Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/RU0fe67ytdFcnB6SDXnOiCG7b8c.roa
File: RU0fe67ytdFcnB6SDXnOiCG7b8c.roa (raw, json)
Hash identifier: s7RCQBRFlWzi5zsffzv1d5UJqUrUTy+B6iBOy0Ufbw8=
Subject key identifier: 45:4D:1F:7B:AE:F2:B5:D1:5C:9C:1E:92:0D:79:CE:88:21:BB:6F:C7
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09022F27
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/RU0fe67ytdFcnB6SDXnOiCG7b8c.roa
Signing time: Wed 11 May 2022 18:34:02 +0000
ROA not before: Wed 11 May 2022 18:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 213.209.151.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151138087 (0x9022f27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 11 18:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=454d1f7baef2b5d15c9c1e920d79ce8821bb6fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:2f:db:c1:ae:5b:86:28:c2:3a:7a:c0:f3:
f0:1b:fc:19:d7:0f:b0:19:7e:5c:dc:c0:6a:8c:42:
d3:96:a4:15:80:b2:83:be:b1:ee:68:53:45:46:2c:
28:3b:31:e0:fa:0b:42:8f:e4:28:1e:54:f0:d2:33:
97:39:37:6e:56:58:13:fe:a2:46:55:f2:b5:c3:de:
91:30:01:2d:8a:dc:d2:46:f6:8b:ad:d5:5d:32:e0:
01:46:58:bc:65:9e:06:9d:0a:28:08:89:7e:77:62:
ec:02:9e:25:df:2b:5d:35:d1:21:3c:5f:61:dd:ce:
50:13:c4:47:97:51:88:69:c2:5e:0f:5e:e8:71:5a:
31:26:bf:ff:58:4b:1d:6b:de:74:fa:ea:65:7a:7b:
8a:ea:63:bd:19:45:3e:92:1d:2e:04:39:e6:0f:e7:
0a:e1:ac:73:c4:dc:61:39:48:29:77:25:d6:f3:03:
cd:e1:3f:38:93:52:5d:59:c0:d3:d2:22:52:11:bd:
d5:aa:b6:a3:07:b5:67:1f:3b:a3:c8:ef:0e:11:71:
6b:3e:7e:35:72:32:8c:6f:94:7f:70:97:13:9d:a2:
64:39:97:1c:2b:c8:1e:72:7a:24:4e:4b:02:31:6c:
c4:09:e0:d3:84:14:f8:9d:d2:04:d9:e0:cc:15:20:
7a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4D:1F:7B:AE:F2:B5:D1:5C:9C:1E:92:0D:79:CE:88:21:BB:6F:C7
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/RU0fe67ytdFcnB6SDXnOiCG7b8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.181.0/24
213.209.151.0/24
Signature Algorithm: sha256WithRSAEncryption
36:5c:e6:cd:06:3c:cc:b0:6a:27:87:3a:5b:2d:2f:2a:96:66:
36:ee:07:36:5c:54:64:67:6b:f4:38:06:f6:1a:33:54:9a:b0:
23:80:27:47:64:a4:ed:96:6b:2f:97:5a:d6:7e:95:61:ad:54:
d1:8e:a1:47:e0:ac:b1:e9:f0:6f:3c:e4:d0:82:af:a6:89:e3:
60:4d:4b:8e:30:b8:1d:cc:cc:5f:a9:5c:f2:31:5c:62:0e:5d:
43:03:63:d7:f4:e4:93:af:04:6a:12:bd:ae:77:d4:5d:de:80:
84:de:7c:9a:2e:99:dd:c4:15:72:58:41:c5:4f:c8:3f:39:82:
df:4c:b7:16:4f:85:b0:36:74:a4:ea:74:0c:85:38:26:38:fa:
96:e0:2d:e6:cd:3f:da:82:59:78:9f:81:11:4c:07:9f:a0:96:
b4:42:30:6c:2b:a5:45:95:4a:44:71:27:25:bf:a0:cc:20:d7:
ec:18:c0:30:a0:75:d6:5a:f7:54:59:de:a1:4a:da:fe:1a:7b:
58:db:b4:36:34:a8:50:98:87:cc:7d:1a:0c:fa:05:68:89:5a:
52:bb:37:5e:66:8e:0d:f5:cf:4a:dc:0b:ae:86:cc:16:94:a5:
b8:62:f4:16:3c:2f:07:89:63:f4:90:dd:d0:9a:ba:61:a0:4d:
2e:09:de:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org