Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/SnjZJrarc2HcEQgDvzeQwaA5tSE.roa
File: SnjZJrarc2HcEQgDvzeQwaA5tSE.roa (raw, json)
Hash identifier: gY1R6mOICz4gR23Ago+w9FjuxvbBXjRMAWOZF2WM0ys=
Subject key identifier: 4A:78:D9:26:B6:AB:73:61:DC:11:08:03:BF:37:90:C1:A0:39:B5:21
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 097577DE
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/SnjZJrarc2HcEQgDvzeQwaA5tSE.roa
Signing time: Mon 06 Jun 2022 13:02:20 +0000
ROA not before: Mon 06 Jun 2022 13:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158693342 (0x97577de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 6 13:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a78d926b6ab7361dc110803bf3790c1a039b521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:69:c5:65:4f:0e:ce:70:43:14:88:8f:1d:48:
89:31:da:0b:69:7b:df:ca:e2:56:5b:39:47:74:45:
f5:66:95:f9:1a:1e:2e:b6:38:b9:c6:f3:7c:a2:1e:
2e:b6:48:25:c0:3e:a5:f6:53:c4:fe:e5:a0:6e:9f:
43:30:5d:75:26:57:71:34:dd:9a:3d:7b:1e:97:bc:
55:54:59:38:22:81:12:f4:c0:5d:ca:0c:bb:63:1f:
44:69:ef:40:89:d8:a1:86:38:8d:61:66:39:1a:10:
38:1e:c2:50:0b:85:1b:cf:59:7e:de:f6:02:bb:ff:
92:00:b0:04:15:13:4b:6f:a5:cb:54:c2:2e:96:7c:
3f:95:45:f6:2a:93:5a:51:28:ce:cd:6f:fc:ed:49:
08:9b:e5:54:da:ad:57:56:11:59:24:6b:4f:c7:ee:
44:d7:8e:44:a0:b3:46:aa:ab:f3:ee:6c:de:e6:9d:
72:1e:96:83:92:75:5c:4d:8b:db:6e:e7:58:aa:50:
02:58:5b:cf:61:7e:0f:84:6a:e3:65:fa:42:3c:70:
b9:67:ff:d8:3b:0d:8e:51:1a:64:77:15:68:d5:55:
0a:0d:93:21:ce:2c:05:da:f8:93:13:e7:9b:63:67:
bb:53:df:4d:2e:13:ed:d5:f1:a0:35:17:9b:87:8b:
d9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:78:D9:26:B6:AB:73:61:DC:11:08:03:BF:37:90:C1:A0:39:B5:21
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/SnjZJrarc2HcEQgDvzeQwaA5tSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.164.0/24
77.90.181.0/24
77.90.191.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.144.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
60:2f:bc:b4:54:76:af:97:46:58:4a:fd:f4:28:33:64:57:e6:
ff:7e:82:a4:66:03:ff:89:48:fc:86:48:73:51:6a:2f:3f:39:
62:af:f7:68:47:a2:0f:65:9c:2b:02:ca:90:3a:86:83:b3:50:
fc:76:32:4b:90:6c:8d:79:d3:3d:57:95:0a:a8:44:cd:a3:93:
f6:4a:b7:76:d7:ae:c8:20:c1:03:33:ce:c4:38:4e:6b:0f:a3:
2d:9d:f4:c6:ec:86:5e:81:ba:f2:d4:71:29:6e:23:15:04:de:
98:b0:6e:54:d6:93:00:70:ef:6c:5c:cc:bb:c5:ec:6f:ad:68:
88:62:b6:1c:69:c7:6e:f7:65:9f:27:fd:fb:ea:e7:35:9a:96:
30:0c:bf:41:7f:cc:f2:80:7a:8c:96:ba:d4:4a:80:ca:66:11:
f7:01:62:09:2f:39:4a:2a:43:33:e0:7a:16:a9:e5:59:02:39:
1d:2f:b1:4f:7d:2c:41:c1:6b:8a:59:5f:2e:d4:11:e9:47:11:
2e:a1:65:f0:ee:28:19:13:6e:6a:65:66:59:db:3a:0f:ec:16:
1b:de:ad:91:d5:c7:30:42:ff:d9:a2:6b:d5:e7:b5:9b:6f:98:
43:a8:c1:d2:0a:24:61:ba:7b:2d:45:d5:67:9e:79:9b:48:7e:
0c:0d:2d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org