Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QYWUZzqlGtngHujrdZ2bq51p50M.roa
File: QYWUZzqlGtngHujrdZ2bq51p50M.roa (raw, json)
Hash identifier: 67XU8rggvHMBgHSgUZcJ/VAG6VqeLfX9Pz6UflAuDP8=
Subject key identifier: 41:85:94:67:3A:A5:1A:D9:E0:1E:E8:EB:75:9D:9B:AB:9D:69:E7:43
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0184CEFE92AAC175E24BD691D3CF74D5330D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QYWUZzqlGtngHujrdZ2bq51p50M.roa
Signing time: Thu 01 Dec 2022 18:41:40 +0000
ROA not before: Thu 01 Dec 2022 18:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 77.90.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:fe:92:aa:c1:75:e2:4b:d6:91:d3:cf:74:d5:33:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Dec 1 18:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418594673aa51ad9e01ee8eb759d9bab9d69e743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a3:d7:f9:c2:49:47:8b:05:6f:d2:e3:3b:72:
3d:b8:27:72:ee:ee:82:96:c9:3c:a1:7d:d6:a1:47:
14:23:8d:e5:a1:ae:8b:f5:28:0c:c5:12:97:d6:d3:
57:35:8b:c0:ef:8f:15:82:7f:bb:f5:8a:e4:b4:55:
6d:92:e3:5e:d4:a1:d0:71:0b:eb:d0:64:87:c9:5f:
37:fd:ae:7e:70:1a:ca:87:bb:a7:62:e0:09:b8:3b:
db:14:bd:55:4d:8a:ca:93:05:63:96:11:b4:69:ed:
b5:c5:93:06:0d:89:79:df:32:da:dd:27:8f:80:26:
92:b0:6d:bd:d4:89:35:61:2a:65:4e:33:64:c2:be:
f8:26:85:67:8b:23:f7:4a:11:7d:29:07:c0:3c:a9:
51:90:40:ac:9d:00:fd:7c:7b:f1:00:0b:f3:4d:e6:
a8:14:05:6a:c9:59:e3:eb:e4:9f:71:9b:0c:f3:23:
f1:b6:9d:ba:41:77:fe:f2:08:6c:fb:8d:f2:19:48:
29:8d:a7:97:24:0d:ee:2b:1b:1d:2e:7d:ac:36:74:
24:57:8a:1f:68:e0:ae:ca:99:dc:92:d3:91:33:78:
7c:88:ac:a7:2c:7b:de:a3:9c:b9:93:22:f5:16:10:
f0:fe:03:08:00:ff:78:b5:16:49:ea:7a:c5:86:17:
76:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:85:94:67:3A:A5:1A:D9:E0:1E:E8:EB:75:9D:9B:AB:9D:69:E7:43
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QYWUZzqlGtngHujrdZ2bq51p50M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.139.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d0:dd:72:0f:0f:39:ae:fe:c3:53:9a:8f:ca:ea:7a:ae:53:
02:e6:d3:b9:2b:ea:bf:7a:24:c4:1a:da:df:f4:ee:51:8d:5f:
53:72:00:34:fd:5b:08:de:7b:5e:b1:2d:1f:f0:98:e7:cc:0e:
01:cd:70:12:c5:9c:5a:e0:cb:ee:26:b0:6d:f1:1d:87:f0:a7:
4f:dc:dd:81:2a:d8:dd:26:d0:28:9d:9c:0c:43:c3:da:cb:71:
68:7e:3d:82:26:65:d7:8b:ca:d6:19:6d:c6:f5:b3:d7:f1:ac:
40:4c:86:9c:be:4f:6a:98:c7:67:65:d7:7f:c8:db:13:96:5b:
ab:c0:e8:cf:91:6a:de:7c:e0:f8:c3:1f:e4:92:8f:b5:33:c0:
d6:d5:79:65:3e:cb:18:17:9e:22:16:d7:04:ad:c3:cd:c2:e0:
df:4d:19:66:13:8e:dc:83:40:e1:7b:1a:8c:a8:09:c4:99:b1:
0c:89:b4:30:d9:63:96:c5:df:84:ea:6e:db:c7:03:bb:66:31:
b2:66:b3:eb:19:cf:28:d6:97:1c:91:82:25:a9:a0:bc:c0:9e:
73:82:2b:35:41:e1:54:94:83:73:ca:72:e8:30:84:8f:ff:11:
a4:ae:4b:56:96:57:c7:b6:61:85:df:46:77:75:8f:74:96:35:
f1:e9:eb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org