Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/J6eUMAgrVlhvw2Q9BGfAutNWuX0.roa
File: J6eUMAgrVlhvw2Q9BGfAutNWuX0.roa (raw, json)
Hash identifier: nwrAlLmAgnU6rkPFan0PMBUURGRf6QGXZ/ZbOkTrItI=
Subject key identifier: 27:A7:94:30:08:2B:56:58:6F:C3:64:3D:04:67:C0:BA:D3:56:B9:7D
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0183CB20A0C0EBC2036A546D9D71AB67B214
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/J6eUMAgrVlhvw2Q9BGfAutNWuX0.roa
Signing time: Wed 12 Oct 2022 07:37:36 +0000
ROA not before: Wed 12 Oct 2022 07:37:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:20:a0:c0:eb:c2:03:6a:54:6d:9d:71:ab:67:b2:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Oct 12 07:37:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27a79430082b56586fc3643d0467c0bad356b97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a5:ac:b0:39:c2:5c:09:6c:5e:52:bc:dd:34:
0e:1c:76:b2:4b:d8:ec:2e:38:cf:5f:08:26:b8:7d:
07:3c:9e:cd:00:73:0a:d5:6a:80:ed:bf:d8:0c:50:
b6:3a:5f:42:67:6f:45:3c:45:e4:a9:ed:61:78:e6:
99:8a:b6:0a:79:02:65:22:dc:93:38:ad:a3:ef:20:
bd:87:47:06:7c:13:7c:bc:06:a9:8b:e8:b1:45:9d:
4c:4b:3c:1f:f1:82:36:5f:2a:4d:02:98:38:aa:f7:
86:c4:b5:e7:08:ac:de:bb:7f:ad:7b:ce:92:3d:b7:
94:7c:c1:62:5a:0b:42:bf:9f:bc:79:ab:fb:19:c2:
9d:ea:2c:24:1c:3d:71:28:ad:d8:b0:d9:1d:93:f6:
99:54:53:f1:03:65:cf:68:06:77:4a:91:26:76:a2:
69:ea:5e:a3:3c:d0:d1:29:5b:50:73:7b:19:83:53:
51:70:2b:ea:84:ff:2b:04:0d:7e:d5:c1:d2:d9:0c:
74:7e:40:04:70:30:24:2c:bb:1c:35:22:ec:35:12:
b1:5a:94:19:b6:c2:fd:1c:8b:49:9f:17:df:7b:a3:
f7:88:dc:6e:ed:c7:6d:d9:97:28:c9:64:5f:69:77:
1e:b7:d8:33:8e:da:b7:43:f7:b1:b4:59:be:16:96:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A7:94:30:08:2B:56:58:6F:C3:64:3D:04:67:C0:BA:D3:56:B9:7D
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/J6eUMAgrVlhvw2Q9BGfAutNWuX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.156.0/24
77.90.178.0/24
185.230.13.0/24
213.209.138.0/24
213.209.143.0/24
213.209.156.0/23
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
55:a5:7c:66:b6:bf:3d:a3:0b:3f:f1:b8:68:fc:48:27:ac:fa:
a3:8b:1f:40:88:b9:1c:c4:a1:9d:de:7f:c7:96:a2:17:3c:3b:
e3:9e:b2:56:4a:7f:6a:5e:37:4c:9f:de:8b:01:f1:ba:f1:f6:
fb:a2:a9:b4:bd:54:0a:4a:32:5d:d0:14:db:cc:6e:de:10:d9:
ac:07:48:20:18:c4:a0:49:bd:73:92:40:57:99:ee:50:cd:bf:
cf:2c:f7:7b:ff:d3:d4:7a:36:c4:58:89:36:51:4a:19:84:34:
43:08:ec:b6:7e:6e:eb:0d:48:81:82:a6:03:d8:09:69:51:2b:
8a:88:c4:93:97:87:84:5b:da:c6:b1:84:90:98:f8:05:ab:0c:
4f:95:fa:21:57:20:31:0c:97:db:b7:44:fb:46:6f:1d:16:e6:
83:bf:86:07:cd:b8:0d:6b:86:22:44:2b:94:d4:f0:7d:70:c0:
a4:45:74:0c:6c:f3:e3:53:1e:95:34:f9:61:81:82:7e:de:58:
48:cb:1f:da:16:b8:e2:74:2f:09:65:62:9e:13:2c:2d:87:5a:
d6:91:9f:da:a3:3c:ee:a4:f6:1b:c8:50:8b:4a:29:b0:fe:3c:
31:48:37:5e:4d:ec:9e:a6:04:61:77:ad:74:75:f0:86:5a:1d:
2b:2b:b8:4b
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYPLIKDA68IDalRtnXGrZ7IUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIxMDEyMDczNzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2E3OTQzMDA4MmI1NjU4NmZjMzY0M2QwNDY3YzBiYWQzNTZiOTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKWssDnCXAlsXlK83TQOHHayS9js
LjjPXwgmuH0HPJ7NAHMK1WqA7b/YDFC2Ol9CZ29FPEXkqe1heOaZirYKeQJlItyT
OK2j7yC9h0cGfBN8vAapi+ixRZ1MSzwf8YI2XypNApg4qveGxLXnCKzeu3+te86S
PbeUfMFiWgtCv5+8eav7GcKd6iwkHD1xKK3YsNkdk/aZVFPxA2XPaAZ3SpEmdqJp
6l6jPNDRKVtQc3sZg1NRcCvqhP8rBA1+1cHS2Qx0fkAEcDAkLLscNSLsNRKxWpQZ
tsL9HItJnxffe6P3iNxu7cdt2ZcoyWRfaXcet9gzjtq3Q/extFm+FpZRoQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFCenlDAIK1ZYb8NkPQRnwLrTVrl9MB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvSjZlVU1BZ3JWbGh2dzJROUJHZkF1dE5XdVgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjB2BAIAATBwMAwDBAdN
WoADBABNWoIwDAMEAk1ahAMEAU1aiDAMAwQATVqLAwQATVqMMAwDBAFNWo4DBABN
WpQwDAMEAE1amQMEAE1amgMEAE1anAMEAE1asgMEALnmDQMEANXRigMEANXRjwME
AdXRnAMEANXRnzAUBAIAAjAOAwUAKgQpwgMFACoEKccwDQYJKoZIhvcNAQELBQAD
ggEBAFWlfGa2vz2jCz/xuGj8SCes+qOLH0CIuRzEoZ3ef8eWohc8O+OeslZKf2pe
N0yf3osB8brx9vuiqbS9VApKMl3QFNvMbt4Q2awHSCAYxKBJvXOSQFeZ7lDNv88s
93v/09R6NsRYiTZRShmENEMI7LZ+busNSIGCpgPYCWlRK4qIxJOXh4Rb2saxhJCY
+AWrDE+V+iFXIDEMl9u3RPtGbx0W5oO/hgfNuA1rhiJEK5TU8H1wwKRFdAxs8+NT
HpU0+WGBgn7eWEjLH9oWuOJ0LwllYp4TLC2HWtaRn9qjPO6k9hvIUItKKbD+PDFI
N15N7J6mBGF3rXR18IZaHSsruEs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org