Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/_EyELP9V3vBmneQoQ8zf8I5pdHc.roa
File: _EyELP9V3vBmneQoQ8zf8I5pdHc.roa (raw, json)
Hash identifier: vGZlul2Rn/qQC8SnrcOERgclOf9r2K5FtWWQ+sSacIA=
Subject key identifier: FC:4C:84:2C:FF:55:DE:F0:66:9D:E4:28:43:CC:DF:F0:8E:69:74:77
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0964B2F6
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/_EyELP9V3vBmneQoQ8zf8I5pdHc.roa
Signing time: Wed 01 Jun 2022 07:45:20 +0000
ROA not before: Wed 01 Jun 2022 07:45:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 213.209.151.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157594358 (0x964b2f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 1 07:45:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc4c842cff55def0669de42843ccdff08e697477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ea:d9:88:2b:69:3f:0a:9c:fb:55:87:d1:bf:
22:50:06:b6:80:1c:71:26:0b:6a:51:75:c7:a1:27:
0f:f8:96:a9:c6:4a:75:39:3f:10:16:69:f5:2b:c4:
f5:52:ce:93:cb:72:7b:2f:b3:1b:8f:9e:7c:a7:ea:
fe:5a:12:f2:4d:05:27:cc:82:18:ce:ec:7f:a6:3e:
a4:f9:37:87:0e:8c:43:0d:0b:8e:b0:9a:0e:13:bb:
e2:aa:2e:04:77:fe:30:11:cc:33:c8:11:b5:1d:69:
17:82:3e:52:00:ee:71:4f:01:2e:60:74:c5:1a:32:
7f:fb:25:b1:af:c7:5a:47:fa:fc:f2:67:d0:39:65:
52:fe:cc:af:65:70:a9:77:20:39:03:83:1c:9f:93:
be:f0:d0:f8:b0:d6:1f:7b:b8:2f:ac:ce:51:fe:0a:
90:7f:94:30:68:72:25:6e:40:21:d6:78:2e:43:d7:
a5:c4:32:36:d3:23:e5:37:0d:81:27:68:8e:59:dd:
e8:6f:35:f2:2d:6d:89:5e:42:70:de:11:a9:6f:ec:
0e:0e:41:05:75:9e:32:40:a8:4c:5c:9f:58:db:be:
e1:ab:a5:24:a8:3d:bb:aa:56:8e:02:8b:9a:60:13:
c7:52:dd:eb:f4:42:53:f5:0c:8b:5e:ac:34:cf:84:
04:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4C:84:2C:FF:55:DE:F0:66:9D:E4:28:43:CC:DF:F0:8E:69:74:77
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/_EyELP9V3vBmneQoQ8zf8I5pdHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.157.0/24
213.209.151.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:36:bb:9b:dd:de:10:44:14:83:54:1c:8c:e3:9e:07:e9:d8:
5c:21:df:c7:c1:fb:b8:36:a9:c5:e9:55:ee:1a:1e:6b:16:bb:
73:c0:90:17:9e:72:22:5d:5e:eb:6d:a3:b7:5c:cc:ea:50:24:
bb:f9:94:7e:4e:ba:dc:91:c1:e6:ff:08:2f:58:7d:f8:a9:e8:
77:af:04:b9:11:cd:f6:3c:3f:1e:09:88:bc:a3:34:e8:58:54:
45:61:52:f1:b7:9c:b7:c6:cc:64:60:03:54:c8:ab:19:a3:6f:
cb:f1:93:35:43:5f:d3:bf:6b:92:ae:b4:2f:a6:a4:29:a0:2e:
9d:4f:65:0e:a8:2b:b3:f1:2e:36:be:fb:30:f5:ea:a8:de:1e:
a7:56:61:a9:8e:15:db:1c:0d:c0:ce:a2:f7:7e:23:84:5b:46:
14:57:74:9f:61:4a:19:cb:65:f4:c7:a3:69:57:20:89:73:6a:
a6:72:63:78:b1:97:8a:0f:7b:21:23:d8:99:b1:3e:32:34:b6:
54:6b:d8:2e:34:e5:b1:8f:91:cd:49:53:7c:91:cf:38:cf:15:
dd:8a:c4:6e:36:da:20:77:24:a8:c5:70:53:1c:1f:ac:6d:77:
1c:1c:c3:45:fb:76:bc:47:a7:6d:7c:25:90:ad:fc:5c:69:99:
93:3b:76:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org