Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GeJUAG8tpFwsB66K1NsX9JebF3o.roa
File: GeJUAG8tpFwsB66K1NsX9JebF3o.roa (raw, json)
Hash identifier: xdRa1q4q+VGjAb3siVek2vowqCr0fERrtXTnK+Q3IjY=
Subject key identifier: 19:E2:54:00:6F:2D:A4:5C:2C:07:AE:8A:D4:DB:17:F4:97:9B:17:7A
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09978003
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GeJUAG8tpFwsB66K1NsX9JebF3o.roa
Signing time: Mon 13 Jun 2022 13:17:57 +0000
ROA not before: Mon 13 Jun 2022 13:17:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160923651 (0x9978003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 13 13:17:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19e254006f2da45c2c07ae8ad4db17f4979b177a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:94:2e:e0:79:ab:39:db:b0:dc:b0:70:0d:53:
6c:9b:f5:74:c2:a8:6b:e3:35:cc:92:03:dd:8e:2d:
4e:c7:d2:8a:32:c1:b0:14:21:c7:48:63:3a:a8:30:
55:22:b9:3a:0f:60:96:12:01:d4:3d:7a:e3:14:20:
34:ff:fd:fc:d8:0e:00:df:47:06:9b:9a:91:c6:a0:
c4:f4:e6:10:3d:f8:c4:25:e7:b3:7c:35:1d:0e:4b:
0f:c9:47:b4:f2:c3:7e:20:39:39:da:ab:fd:cb:a2:
25:81:35:a1:70:b3:1d:56:87:68:2c:af:84:d9:d8:
ee:ca:10:11:4c:08:8b:eb:8e:4b:62:79:46:a7:32:
2a:16:9a:59:11:a9:22:64:19:53:be:55:8c:f6:32:
56:f2:72:d1:79:24:44:32:e8:e1:1b:7b:58:33:60:
d2:27:10:68:e2:40:39:14:7e:50:05:cb:d3:da:c9:
42:60:95:63:f2:a9:81:7d:ae:d7:e4:e3:14:9c:5f:
91:2f:b0:8c:54:d6:05:72:7f:14:65:98:c7:aa:d7:
79:4f:89:4d:f0:c3:5c:44:23:2d:6e:af:75:ad:e3:
e7:ac:37:b9:5b:f6:b7:fa:b3:34:6b:94:1a:da:39:
d5:68:a5:4d:f0:20:6d:a5:45:b2:08:64:0e:70:c8:
46:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E2:54:00:6F:2D:A4:5C:2C:07:AE:8A:D4:DB:17:F4:97:9B:17:7A
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GeJUAG8tpFwsB66K1NsX9JebF3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.164.0/24
77.90.179.0/24
77.90.181.0/24
77.90.191.0/24
185.230.15.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.143.0-213.209.144.255
213.209.147.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
71:06:55:76:1c:3a:1d:fd:6e:ca:47:fe:2d:db:67:ba:3b:f1:
8e:a5:e2:11:cb:dd:15:3b:53:19:ea:47:ae:7b:ed:b6:ef:39:
84:93:60:a3:53:e8:8c:8e:87:37:3b:42:35:30:e4:23:8e:38:
a0:f6:f7:22:35:df:53:fb:ea:83:94:7b:9d:e5:35:56:f1:fc:
a2:a9:70:d1:b1:ad:f6:ea:b8:8d:f6:97:2a:87:6e:ad:00:42:
39:c5:02:62:3f:44:e6:6e:9f:d4:ad:b5:4d:3a:9b:97:78:20:
7a:f0:d9:46:7e:28:71:3b:5e:41:3e:2b:20:c1:c5:11:81:c5:
09:bc:93:07:e7:2c:b5:d5:56:e0:22:54:af:c8:e5:9e:43:93:
5c:77:24:17:57:a6:59:9c:e9:89:8a:58:47:5a:46:22:99:7b:
d4:e8:aa:2d:46:50:26:8b:c3:bd:67:5d:af:71:7e:c7:27:83:
6c:25:1d:c0:87:fa:c1:05:10:78:d4:9b:62:22:99:ab:28:21:
b6:a3:3b:ea:c7:a7:c1:13:38:a9:be:80:7c:90:23:45:bf:d7:
25:12:ec:3d:65:37:4f:2b:8d:33:23:8d:5e:2c:5c:d9:37:0a:
ab:46:d7:a4:fe:e6:d3:80:62:c0:c8:fa:58:be:22:fc:26:ca:
15:09:ef:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org