Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/LEaIDobntpBMU-sXQSZw7m8UpIc.roa
File: LEaIDobntpBMU-sXQSZw7m8UpIc.roa (raw, json)
Hash identifier: ja3dVOKDn1hDvftEEG80RF4ds3jp0OkqSHYKa2Gi5pU=
Subject key identifier: 2C:46:88:0E:86:E7:B6:90:4C:53:EB:17:41:26:70:EE:6F:14:A4:87
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 08C28618
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/LEaIDobntpBMU-sXQSZw7m8UpIc.roa
Signing time: Thu 21 Apr 2022 15:24:25 +0000
ROA not before: Thu 21 Apr 2022 15:24:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 77.90.190.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
77.90.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146966040 (0x8c28618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 21 15:24:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c46880e86e7b6904c53eb17412670ee6f14a487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:47:53:52:58:43:d3:8f:e8:a5:39:8d:bb:
6a:21:8a:c6:55:9c:53:2e:f7:d0:aa:73:be:06:63:
e7:c3:bc:c3:ff:b7:eb:3e:18:a7:0b:93:90:dc:41:
85:da:76:39:cd:7f:40:d2:35:5a:4b:58:80:c4:16:
20:6d:07:21:da:39:e8:fd:a0:bc:ba:55:8d:78:be:
88:80:9e:d1:a1:7d:43:9b:8a:02:5e:11:61:0d:2f:
9d:66:5e:03:fc:83:38:78:1c:b2:4d:79:d1:5d:2a:
b6:c7:ff:22:dc:ff:94:f1:cb:d9:0d:17:9b:aa:4c:
5e:01:eb:48:f2:6a:c6:6d:13:80:b8:f3:19:f0:fa:
91:63:56:d8:00:27:63:eb:b8:58:08:c5:ce:4d:44:
2a:21:2e:84:7c:6d:3e:e2:16:b8:3f:41:c4:e8:4d:
20:87:ff:04:d0:c4:16:5f:42:ac:3d:d3:a8:fa:4b:
94:fb:e4:dc:26:83:b2:7f:53:a3:f4:c4:a8:93:e6:
00:57:61:46:0b:c3:d6:1d:6c:c7:de:c4:0c:bb:98:
1e:ea:12:bd:09:64:69:cc:cc:e0:eb:5b:83:6b:c8:
7a:ee:50:68:34:64:f3:5b:8e:15:02:72:7e:c2:5e:
d5:8c:6b:ae:17:d3:be:8d:5d:04:da:0c:88:21:26:
33:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:46:88:0E:86:E7:B6:90:4C:53:EB:17:41:26:70:EE:6F:14:A4:87
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/LEaIDobntpBMU-sXQSZw7m8UpIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.166.0/24
77.90.190.0/24
213.209.159.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ec:2a:76:7a:17:b8:e1:7d:54:5d:c0:47:a6:77:cf:f9:dc:
8c:c4:8d:ac:c7:ae:ab:86:f2:4e:f3:c0:bd:03:c2:54:10:6a:
9e:94:b1:83:d3:5a:96:eb:5b:81:30:e0:ae:b2:bc:c6:a2:bd:
40:b0:b5:5f:07:de:01:2d:c0:a1:b2:49:f0:1e:4e:fb:80:41:
10:a1:a6:a2:66:0e:0d:0c:e1:16:20:e3:78:69:51:9d:d3:c6:
cc:58:44:b9:43:96:35:bc:a3:1c:fd:21:97:03:5d:4e:5a:d0:
1b:a3:8c:56:71:18:51:bf:97:72:f2:89:05:1e:9f:ab:8f:7a:
3a:ae:15:72:9a:13:84:3c:37:79:a8:13:06:ca:56:b0:b2:3e:
ac:a2:46:75:19:e5:83:51:4b:16:da:7a:d5:64:a5:a8:38:9e:
33:aa:34:7d:d6:09:ef:4d:b4:08:70:cc:29:37:06:04:d6:f5:
7f:2f:7e:65:da:a9:8c:84:55:69:fd:11:21:04:3b:37:a4:ca:
b0:16:4f:48:5e:4b:aa:9b:6b:88:dd:2a:ad:a5:66:85:23:a0:
22:62:3f:38:1e:71:c2:6c:db:27:9e:52:b7:4d:69:a7:e1:57:
a2:fc:90:73:ac:ba:85:24:b5:6f:05:e7:48:11:72:85:aa:59:
6b:02:58:1b
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECMKGGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDQy
MTE1MjQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmM0Njg4MGU4NmU3
YjY5MDRjNTNlYjE3NDEyNjcwZWU2ZjE0YTQ4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALaPR1NSWEPTj+ilOY27aiGKxlWcUy730KpzvgZj58O8w/+3
6z4YpwuTkNxBhdp2Oc1/QNI1WktYgMQWIG0HIdo56P2gvLpVjXi+iICe0aF9Q5uK
Al4RYQ0vnWZeA/yDOHgcsk150V0qtsf/Itz/lPHL2Q0Xm6pMXgHrSPJqxm0TgLjz
GfD6kWNW2AAnY+u4WAjFzk1EKiEuhHxtPuIWuD9BxOhNIIf/BNDEFl9CrD3TqPpL
lPvk3CaDsn9To/TEqJPmAFdhRgvD1h1sx97EDLuYHuoSvQlkaczM4Otbg2vIeu5Q
aDRk81uOFQJyfsJe1YxrrhfTvo1dBNoMiCEmM90CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQsRogOhue2kExT6xdBJnDubxSkhzAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L0xFYUlEb2JudHBCTVUtc1hRU1p3N204VXBJYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAE1apgMEAE1avgMEANXRnzANBgkq
hkiG9w0BAQsFAAOCAQEAWuwqdnoXuOF9VF3AR6Z3z/ncjMSNrMeuq4byTvPAvQPC
VBBqnpSxg9NalutbgTDgrrK8xqK9QLC1XwfeAS3AobJJ8B5O+4BBEKGmomYODQzh
FiDjeGlRndPGzFhEuUOWNbyjHP0hlwNdTlrQG6OMVnEYUb+XcvKJBR6fq496Oq4V
cpoThDw3eagTBspWsLI+rKJGdRnlg1FLFtp61WSlqDieM6o0fdYJ7020CHDMKTcG
BNb1fy9+ZdqpjIRVaf0RIQQ7N6TKsBZPSF5LqptriN0qraVmhSOgImI/OB5xwmzb
J55St01pp+FXovyQc6y6hSS1bwXnSBFyhapZawJYGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org