Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa
File: DCrih7FCdTUU5WDyXgXJLsgfw_M.roa (raw, json)
Hash identifier: h//OXhNTj5nKUVUhLCXk1D9co61qCkUJQsCaMy4fMuE=
Subject key identifier: 0C:2A:E2:87:B1:42:75:35:14:E5:60:F2:5E:05:C9:2E:C8:1F:C3:F3
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09A10B18
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa
Signing time: Wed 15 Jun 2022 10:28:44 +0000
ROA not before: Wed 15 Jun 2022 10:28:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 77.90.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161549080 (0x9a10b18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 15 10:28:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c2ae287b142753514e560f25e05c92ec81fc3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:95:10:09:c9:03:f4:83:2d:b1:b7:5b:f5:63:
3c:a8:da:ac:cf:84:16:63:f0:43:3e:d3:a4:7e:91:
45:eb:c2:84:c3:39:07:cc:02:15:c8:76:c2:90:62:
27:95:ce:2c:85:7a:7e:05:cb:99:b0:b0:2b:2b:f3:
87:37:26:65:94:e7:d3:48:a4:23:67:a0:b3:ab:6f:
d2:86:06:ab:64:1f:8e:38:fa:67:cd:c0:24:96:71:
ed:03:d3:f1:24:ba:1f:28:5e:a2:c2:58:49:c4:95:
15:7e:6f:c1:16:2f:7e:12:29:a1:39:3c:3b:ac:fa:
b0:cd:84:3d:9d:79:60:66:7e:de:5e:e3:37:de:6e:
0b:80:ae:8e:ba:ec:05:79:bb:10:97:d9:40:7c:60:
f5:48:b7:61:c8:bb:a2:82:eb:ce:e2:5a:f7:b8:52:
41:83:dd:fc:4c:2a:1c:ee:23:a6:d9:98:fa:5b:e7:
80:7a:ee:c5:2a:9e:b1:3c:13:50:b6:fd:d9:95:0a:
f8:bc:b9:7f:1f:95:ed:2a:40:86:d6:57:98:eb:a0:
7d:7b:cf:99:eb:6e:f1:a5:e8:57:92:70:74:36:70:
13:1e:ea:0b:64:85:51:2e:5b:b9:0e:fa:29:72:fb:
51:35:eb:74:b5:04:c1:a6:29:87:9b:ef:50:e5:36:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:2A:E2:87:B1:42:75:35:14:E5:60:F2:5E:05:C9:2E:C8:1F:C3:F3
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.183.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d1:f7:97:3e:fb:88:b0:26:dd:f0:90:99:8c:bb:18:e1:ef:
cd:d5:fc:3a:12:8e:08:1d:ea:92:a8:9f:ce:60:b4:71:e8:c9:
1e:a5:fb:43:f3:de:3c:8b:4e:ed:35:7b:9c:c6:0d:7d:1c:30:
11:e6:49:6c:fd:6e:24:da:66:64:c0:3e:1b:a9:c7:d8:82:ed:
24:71:18:b9:ba:22:75:bd:11:65:55:5d:58:05:b9:35:74:b3:
59:ad:29:58:40:ef:78:2c:73:2c:7d:d1:94:6e:98:86:68:ab:
84:a1:6c:d9:63:ad:21:74:77:97:9e:95:07:c8:b4:42:ae:b2:
1d:59:51:73:65:f4:72:2b:91:1b:48:86:86:9f:9e:47:7a:b2:
9c:cd:9c:45:ed:d7:76:09:df:59:df:7f:7d:66:91:2e:a1:8b:
5f:2f:83:5d:cd:cd:97:eb:2c:8d:8c:a4:97:9e:e9:73:bd:03:
e1:6f:63:3d:ee:8d:03:cb:60:ff:d3:44:6f:54:97:a9:9f:22:
1b:dc:52:32:63:a8:f7:0e:68:94:e6:ec:d7:9c:08:12:b2:ea:
ee:8d:85:94:c9:83:8c:dc:3e:1b:d6:00:fc:3d:46:4f:40:9d:
22:5a:cc:e2:a6:0e:a5:8a:be:e4:cb:85:ae:dc:5a:26:f9:40:
fa:18:11:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org