Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/IMnKs2yh8zkbsOg7e83ff-g2WgU.roa
File: IMnKs2yh8zkbsOg7e83ff-g2WgU.roa (raw, json)
Hash identifier: QwyubQnHl1RNWEKcUo86yczfFxKWGKgkz4kGEzN5DkU=
Subject key identifier: 20:C9:CA:B3:6C:A1:F3:39:1B:B0:E8:3B:7B:CD:DF:7F:E8:36:5A:05
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 06ED5B5E
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/IMnKs2yh8zkbsOg7e83ff-g2WgU.roa
Signing time: Sat 01 Jan 2022 07:00:24 +0000
ROA not before: Sat 01 Jan 2022 07:00:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 77.90.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116218718 (0x6ed5b5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 07:00:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20c9cab36ca1f3391bb0e83b7bcddf7fe8365a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b3:3c:7d:78:f3:6d:ed:c2:69:0d:0e:3f:03:
fd:d4:c7:e4:2f:a5:2a:f1:57:d6:f4:d2:03:e5:ae:
16:d6:04:d6:dc:a3:a8:60:d3:22:53:fa:5f:34:78:
6a:e7:d2:d4:ca:67:8d:9f:41:1d:73:22:64:9b:62:
8c:58:70:b6:62:82:40:75:c8:0a:2e:e9:fe:29:7a:
01:26:a7:e3:be:34:31:46:a8:3c:d1:dd:a1:93:18:
01:a3:0a:18:f6:43:9c:e6:69:ed:3d:de:d1:50:e2:
b6:a9:1c:31:d6:22:e8:a6:d9:99:ed:55:62:22:f3:
37:91:ac:ab:a3:fa:99:b0:32:ba:59:ec:b5:1f:00:
8b:d7:eb:86:17:66:a8:3b:78:af:e8:4f:c9:14:b1:
bb:93:a7:a7:a3:35:41:8b:9f:15:ff:56:00:46:b8:
44:f6:d6:06:25:78:43:1d:f0:9e:aa:95:af:89:a1:
b1:7d:91:fb:89:6b:70:59:83:8e:00:85:d6:6c:7d:
01:7d:9b:9d:bd:5e:69:9c:3f:fc:51:06:0e:7e:a3:
fd:42:e9:7c:52:1e:5e:19:60:39:09:1e:01:b8:b8:
f5:c2:33:f1:06:c2:27:8e:15:03:d1:f1:b8:67:59:
2d:17:fe:3d:6a:a8:28:b1:fa:ed:e0:94:2b:ab:90:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C9:CA:B3:6C:A1:F3:39:1B:B0:E8:3B:7B:CD:DF:7F:E8:36:5A:05
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/IMnKs2yh8zkbsOg7e83ff-g2WgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b6:d0:bf:16:b1:c1:be:37:36:03:0d:fe:be:6f:5f:79:c9:
a0:09:77:e7:03:6a:f5:17:90:99:84:8b:ef:10:7e:0e:6b:de:
62:f4:e3:b4:1a:93:22:04:2a:95:43:0d:28:45:27:a5:22:32:
06:95:a6:21:0c:a9:4e:01:69:c3:ec:2d:1a:d2:4a:62:4f:4b:
2f:e1:ed:74:4f:0e:22:ee:d5:35:04:34:75:f4:36:d2:ec:12:
5a:eb:e9:bc:91:b7:bc:40:d5:9f:c2:9a:9b:2d:2e:7a:51:b1:
82:39:5f:c9:8e:1a:e5:7c:c1:6c:11:69:05:9c:14:77:aa:07:
99:11:e0:02:96:01:c7:e8:a7:ff:33:dc:92:b5:ee:8d:9c:71:
7a:81:c1:6b:55:bd:9c:3e:ca:08:2c:86:a2:b8:a2:e3:d6:63:
75:75:b2:d8:61:17:c2:c2:13:31:dd:a7:41:3f:b8:f7:ed:2c:
2a:f3:eb:e3:a5:9a:55:a9:97:74:e3:e1:f3:3a:ae:e2:e2:bd:
5c:26:da:e2:68:4a:7c:48:c2:28:85:89:42:b0:e2:2f:8e:be:
66:27:7b:7f:f8:25:be:40:1d:0c:8d:eb:ea:7f:5d:33:c9:8f:
61:28:da:76:aa:9a:30:01:28:c5:ff:33:17:82:c1:4d:cc:fe:
86:5c:92:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org