Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Hm_n9wGaQTDJ1zzTrFawmMRundE.roa
File: Hm_n9wGaQTDJ1zzTrFawmMRundE.roa (raw, json)
Hash identifier: JcZpdVRMXr0IXbzJIBhvnGXDnt5iYz44AUgccv0n46E=
Subject key identifier: 1E:6F:E7:F7:01:9A:41:30:C9:D7:3C:D3:AC:56:B0:98:C4:6E:9D:D1
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09C367C1
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Hm_n9wGaQTDJ1zzTrFawmMRundE.roa
Signing time: Tue 21 Jun 2022 12:17:46 +0000
ROA not before: Tue 21 Jun 2022 12:17:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 77.90.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163801025 (0x9c367c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 21 12:17:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e6fe7f7019a4130c9d73cd3ac56b098c46e9dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7b:ff:b1:c5:4c:96:13:e0:7b:6a:b2:e0:57:
75:c2:1f:ce:ef:94:a7:c5:ad:92:da:41:a2:f4:7c:
76:f7:36:16:fb:71:78:55:65:50:86:c6:f5:43:99:
c2:0d:bc:42:f7:b1:26:40:57:d3:2d:1c:36:7c:45:
20:ed:4f:a3:3a:ef:ee:8e:e6:4c:7f:ef:38:7f:e2:
3a:99:86:b9:39:ac:25:ad:80:d8:c3:86:c4:4e:b3:
2f:b6:db:32:f7:ae:d7:4e:e6:fb:d8:a5:91:df:e0:
dc:7a:b4:5c:cf:45:a0:3a:81:e2:5a:c6:8c:a5:8f:
5a:36:c8:91:1d:df:d2:b0:57:35:f5:f5:77:12:7f:
85:3e:4b:90:47:d1:85:d1:65:09:4c:74:2e:3e:5d:
e0:d1:ba:e6:d1:79:f1:80:64:45:7c:46:87:9c:83:
b5:a0:4a:ac:2a:30:89:78:f2:30:fe:30:74:6d:6b:
04:c0:9f:9a:62:71:1a:79:94:f8:28:c8:2f:74:9f:
87:65:c4:31:7e:5a:8d:8c:20:f2:8c:26:be:db:28:
2c:39:79:8f:4f:7b:45:4e:03:af:18:48:f3:6e:da:
1b:49:12:c0:0a:d2:9f:da:5e:59:4c:73:33:fc:e2:
ff:07:37:51:fd:27:0a:bf:83:fe:dd:83:9c:48:e0:
2f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6F:E7:F7:01:9A:41:30:C9:D7:3C:D3:AC:56:B0:98:C4:6E:9D:D1
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Hm_n9wGaQTDJ1zzTrFawmMRundE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:67:59:63:c7:45:15:54:38:97:1d:ac:d5:a4:eb:86:1c:36:
a2:ed:85:a7:15:93:25:40:91:b0:5c:19:bd:7c:b8:a7:56:b7:
71:aa:bf:74:2f:08:93:f5:70:80:00:ab:0f:a8:9e:a8:5c:ce:
23:d7:49:bf:72:62:47:6a:78:30:46:01:07:ed:05:bb:5d:7b:
9e:09:77:24:35:8b:31:3a:98:9d:7e:8f:cc:b1:40:bf:30:e6:
42:41:18:61:5e:18:62:61:4d:a9:10:1b:0d:0a:49:24:cf:3b:
d9:28:c7:ef:8a:d0:1c:bf:64:d2:5f:ce:47:76:0b:24:a9:22:
a7:6d:21:39:84:64:60:f8:b4:7c:e4:72:a4:66:23:e2:87:5d:
9d:63:d3:a5:a2:2f:c8:59:ef:88:f7:94:4f:6d:c5:6b:11:d6:
5f:6c:7b:51:30:73:48:71:1d:09:65:18:e4:55:0d:d5:11:5c:
24:fa:1b:da:47:b4:3c:fb:01:0a:c5:9d:39:0c:41:a9:20:43:
50:68:2f:5d:f8:94:32:5c:3e:08:b0:42:48:c8:53:9a:18:25:
cf:32:03:9a:d7:d8:91:aa:41:1c:20:a8:23:a7:10:58:c4:92:
54:7a:e9:90:0d:3f:f0:bc:18:54:cd:25:98:c3:7b:2a:39:ae:
e3:ea:c7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org