Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YPx1CbT5loP6qsh42yDQU4aZvF4.roa
File: YPx1CbT5loP6qsh42yDQU4aZvF4.roa (raw, json)
Hash identifier: oKeYYUpHvxqiT0wOukHJf3Wr0j20bufYLR22Of6KKKc=
Subject key identifier: 60:FC:75:09:B4:F9:96:83:FA:AA:C8:78:DB:20:D0:53:86:99:BC:5E
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0A0288F5
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YPx1CbT5loP6qsh42yDQU4aZvF4.roa
Signing time: Mon 04 Jul 2022 12:36:27 +0000
ROA not before: Mon 04 Jul 2022 12:36:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39144
IP address blocks: 213.209.150.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167938293 (0xa0288f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 4 12:36:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60fc7509b4f99683faaac878db20d0538699bc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:5a:42:43:99:28:7f:1b:e8:27:71:d4:37:
ce:b0:d0:ac:61:34:d7:b4:b7:3a:c4:9d:1a:54:b3:
73:5e:13:d3:37:f7:dd:2b:3f:f4:4e:e4:3e:46:d5:
2d:ac:44:57:4d:93:2d:40:a6:fe:3d:3b:a3:04:65:
80:07:85:3f:b8:f6:69:37:6d:82:12:27:7e:13:55:
21:de:48:94:06:de:84:b9:03:95:3d:b1:ae:e6:d7:
77:be:fd:b8:f8:db:99:cc:c6:48:8c:89:52:79:c2:
5e:f8:ee:89:85:2c:ae:fe:ae:b4:70:f9:00:3e:dd:
fb:5a:b1:5f:43:96:76:07:44:67:ab:b8:4a:6e:2d:
2f:66:94:71:f8:c9:2f:0f:19:df:f3:ec:b3:e4:44:
bc:cd:49:3c:1b:43:a4:17:c0:5f:2b:d3:40:63:bf:
70:e2:cd:e7:d8:74:14:cf:54:4a:72:7e:43:e6:8c:
bf:05:f7:5a:7c:d0:44:7d:83:02:c4:04:a7:e8:ad:
3f:be:68:b5:7a:76:ef:5c:83:26:06:59:25:2b:7d:
11:0e:52:25:50:e3:41:4a:66:96:4d:8c:5c:a8:1f:
5d:6b:70:fb:c5:0d:8b:98:1d:0f:b1:38:03:c4:c7:
76:2e:67:f3:36:55:c7:a0:e8:be:3a:5b:75:ff:a0:
7c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FC:75:09:B4:F9:96:83:FA:AA:C8:78:DB:20:D0:53:86:99:BC:5E
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YPx1CbT5loP6qsh42yDQU4aZvF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.152.0/24
77.90.180.0/24
213.209.150.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c1:54:9a:39:16:2d:e3:75:77:fa:5c:a3:16:6e:a3:75:0e:
ce:5c:ef:97:0d:85:9a:46:24:b9:6b:7d:d8:64:df:24:4f:71:
62:2f:55:89:24:39:6c:11:61:58:33:03:d9:9d:26:ba:6a:2b:
85:ba:ac:7a:05:e1:4d:92:e0:b7:d0:11:4a:7d:36:60:23:58:
8e:3d:25:a5:60:5c:33:5b:d2:79:b7:31:9c:c8:1d:03:6a:90:
f4:5f:16:b9:1a:32:a9:86:94:fd:d6:21:15:8a:ea:ec:81:e0:
bc:7c:e9:cb:21:56:94:ce:84:16:71:41:f3:55:0d:7e:cb:ff:
53:85:ff:93:35:3b:e4:41:21:03:3f:ea:9c:76:0b:a1:e2:81:
6b:f6:41:86:a2:7b:f1:74:ff:1c:ac:14:1d:5d:14:92:f6:cc:
e6:cb:fd:bc:94:7a:d0:ae:b6:01:63:24:f1:a2:9c:51:f8:b7:
24:c9:8d:1c:04:e2:07:72:00:81:a4:f8:d3:ba:dd:0e:29:f0:
23:f8:95:aa:95:14:26:e3:ec:a3:3d:9b:2b:3b:f8:97:a0:3b:
98:24:ff:f2:a2:f1:6d:85:b3:ad:cf:42:67:e9:bf:79:64:ed:
fb:4a:8b:f7:be:02:71:4a:15:83:b5:aa:12:dc:4e:4e:53:67:
2e:90:d9:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org