Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VJclLdSq-7xsNrvvIX2D9RmbAiE.roa
File: VJclLdSq-7xsNrvvIX2D9RmbAiE.roa (raw, json)
Hash identifier: v0/j25v3AzP7V1t0Mxtg8y5AUbYJCgaJ/3Te7IlMlVY=
Subject key identifier: 54:97:25:2D:D4:AA:FB:BC:6C:36:BB:EF:21:7D:83:F5:19:9B:02:21
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0981EB95
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VJclLdSq-7xsNrvvIX2D9RmbAiE.roa
Signing time: Thu 09 Jun 2022 16:44:02 +0000
ROA not before: Thu 09 Jun 2022 16:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159509397 (0x981eb95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 9 16:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5497252dd4aafbbc6c36bbef217d83f5199b0221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:00:07:0a:99:11:45:fd:4d:21:8c:88:61:c8:
29:44:79:7b:01:1f:57:88:49:82:06:41:02:33:12:
9f:32:91:03:f8:bb:fc:5b:a3:31:a1:6c:e6:2f:c8:
9e:17:f4:af:92:7e:04:a8:26:25:5d:89:b3:b6:f7:
86:61:7c:eb:0c:10:e9:47:63:7a:6d:ab:8c:95:f9:
63:54:e9:b9:6a:9f:ae:42:a6:f7:14:a5:6a:39:41:
f3:c2:f8:28:12:e3:eb:d9:a8:b8:a0:0e:44:d9:19:
76:33:ff:71:b8:2e:1e:4f:73:5a:9e:92:4a:e6:3f:
b4:54:dd:25:5e:da:38:fb:1e:ac:2c:ef:fa:eb:ee:
18:c0:26:04:a4:b0:b1:e0:d9:15:1f:b7:c8:6a:c0:
e6:f7:23:9b:c5:99:05:50:54:9e:9c:2f:8c:bd:a3:
e2:87:66:30:5d:a5:da:40:bb:d0:61:c1:67:cc:32:
ad:f3:ca:c9:25:97:d7:ab:ae:02:ff:7a:00:82:50:
b4:eb:36:61:57:db:ae:a7:0f:f5:a4:3a:dc:ad:98:
b0:74:24:0e:0e:d2:d5:74:47:6f:aa:b2:04:fb:d8:
86:5d:74:39:50:4a:04:77:39:b4:12:f0:56:fe:03:
fe:eb:d2:ab:54:96:6d:a9:81:10:46:62:ec:93:ec:
ef:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:25:2D:D4:AA:FB:BC:6C:36:BB:EF:21:7D:83:F5:19:9B:02:21
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/VJclLdSq-7xsNrvvIX2D9RmbAiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.164.0/24
77.90.181.0/24
77.90.191.0/24
185.230.15.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.143.0-213.209.144.255
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
54:3e:9c:c3:2a:1e:46:f6:4e:54:1e:44:6c:46:6e:d8:f1:d7:
82:78:9c:3e:08:fb:6a:de:53:d8:34:90:c8:35:19:82:af:53:
9f:08:e1:8b:16:a8:ac:c2:fe:b2:44:c3:d8:f7:08:51:fa:e8:
6b:10:d8:86:cc:b5:ee:39:ab:fa:bb:4b:63:fe:7f:f7:25:2e:
50:c7:a7:34:3a:56:9c:c5:eb:18:b4:f3:c3:09:d1:22:d7:a0:
15:9a:71:fc:a3:04:d6:89:17:bd:a4:14:c8:34:52:4c:ad:c3:
a9:9b:a6:d2:13:e8:f7:9e:ab:18:4c:df:88:60:43:dc:77:db:
d0:5f:09:a7:bc:2d:bd:25:12:3d:53:8d:36:50:51:bf:5f:61:
83:1d:d9:cf:da:78:be:d6:51:50:66:3e:65:20:94:39:80:d3:
96:42:58:6d:c1:91:f7:27:63:71:89:c4:c6:2d:c7:84:f2:7a:
61:c4:0b:c4:0f:05:99:4d:0a:e8:44:aa:7c:48:d7:59:5a:3c:
d8:c3:d3:74:71:6b:19:8b:be:23:7b:84:7b:1b:4c:50:1b:3f:
16:65:3a:cc:6b:f4:ae:53:d8:c8:8c:3b:28:4c:61:c0:7d:ee:
c7:8d:4b:d1:a9:b6:00:17:8a:e3:38:3c:31:c4:e9:b9:3c:6f:
05:56:30:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org