Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/JzlzGpj82Zpu7sBedUCfrG5OTlg.roa
File: JzlzGpj82Zpu7sBedUCfrG5OTlg.roa (raw, json)
Hash identifier: 2BMEhn3qUB/hvuY421K92IshIq37Ud+DemcOx1ItqE4=
Subject key identifier: 27:39:73:1A:98:FC:D9:9A:6E:EE:C0:5E:75:40:9F:AC:6E:4E:4E:58
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018450F7882AE879AC3078E2E02C5074A773
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/JzlzGpj82Zpu7sBedUCfrG5OTlg.roa
Signing time: Mon 07 Nov 2022 07:21:50 +0000
ROA not before: Mon 07 Nov 2022 07:21:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:50:f7:88:2a:e8:79:ac:30:78:e2:e0:2c:50:74:a7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Nov 7 07:21:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2739731a98fcd99a6eeec05e75409fac6e4e4e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c3:20:66:f3:ff:6c:3b:a2:4a:ad:ee:7e:53:
c8:05:60:77:71:3e:77:c4:dc:b1:cc:86:11:1d:5a:
67:2b:c9:db:27:c4:f7:b4:a5:e1:28:6d:fb:fe:44:
42:b3:ab:c3:75:52:2d:14:bf:63:69:a4:fd:5b:44:
19:8d:27:b8:41:f5:0d:95:b8:58:b7:e9:fb:94:99:
83:59:16:73:11:ca:a1:c8:a8:5c:a7:fd:9a:78:1e:
ad:34:40:ef:97:4a:f3:b8:d3:29:04:d9:9e:4a:08:
bc:01:7b:52:a7:8d:94:fa:74:11:c2:0e:87:e6:6f:
be:42:6e:ba:81:7e:6b:8f:70:dc:9b:18:42:69:d4:
c0:d3:3c:ed:bd:12:18:72:3c:1d:27:24:72:69:56:
33:0b:37:96:4a:ad:4e:f6:c8:5a:66:64:02:dd:93:
01:fe:b3:f2:10:9e:db:3c:2c:d1:2d:9e:17:6a:fe:
86:a2:27:9c:8e:48:d8:cb:0f:f8:54:ca:00:23:81:
cf:5e:b9:e0:e7:70:21:87:e8:02:1e:42:9f:e3:e9:
3a:67:5f:b5:d1:75:87:72:c5:89:09:10:2c:33:6e:
f9:44:d1:a3:38:c0:bf:56:89:ae:cc:9a:41:46:86:
d7:d1:76:3f:c9:15:0a:18:e6:44:93:a6:fa:d9:61:
e6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:39:73:1A:98:FC:D9:9A:6E:EE:C0:5E:75:40:9F:AC:6E:4E:4E:58
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/JzlzGpj82Zpu7sBedUCfrG5OTlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.138.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:4c:02:f1:93:f0:53:41:5e:be:16:51:74:83:ee:b3:dc:da:
a8:c2:3b:6f:64:1a:72:20:db:ce:48:8a:d7:d8:46:70:9f:3e:
26:c6:4e:27:63:10:3e:c8:15:69:c2:4d:61:16:a6:b3:c2:14:
70:d2:f9:e6:6b:1d:b4:73:c5:53:5e:0a:59:c2:3b:fa:0d:0e:
2c:47:3c:6b:2e:5a:ee:6c:dc:e9:5b:88:31:c3:37:19:02:88:
a2:be:ce:4b:b6:76:e7:26:eb:30:27:59:81:1f:ea:cb:d7:f3:
88:44:c7:b2:39:0f:52:cb:bc:65:1e:8b:d1:96:cb:96:13:27:
01:60:80:7b:90:4f:90:4c:64:a0:84:47:dd:0a:e8:29:ed:72:
78:3b:4b:90:1d:c5:12:e1:31:db:2b:46:81:b4:9e:3e:fa:16:
b9:85:fd:4c:b2:55:be:89:d2:9a:10:99:f8:03:85:1e:4d:01:
a8:2a:29:75:4a:92:a7:77:91:fa:72:df:f3:e8:d8:d9:62:37:
f7:b1:16:da:32:67:c9:4b:73:5c:4c:ab:67:34:a4:11:d9:47:
05:c2:f2:73:19:90:f2:ad:93:12:09:81:01:71:04:f5:24:91:
d3:af:05:57:6f:74:d7:a1:a7:17:23:75:10:28:c5:5c:82:d9:
9a:8f:ba:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org