Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PMduuehTqr2gNdjz7wr2LlRz-Ao.roa
File: PMduuehTqr2gNdjz7wr2LlRz-Ao.roa (raw, json)
Hash identifier: HTfIRKfsP0FQrVbEcqUOSiqi4GJgNGoo2WRjnCjv/nM=
Subject key identifier: 3C:C7:6E:B9:E8:53:AA:BD:A0:35:D8:F3:EF:0A:F6:2E:54:73:F8:0A
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 082577C4
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PMduuehTqr2gNdjz7wr2LlRz-Ao.roa
Signing time: Wed 16 Mar 2022 10:48:51 +0000
ROA not before: Wed 16 Mar 2022 10:48:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136673220 (0x82577c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Mar 16 10:48:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cc76eb9e853aabda035d8f3ef0af62e5473f80a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ab:96:eb:85:b7:01:92:a1:64:b8:bf:4b:a4:
06:de:ae:0a:6b:d7:db:cb:65:68:4c:ba:4e:47:b4:
64:ab:ca:d9:48:4c:e1:4a:8f:76:21:a3:04:cd:2f:
93:e6:92:c7:70:1d:2b:53:98:3e:2f:ea:93:eb:29:
38:e8:e7:25:43:4f:9b:5f:e1:f1:85:84:2f:b0:08:
f3:3d:90:6e:b1:ff:e8:2e:64:9e:18:a5:29:e1:af:
a4:d0:ec:46:a5:fb:69:bc:a6:c4:13:ff:a6:77:ae:
05:cb:c2:42:23:b6:b0:ab:11:d7:89:1f:c2:84:63:
d5:f0:63:10:98:8b:ff:5d:ca:39:a9:26:42:88:d2:
e1:c2:0a:bf:b9:2b:3c:78:f0:57:1f:65:80:58:0f:
ff:d6:01:4e:eb:10:de:c0:05:00:e9:4a:d7:a5:9f:
e7:11:09:95:d3:3b:48:bf:47:da:8a:1e:33:d3:66:
78:6c:18:90:db:2d:ad:58:09:7f:f6:5c:43:0d:83:
b2:43:ba:5e:1d:0f:b1:0c:68:eb:53:10:21:7e:94:
b4:43:60:63:c8:51:cb:fb:c1:eb:fe:2a:ed:f4:6e:
be:f3:d7:29:f9:80:f6:b6:a2:1d:31:3d:4d:1b:c7:
95:f6:70:58:53:84:42:8d:15:0b:11:c4:cd:7e:25:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C7:6E:B9:E8:53:AA:BD:A0:35:D8:F3:EF:0A:F6:2E:54:73:F8:0A
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PMduuehTqr2gNdjz7wr2LlRz-Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
213.209.130.0/24
213.209.133.0/24
213.209.136.0/24
213.209.138.0/24
213.209.145.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
a2:b5:e8:40:b6:1d:60:ce:10:da:32:24:eb:28:3e:67:ad:ef:
0d:f8:cd:d7:ac:70:e2:e9:e1:3b:c8:05:36:91:f7:73:c8:44:
0d:14:96:ea:71:83:e2:d6:f1:df:59:e6:28:d6:d4:41:31:b2:
81:18:f2:81:2f:b9:1b:91:ac:46:dd:67:1a:c5:18:6b:52:7f:
61:c2:f0:8a:ac:d1:5b:8b:a0:0e:1e:50:02:f5:f6:65:a7:5e:
9e:c8:fa:8a:9c:b0:f3:0a:e5:e5:22:12:26:27:e5:1c:ce:3d:
4a:e8:ff:03:6e:28:48:3d:a3:1c:47:f5:83:33:f8:2e:27:72:
73:5f:6a:16:01:f7:d9:4d:81:1f:b7:15:b2:20:dc:cf:d5:5d:
58:56:d4:dc:be:73:b1:ce:09:05:c9:6f:c8:3a:96:48:74:c4:
08:05:65:d4:2c:64:f1:4f:ed:2e:7d:00:17:43:10:14:cd:2d:
26:73:1e:b7:33:74:56:02:eb:f3:c4:fb:1b:20:26:68:53:95:
9f:80:29:07:9c:cd:50:c5:90:87:b2:4e:40:39:58:6b:db:25:
38:43:5c:ad:37:79:73:b7:d1:ca:42:c4:83:75:3b:f4:20:71:
a7:51:3d:0c:d3:fc:2a:d4:84:06:71:20:64:5c:9a:2f:94:c9:
8a:80:65:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org