Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/EwmeDazY_1XuBNAgZPieY6xXGAU.roa
File: EwmeDazY_1XuBNAgZPieY6xXGAU.roa (raw, json)
Hash identifier: 2riR55tlOATmjQWb689hANAVEz7OP9PYNywQNGa0m5Y=
Subject key identifier: 13:09:9E:0D:AC:D8:FF:55:EE:04:D0:20:64:F8:9E:63:AC:57:18:05
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 06E308B5
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/EwmeDazY_1XuBNAgZPieY6xXGAU.roa
Signing time: Sat 01 Jan 2022 07:00:17 +0000
ROA not before: Sat 01 Jan 2022 07:00:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 213.209.137.0/24 maxlen: 24
213.209.155.0/24 maxlen: 24
77.90.158.0/24 maxlen: 24
77.90.165.0/24 maxlen: 24
77.90.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115542197 (0x6e308b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 07:00:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13099e0dacd8ff55ee04d02064f89e63ac571805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a9:43:17:65:41:4e:d2:64:8b:ca:c6:b0:c9:
b1:50:35:0c:c7:7b:29:08:8e:8a:17:4c:69:cf:38:
42:2e:e5:a1:fc:1d:cc:ac:0d:4f:b6:0c:c7:27:1f:
5e:4d:e7:ec:46:b0:ba:ae:45:83:4c:4d:4e:46:49:
fe:43:5e:85:22:a9:6d:50:c2:d5:2c:41:9b:9f:0b:
63:22:a3:6d:e9:4c:09:b1:07:a0:8d:29:e6:a3:98:
0d:c2:a2:fb:9f:63:21:e9:0f:ce:46:0e:51:21:05:
0b:5b:96:a1:17:a8:48:e4:2f:67:a8:9f:a7:b0:1d:
0d:bf:7b:76:e3:10:de:29:87:55:e8:1c:db:f1:e2:
4c:18:81:ea:cf:cb:f1:c6:59:09:82:83:b8:fd:bb:
7f:10:01:ec:0c:39:b2:a5:06:54:0d:ea:d4:ab:16:
04:f1:10:36:a8:b9:fe:4a:db:65:69:64:3b:a9:43:
b1:d1:a9:ea:b3:3e:47:3b:cf:ae:54:f3:67:fe:f0:
63:21:80:87:8c:96:7d:d3:fe:f0:4e:de:ee:af:c1:
db:75:60:93:df:ae:d7:96:4e:43:61:ad:c4:60:60:
a2:bc:8d:a4:0a:71:ae:86:f0:00:7d:7e:90:49:d4:
36:11:b6:a7:4a:98:cd:e4:d3:26:c7:a5:5b:d3:d2:
0a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:09:9E:0D:AC:D8:FF:55:EE:04:D0:20:64:F8:9E:63:AC:57:18:05
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/EwmeDazY_1XuBNAgZPieY6xXGAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.158.0/24
77.90.165.0/24
77.90.182.0/24
213.209.137.0/24
213.209.155.0/24
Signature Algorithm: sha256WithRSAEncryption
91:72:64:5b:e5:fd:c4:6c:f3:b1:d3:04:e9:da:62:e4:33:95:
22:0f:ef:0f:5e:cd:56:84:f0:4d:fc:e1:3e:9e:06:19:1e:7f:
d2:39:cf:30:e0:cd:38:27:1e:d7:75:d4:5a:e5:02:86:ed:d9:
3a:08:3e:fb:74:ac:19:36:25:de:27:57:3d:68:cb:54:0b:4e:
ab:ca:62:6e:35:84:d9:41:95:3f:3f:fb:b3:11:71:7a:ef:69:
b4:2f:37:ef:6b:d9:5f:ca:ba:72:25:ac:1a:e2:96:3d:4a:e9:
63:7f:7d:a5:2c:47:2a:73:ad:5b:06:4c:c7:a0:47:24:fe:6a:
6c:a8:12:d2:dc:1a:4d:21:f6:2d:ce:cd:d6:51:73:fc:8d:96:
c2:04:c9:e4:76:e0:fd:8c:f3:42:fe:cb:91:ad:1c:56:28:3f:
6c:50:34:97:f1:8c:36:ad:d3:ac:a1:08:05:3a:14:c7:c8:b0:
98:b5:df:1b:bc:3b:d2:96:cb:e2:82:0a:84:af:74:c8:20:dd:
4b:56:d8:ef:e3:ac:84:13:34:12:a0:9f:34:c6:e3:ad:e0:71:
e1:64:f8:00:c0:3a:05:5e:3b:d4:f5:ba:95:69:cf:8f:83:b1:
29:54:1d:38:09:5f:e9:e4:de:48:d0:f5:ea:d2:30:b9:f6:9f:
2e:23:72:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org