Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WBUU8pS40gObc6BKQ1Hb6hd-U3I.roa
File: WBUU8pS40gObc6BKQ1Hb6hd-U3I.roa (raw, json)
Hash identifier: 98dDjPwuZ4PGfbEstQx1q32RuEw7KuWyXjIRvI5ssPM=
Subject key identifier: 58:15:14:F2:94:B8:D2:03:9B:73:A0:4A:43:51:DB:EA:17:7E:53:72
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018389DE9FBBF93581FE605615A2182CB6C4
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WBUU8pS40gObc6BKQ1Hb6hd-U3I.roa
Signing time: Thu 29 Sep 2022 15:30:11 +0000
ROA not before: Thu 29 Sep 2022 15:30:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58271
IP address blocks: 77.90.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:de:9f:bb:f9:35:81:fe:60:56:15:a2:18:2c:b6:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Sep 29 15:30:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=581514f294b8d2039b73a04a4351dbea177e5372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:45:f3:c3:76:9f:3e:62:c0:ed:fe:0f:04:80:
11:a0:13:b3:97:98:91:fd:6d:5e:39:9a:59:8f:84:
86:1b:8f:c4:2e:17:95:b0:95:85:44:ee:4a:10:32:
10:f5:97:d7:f4:51:92:25:d2:16:a1:92:a8:dc:97:
fd:15:e4:fb:74:53:6a:cd:5f:35:9b:a3:a4:74:f6:
61:bb:6f:ce:98:77:e6:42:ab:f6:3d:a7:a4:f5:5c:
74:43:86:8f:00:c0:d5:e9:b1:68:23:d0:1a:73:4d:
fa:60:cc:2a:0b:9c:ea:10:42:01:d5:b7:d1:52:4d:
f9:a0:f5:d9:6c:4c:fc:2f:70:36:34:8b:df:cc:d7:
b8:2e:75:c6:e6:05:d7:9a:8e:88:94:9f:26:6e:c0:
15:5c:34:75:ea:04:e1:4e:57:55:0e:a2:17:87:a4:
21:0e:67:06:92:29:f2:29:1c:bf:b4:47:51:9a:8f:
35:f0:9b:7c:33:b7:31:6b:ef:c7:80:51:e3:b3:2a:
a9:46:ea:08:53:b9:ce:ad:f9:91:83:e1:cf:d5:ce:
00:df:74:60:cc:ec:18:25:fb:fc:31:b5:ee:ef:d6:
1b:2e:78:31:6b:79:a6:fa:5e:05:39:d2:17:54:9c:
88:07:c3:4d:fd:e2:f5:bb:28:42:d8:e7:43:05:f7:
ee:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:15:14:F2:94:B8:D2:03:9B:73:A0:4A:43:51:DB:EA:17:7E:53:72
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WBUU8pS40gObc6BKQ1Hb6hd-U3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.188.0/24
Signature Algorithm: sha256WithRSAEncryption
51:64:6d:0f:48:2b:12:98:7d:95:f7:7c:a4:a3:78:79:2f:1f:
fc:01:43:d4:d9:8d:d4:91:e2:54:ca:cb:64:8a:9e:dd:46:d9:
39:7f:db:04:2b:f1:ca:53:00:2e:53:0a:ac:5e:f0:a6:15:9d:
ea:3e:1d:f2:a8:7a:dd:f4:7f:0f:12:59:81:4b:bf:f9:de:98:
0b:92:30:f6:8a:69:de:1b:bb:2e:fe:c8:d9:b6:11:67:ae:05:
42:5a:03:5d:46:73:47:21:fa:6e:d9:63:56:c6:e7:4d:77:a9:
1d:a8:62:3d:e4:1b:dc:ed:6f:c7:48:e7:82:f0:c4:7d:79:6b:
ca:77:ff:24:01:27:42:c4:48:4f:09:d4:6d:6b:57:93:fe:85:
5f:1f:ab:b0:45:ab:1b:fc:d9:f4:3c:85:6e:18:5c:5b:56:a2:
99:b3:8f:0f:a8:28:1b:dd:ca:c3:94:3f:f3:24:86:d4:c2:bf:
e6:90:be:a6:e1:bd:54:d3:8e:62:f8:14:e1:bc:bd:f4:b5:4f:
9b:1a:8f:3d:f9:8d:97:0c:46:16:8f:98:e3:bf:bf:bf:31:bc:
6b:0e:fe:f5:e2:b7:0d:c7:f2:45:b3:8e:05:9f:ed:f1:83:f3:
13:e1:f6:6a:68:76:80:20:52:ce:79:cd:25:ef:44:07:fc:fb:
3c:3f:88:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org