d5:47:fc:b3:f1:88:
f0:bb:7a:80:b1:88:55:c4:3d:c4:1f:15:6b:b6:af:
6a:43:d6:38:1f:a1:7f:bb:4b:5d:2f:36:8f:61:14:
25:10:3c:f5:34:f1:8d:08:28:3e:f0:94:bc:88:0d:
3c:94:4c:9f:84:26:36:2b:c4:13:d1:cc:ad:eb:fe:
a2:1e:e6:a5:b6:9c:05:8b:e0:34:00:de:b6:9c:83:
b9:80:f8:75:4e:f7:b6:4b:ff:36:18:35:a7:3c:9e:
b5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6E:0A:CF:40:E3:BE:5D:97:24:D3:7F:FC:C9:B8:CB:42:8E:F9:48
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/AW4Kz0Djvl2XJNN__Mm4y0KO-Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.159.0/24
77.90.177.0/24
77.90.183.0/24
77.90.186.0/24
213.209.131.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9d:96:f5:a5:6f:d3:4d:bd:c6:cb:f3:33:11:78:26:b7:c3:
b1:cd:2b:47:81:5e:56:19:ac:a1:69:3d:b4:44:1b:5c:03:e6:
35:aa:f7:95:1a:8b:34:51:71:52:4f:b6:48:7f:44:f7:c0:9f:
34:d7:f2:83:c1:68:a9:60:52:90:3a:4c:0c:a4:99:62:ae:d7:
dd:6d:a8:16:27:31:39:46:f3:f3:95:ff:1f:e4:f5:c9:f0:b2:
06:bb:e6:d9:9d:34:2b:9c:fb:48:5d:91:16:35:4a:f3:02:a5:
b7:69:78:5d:f0:6c:79:67:e6:7d:0d:f5:a2:7b:56:4c:ab:79:
29:d3:80:28:d1:2b:19:05:c6:f5:89:87:94:36:a3:1f:3e:59:
71:81:82:1f:00:f4:26:53:af:f6:ab:03:a0:0d:4f:a1:b3:09:
8c:d7:b2:ee:e5:90:83:ff:ec:58:1f:3e:8c:e4:ec:bc:7a:9e:
9d:8c:9c:2e:15:48:8c:89:1f:67:fe:09:a0:40:e3:51:8d:02:
ee:78:30:16:1e:8a:5a:22:22:21:88:2b:5d:8e:39:2a:a0:5d:
cb:b3:ad:d3:f1:cd:08:1b:7b:01:30:61:17:f1:eb:37:aa:93:
6c:09:a1:b2:ea:c5:35:55:4c:6b:26:e1:62:29:bb:28:79:e1:
03:53:d2:58
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYH3wRsWwGR5mzG5+eL5gW4uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIwNzEzMTMzMDM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTZlMGFjZjQwZTNiZTVkOTcyNGQzN2ZmY2M5YjhjYjQyOGVmOTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5BacpG4R/sjxt/TfVnnBBxW9e84
JONoP8q/iKxGGurXSvf+e9/q+DVRuYSfaSuUoCDK7lSP2tdDJDWk0DEghpbtRHk0
QR9lGXA8gMk42x4gTpCnJtauDGpzYw/eR6+Y5p9E2vZg9pzbevTZG6251yJwx6ib
+DFPLU9uFKmPAbAcfWRw6FTsabWGt49eFoBmb5fkFMYI/C4zKClTwz/VR/yz8Yjw
u3qAsYhVxD3EHxVrtq9qQ9Y4H6F/u0tdLzaPYRQlEDz1NPGNCCg+8JS8iA08lEyf
hCY2K8QT0cyt6/6iHualtpwFi+A0AN62nIO5gPh1Tve2S/82GDWnPJ61MwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFAFuCs9A475dlyTTf/zJuMtCjvlIMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvQVc0S3owRGp2bDJYSk5OX19NbTR5MEtPLVVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATVqfAwQA
TVqxAwQATVq3AwQATVq6AwQA1dGDMA0GCSqGSIb3DQEBCwUAA4IBAQARnZb1pW/T
Tb3Gy/MzEXgmt8OxzStHgV5WGayhaT20RBtcA+Y1qveVGos0UXFST7ZIf0T3wJ80
1/KDwWipYFKQOkwMpJlirtfdbagWJzE5RvPzlf8f5PXJ8LIGu+bZnTQrnPtIXZEW
NUrzAqW3aXhd8Gx5Z+Z9DfWie1ZMq3kp04Ao0SsZBcb1iYeUNqMfPllxgYIfAPQm
U6/2qwOgDU+hswmM17Lu5ZCD/+xYHz6M5Oy8ep6djJwuFUiMiR9n/gmgQONRjQLu
eDAWHopaIiIhiCtdjjkqoF3Ls63T8c0IG3sBMGEX8es3qpNsCaGy6sU1VUxrJuFi
KbsoeeEDU9JY
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org