Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Js4rgYh1AE-n93QmLggtRsm5r1Y.roa
File: Js4rgYh1AE-n93QmLggtRsm5r1Y.roa (raw, json)
Hash identifier: Uz4bPqFHcCWKOlIRMfNiEWGGpYhq1RMsfl60X94uDok=
Subject key identifier: 26:CE:2B:81:88:75:00:4F:A7:F7:74:26:2E:08:2D:46:C9:B9:AF:56
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01851F80D9062B1342DB0560C1845DF6BE47
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Js4rgYh1AE-n93QmLggtRsm5r1Y.roa
Signing time: Sat 17 Dec 2022 09:53:35 +0000
ROA not before: Sat 17 Dec 2022 09:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:80:d9:06:2b:13:42:db:05:60:c1:84:5d:f6:be:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Dec 17 09:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26ce2b818875004fa7f774262e082d46c9b9af56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:23:98:6f:12:d3:fb:e0:d4:0e:a2:d1:c7:43:
97:fd:21:29:79:11:93:e3:c5:fd:c9:66:e1:9a:c9:
21:e1:23:3d:93:4c:21:ab:f4:4f:5d:53:64:c1:fb:
20:f8:2b:5e:5e:b2:df:6a:1f:75:7b:cd:e1:11:8c:
0d:1a:c4:29:51:d5:e2:3e:08:bf:ce:20:f7:98:90:
44:12:6f:a0:29:49:66:4c:5b:ce:ba:73:85:c4:68:
98:52:b7:77:0a:13:f7:fb:70:a4:9e:8f:ee:7f:8a:
5d:94:2e:29:21:a0:20:79:9e:61:b6:24:8b:90:1f:
7a:90:ef:86:f1:23:6a:48:73:ec:8a:ae:68:90:e0:
98:34:fb:82:fa:da:4f:4e:bc:37:cc:76:3e:50:98:
0e:ed:78:d4:0f:8c:a5:30:f6:68:64:b6:08:cb:7d:
37:86:2b:6a:9f:87:10:97:1e:fa:ef:47:d7:1f:12:
c0:6e:8d:e0:ab:eb:62:65:51:6f:52:5d:72:8e:9d:
fb:b6:51:d7:8c:fa:72:40:5d:91:95:bb:e4:45:83:
fd:d2:c0:bd:c5:5a:41:49:67:17:df:30:8c:3e:0c:
de:53:57:77:27:8c:d6:65:a3:31:a8:31:40:1e:d7:
5c:73:ec:8c:0e:f7:db:d5:71:9d:7f:49:7d:b0:17:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CE:2B:81:88:75:00:4F:A7:F7:74:26:2E:08:2D:46:C9:B9:AF:56
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Js4rgYh1AE-n93QmLggtRsm5r1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.156.0/24
77.90.184.0/24
185.230.14.0/24
213.209.136.0/24
213.209.138.0/24
213.209.150.0/23
213.209.157.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
86:bd:3a:56:f6:8d:21:6a:c7:5b:d6:1f:6c:47:6b:d6:a3:15:
bd:eb:a0:8f:80:d9:47:2e:7a:8b:bb:b0:98:5c:35:74:98:5f:
f3:f1:15:99:d0:01:70:ac:50:b6:31:2f:3f:d5:c2:32:ef:8c:
8f:87:db:fd:b1:cc:fd:86:c8:e3:95:0f:2a:a7:fb:5b:f1:46:
72:d7:88:54:39:82:08:05:e9:c9:7c:9d:73:63:71:9d:e3:64:
5d:95:12:f9:b4:d8:6d:d5:b2:0e:f3:91:9b:50:bd:24:00:d3:
6a:f6:42:53:f5:51:2b:27:c0:4b:46:b8:bb:65:44:13:55:4e:
a5:23:65:e5:ea:c4:e1:cf:c9:50:f6:34:fb:65:41:ef:26:31:
ce:d4:62:e0:17:d1:5e:bc:67:65:bd:e7:26:10:ed:b1:5f:de:
d6:6d:5f:66:cc:03:0d:7c:50:8b:a2:19:55:e8:fe:1e:8d:59:
aa:d4:a7:c6:ac:84:1b:ac:d3:19:72:e9:1f:b2:41:af:be:ae:
84:3b:bf:ed:07:50:75:2f:16:e4:ae:0e:24:cd:27:39:6e:f7:
f9:2a:cf:44:05:ef:10:3a:96:8b:17:ce:aa:4a:b0:04:df:4d:
9d:5d:ba:84:44:83:e3:e2:af:62:8b:d0:17:04:64:c3:47:8b:
66:1d:04:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org