Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PSk8O7juJ6tWeTo4iQ0qLPTulas.roa
File: PSk8O7juJ6tWeTo4iQ0qLPTulas.roa (raw, json)
Hash identifier: CZsR1bYths4A33mc2BDCviBfEr0kZF2sPp8VVeeTjOU=
Subject key identifier: 3D:29:3C:3B:B8:EE:27:AB:56:79:3A:38:89:0D:2A:2C:F4:EE:95:AB
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09B12C9A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PSk8O7juJ6tWeTo4iQ0qLPTulas.roa
Signing time: Fri 17 Jun 2022 12:29:45 +0000
ROA not before: Fri 17 Jun 2022 12:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 213.209.129.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162606234 (0x9b12c9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 17 12:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d293c3bb8ee27ab56793a38890d2a2cf4ee95ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:4c:c0:c7:ca:dc:de:7b:26:e4:03:ed:b2:
a2:b7:c0:65:b2:48:48:fd:af:e3:ae:e9:2b:9e:d9:
93:79:b4:74:59:b7:b4:fc:cb:93:48:ce:7d:30:19:
0b:23:d0:7b:dd:16:9d:88:04:77:0f:3f:b9:7a:fe:
f1:fb:dc:90:2c:54:f7:c0:a7:ed:73:1f:09:73:e5:
74:ac:a4:b9:45:61:02:e3:4b:a0:b4:0c:9d:82:c5:
3f:b6:62:3c:1a:54:0b:e7:73:ef:ff:13:12:13:ac:
34:aa:a0:05:db:70:e2:d8:37:b2:9d:03:a7:2f:64:
41:e7:de:a0:d2:c4:44:78:1e:ae:aa:ff:09:7f:f3:
f2:f9:29:85:e5:af:4e:d0:49:35:de:9c:b6:b2:d8:
72:92:74:fb:f3:a2:de:65:60:8a:13:04:dd:42:c8:
3a:55:fe:cc:6a:f6:e0:0a:a5:a0:d1:85:d2:bf:d0:
12:f3:3e:fd:48:77:41:fa:13:fd:43:95:7d:a6:2a:
f9:74:54:04:b9:5a:bf:e4:95:e2:5c:53:2c:04:0b:
10:7c:04:e3:42:83:61:15:02:cf:ad:d0:77:ed:b7:
12:ff:92:ef:b3:37:1d:39:c7:1b:ba:53:0d:28:db:
5e:81:d4:67:28:8d:de:b5:ca:1f:24:f3:45:9a:11:
7a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:29:3C:3B:B8:EE:27:AB:56:79:3A:38:89:0D:2A:2C:F4:EE:95:AB
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PSk8O7juJ6tWeTo4iQ0qLPTulas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.150.0/24
77.90.178.0/24
77.90.185.0/24
185.230.13.0-185.230.14.255
213.209.129.0/24
213.209.145.0-213.209.146.255
213.209.156.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6b:21:c9:29:ed:10:bd:40:d1:8a:91:fa:db:ef:07:00:94:
17:65:b0:f2:47:73:02:90:c1:9c:8e:ce:a0:ac:c0:e6:5a:c3:
31:e5:97:26:ff:9d:32:0b:e1:af:2e:1c:14:0d:89:db:5a:5d:
c4:35:c8:18:a9:7f:16:e1:6b:69:a2:f6:62:d8:c8:56:ed:43:
fa:86:71:9a:0c:7a:d7:c4:c3:4b:78:5e:4d:de:0a:0e:06:39:
1f:5e:9f:d0:0d:ba:5a:eb:f7:60:3b:b7:22:fc:57:9b:9b:2d:
d1:97:31:c8:5b:55:72:fe:65:22:b7:9c:2e:21:c6:d5:dd:43:
0a:e1:09:c0:aa:cc:57:db:07:6b:7e:e5:ed:ba:77:d0:6f:52:
33:66:2f:0e:a4:e8:46:3b:e7:72:7d:fe:36:5a:e8:2e:52:a0:
c5:58:c3:cf:1b:bc:01:2d:e7:38:29:1a:bd:e3:e9:aa:e8:fe:
1c:83:4b:a9:66:4c:db:3c:f2:fc:24:df:56:64:9e:48:6b:60:
33:ba:fc:79:fa:18:5c:06:16:be:87:ff:d5:01:3e:0c:fe:14:
d5:ef:3c:06:78:03:8e:70:df:1a:02:38:0f:06:32:be:45:f5:
73:83:ad:19:9e:35:b1:0f:4f:9e:47:fd:5e:1f:f3:1a:a9:c1:
39:9d:79:dc
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIECbEsmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDYx
NzEyMjk0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QyOTNjM2JiOGVl
MjdhYjU2NzkzYTM4ODkwZDJhMmNmNGVlOTVhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKdETMDHytzeeybkA+2yorfAZbJISP2v467pK57Zk3m0dFm3
tPzLk0jOfTAZCyPQe90WnYgEdw8/uXr+8fvckCxU98Cn7XMfCXPldKykuUVhAuNL
oLQMnYLFP7ZiPBpUC+dz7/8TEhOsNKqgBdtw4tg3sp0Dpy9kQefeoNLERHgerqr/
CX/z8vkpheWvTtBJNd6ctrLYcpJ0+/Oi3mVgihME3ULIOlX+zGr24AqloNGF0r/Q
EvM+/Uh3QfoT/UOVfaYq+XRUBLlav+SV4lxTLAQLEHwE40KDYRUCz63Qd+23Ev+S
77M3HTnHG7pTDSjbXoHUZyiN3rXKHyTzRZoRevcCAwEAAaOCAj0wggI5MB0GA1Ud
DgQWBBQ9KTw7uO4nq1Z5OjiJDSos9O6VqzAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L1BTazhPN2p1SjZ0V2VUbzRpUTBxTFBUdWxhcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBT
BggrBgEFBQcBBwEB/wREMEIwQAQCAAEwOgMEAE1algMEAE1asgMEAE1auTAMAwQA
ueYNAwQAueYOAwQA1dGBMAwDBADV0ZEDBADV0ZIDBADV0ZwwDQYJKoZIhvcNAQEL
BQADggEBADtrIckp7RC9QNGKkfrb7wcAlBdlsPJHcwKQwZyOzqCswOZawzHllyb/
nTIL4a8uHBQNidtaXcQ1yBipfxbha2mi9mLYyFbtQ/qGcZoMetfEw0t4Xk3eCg4G
OR9en9ANulrr92A7tyL8V5ubLdGXMchbVXL+ZSK3nC4hxtXdQwrhCcCqzFfbB2t+
5e26d9BvUjNmLw6k6EY753J9/jZa6C5SoMVYw88bvAEt5zgpGr3j6aro/hyDS6lm
TNs88vwk31ZknkhrYDO6/Hn6GFwGFr6H/9UBPgz+FNXvPAZ4A45w3xoCOA8GMr5F
9XODrRmeNbEPT55H/V4f8xqpwTmdedw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org