Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PvWMSKJyPSIFI7KOILIYrdag-g0.roa
File: PvWMSKJyPSIFI7KOILIYrdag-g0.roa (raw, json)
Hash identifier: mqHFYXYOmOaCZejBnGUulydmScghAmhROLYhUVE2TDw=
Subject key identifier: 3E:F5:8C:48:A2:72:3D:22:05:23:B2:8E:20:B2:18:AD:D6:A0:FA:0D
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 06E8F77A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PvWMSKJyPSIFI7KOILIYrdag-g0.roa
Signing time: Sat 01 Jan 2022 07:00:22 +0000
ROA not before: Sat 01 Jan 2022 07:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60458
IP address blocks: 77.90.189.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115931002 (0x6e8f77a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 07:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ef58c48a2723d220523b28e20b218add6a0fa0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:75:cc:e5:e0:13:bb:83:68:86:38:ee:9c:68:
69:b7:4e:76:37:a3:80:33:86:39:1f:74:f7:49:37:
8b:29:08:cf:1e:d3:5c:d6:7c:be:1f:1b:4f:47:b1:
28:40:c3:04:79:5d:df:e6:30:60:65:34:9b:1d:be:
76:52:99:15:21:8e:24:9f:9d:67:f8:f5:9a:43:38:
e5:4c:9f:96:57:08:b4:c6:aa:f3:60:0c:b6:3b:59:
34:85:d9:4a:6f:3d:8c:8d:d1:a9:3b:de:14:e2:37:
63:80:79:69:59:a1:df:f8:36:02:25:85:b1:fa:ab:
38:6a:91:11:b4:e5:88:50:cd:b1:3b:5e:24:1b:ad:
48:d7:68:aa:12:fc:4a:36:a1:90:45:4a:67:72:b5:
e6:aa:c2:2c:a7:78:0c:d4:8d:45:3e:7b:2d:c8:c7:
53:bb:68:a0:a8:c2:5a:7c:8f:cc:9a:a6:70:16:43:
f8:51:9e:9f:9b:b0:ea:e2:00:35:94:e5:fe:ef:2f:
59:91:33:21:6e:5b:df:70:a7:cd:fe:fb:21:7c:39:
41:da:b5:ed:e7:48:d4:02:c3:98:94:c2:9d:68:8f:
b1:40:9b:1b:57:7d:7a:d2:1a:61:4c:23:75:cd:3c:
b5:0a:77:48:cb:a6:dc:07:95:99:96:57:a3:aa:78:
3f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F5:8C:48:A2:72:3D:22:05:23:B2:8E:20:B2:18:AD:D6:A0:FA:0D
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PvWMSKJyPSIFI7KOILIYrdag-g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.156.0/24
77.90.188.0/23
213.209.151.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b0:f9:4b:2b:0d:ae:26:d1:b7:3b:8b:ff:42:ba:75:5f:41:
82:f3:16:d6:ca:32:b1:52:d5:e4:5b:c7:ba:80:3d:2a:e9:0b:
93:63:f6:ca:a7:9f:61:a3:64:b4:3d:f3:4a:aa:0e:fe:30:39:
f7:c2:21:bd:7c:97:2d:53:e1:bb:5a:03:0d:ce:27:09:41:88:
62:de:10:23:02:81:ed:66:91:da:78:e3:da:5d:10:fa:52:1e:
3a:4d:6a:75:4c:ba:71:1b:ae:e4:59:b4:12:19:b8:9c:2e:1f:
62:03:48:3e:10:fd:b9:be:94:1b:11:fa:49:a6:67:7e:aa:c2:
f3:f5:33:89:e5:74:01:a3:d0:42:b3:6e:fd:04:99:e4:42:d0:
3b:6f:d8:2d:e2:21:c1:10:3d:b6:7e:15:6e:7c:4a:56:02:1b:
db:05:96:75:98:18:7a:aa:c7:0a:f6:ce:b7:8e:e7:50:84:e6:
f9:ad:27:79:d4:4b:a7:a7:c9:a0:b6:ca:1a:df:7b:c8:18:22:
4a:1f:35:9c:7b:5f:cf:c4:06:c1:7c:58:b4:e4:3e:c2:3a:c3:
c8:54:a2:49:6b:78:91:70:02:91:6d:a6:34:ab:ca:0e:53:e9:
29:b8:1d:4d:68:f1:d7:38:62:6f:be:72:11:02:9f:bf:3b:13:
04:e6:43:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org