Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Xwl07HSXn9-fUQPHfM_K16QsxSI.roa
File: Xwl07HSXn9-fUQPHfM_K16QsxSI.roa (raw, json)
Hash identifier: xWRzVOtXjBAUIAUZ3zWkFavjhq6Jb92T5sGuq3e3cdg=
Subject key identifier: 5F:09:74:EC:74:97:9F:DF:9F:51:03:C7:7C:CF:CA:D7:A4:2C:C5:22
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09769287
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Xwl07HSXn9-fUQPHfM_K16QsxSI.roa
Signing time: Mon 06 Jun 2022 13:03:20 +0000
ROA not before: Mon 06 Jun 2022 13:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
213.209.129.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
77.90.149.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158765703 (0x9769287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 6 13:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f0974ec74979fdf9f5103c77ccfcad7a42cc522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c1:a4:90:e7:fb:c0:ca:4d:0c:c5:f5:7d:b2:
92:4b:50:50:13:21:3d:51:d7:b6:fe:0d:4d:e7:61:
27:81:a0:23:01:ef:e7:aa:88:30:13:90:92:08:12:
6f:f0:9b:4f:c6:f0:7e:69:f0:1e:ff:18:e8:6a:1d:
69:a6:77:f4:af:5a:e1:3d:77:6c:4d:ca:51:0e:71:
c7:84:1a:97:64:c8:bd:8f:7a:61:6d:31:a5:6d:dd:
f8:41:eb:0c:13:da:15:f7:10:bf:00:3e:e0:b9:14:
5f:2f:30:e3:2c:47:cb:e3:58:9a:65:fb:60:5a:ad:
b2:8a:0b:ae:c1:9e:7c:c2:ad:d8:75:4f:5e:bb:02:
ca:30:5e:3e:d7:0e:cc:5b:dc:e9:4d:aa:f5:f5:c9:
e8:f9:89:61:34:09:7d:c6:80:04:eb:86:4e:33:a8:
2f:9d:80:4e:86:61:e7:b4:2e:5b:8b:2e:a2:05:4d:
0d:ee:60:1a:3f:30:fd:0a:73:e7:dd:ba:9f:16:ff:
75:7e:41:97:d4:f4:96:b5:16:14:87:1d:e4:3e:cc:
db:0c:9f:55:8e:a5:2f:9d:bb:a8:d4:a1:8c:67:c8:
e7:4f:75:f6:78:94:3b:79:aa:17:16:1d:c4:7a:2f:
9a:11:27:a7:77:84:aa:9e:b3:8a:79:89:88:90:7c:
ff:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:09:74:EC:74:97:9F:DF:9F:51:03:C7:7C:CF:CA:D7:A4:2C:C5:22
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Xwl07HSXn9-fUQPHfM_K16QsxSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.138.0/24
77.90.149.0-77.90.150.255
77.90.153.0/24
77.90.178.0/23
77.90.185.0/24
185.230.13.0-185.230.14.255
213.209.129.0/24
213.209.143.0/24
213.209.145.0-213.209.147.255
213.209.156.0/24
213.209.158.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f5:cd:50:88:e3:f0:32:12:c5:b0:02:62:b5:42:8b:1f:1f:
1c:64:07:0d:86:3c:d9:1c:ad:c6:6d:b6:dc:21:de:52:98:09:
44:98:12:7e:08:52:36:85:95:1a:23:79:8b:f3:59:e3:88:ab:
d9:95:b0:90:a0:74:59:9a:61:95:db:01:4f:dd:2f:ab:f2:95:
de:9e:27:1c:43:b9:ac:e5:77:ab:16:a2:12:8c:b4:de:26:d2:
5c:24:47:9b:56:ac:fd:10:d8:01:14:f5:64:2d:6e:39:0a:ab:
7b:6e:8d:69:04:7f:ca:47:80:53:8c:3f:b4:b9:35:5c:5f:90:
a4:ab:c7:8d:ab:f3:ec:d2:d0:6a:03:65:99:e8:a9:af:e5:b7:
ae:29:ad:f5:9d:ac:f5:90:41:95:2f:51:9f:fe:91:f3:54:15:
61:07:e2:6c:53:e8:3c:bb:88:8c:6e:df:9b:fe:51:0c:c2:d0:
aa:15:45:9c:9a:0c:da:d5:62:a1:ca:e4:28:9e:05:8e:20:2d:
89:07:cf:44:a5:1a:8e:9b:e8:bb:02:f8:cf:cc:af:84:7b:94:
18:10:26:d7:cf:b8:d0:4c:8b:51:62:4e:13:f8:7f:d2:13:d8:
f0:1b:55:14:ee:ab:62:6c:88:27:6b:c7:8e:b4:7a:3d:c7:c6:
35:8c:5d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org