Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/az4BHhEsMzv0qCcsC6XXh3nT6fM.roa
File: az4BHhEsMzv0qCcsC6XXh3nT6fM.roa (raw, json)
Hash identifier: lPP+cssCCxMuYVunu9BkroKocKySYP2lrhkguhBnXn8=
Subject key identifier: 6B:3E:01:1E:11:2C:33:3B:F4:A8:27:2C:0B:A5:D7:87:79:D3:E9:F3
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01821807891B74D15B51D78181A725225581
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/az4BHhEsMzv0qCcsC6XXh3nT6fM.roa
Signing time: Tue 19 Jul 2022 19:55:23 +0000
ROA not before: Tue 19 Jul 2022 19:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 77.90.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:18:07:89:1b:74:d1:5b:51:d7:81:81:a7:25:22:55:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 19 19:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b3e011e112c333bf4a8272c0ba5d78779d3e9f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:4a:84:3d:e6:67:54:46:e1:ad:fd:55:e5:
5f:8d:96:60:42:98:9c:2e:0a:87:9a:49:66:2c:41:
3a:1a:f7:2b:91:47:05:28:86:80:61:67:30:29:e7:
c4:1d:98:1d:7f:27:97:d0:c7:af:15:30:6e:fb:5d:
33:05:25:a3:01:22:35:17:b4:71:1d:2e:22:fe:3a:
a9:68:4e:05:5b:42:e6:8d:85:7b:9d:3b:21:a4:c9:
60:99:86:ae:62:3e:67:f0:43:c4:4d:9b:e6:47:8b:
2d:ee:6a:14:9b:1c:48:db:77:5c:ab:05:ac:2b:3a:
6a:8e:f6:81:76:64:6e:aa:74:41:1c:43:b0:b2:d4:
1b:ce:c0:f5:60:85:8a:3c:86:17:80:9a:d9:9a:d7:
a3:b8:6c:ff:ec:d3:73:a8:46:2f:c5:08:b0:85:fd:
e6:72:08:03:18:5d:43:1a:35:cc:ab:9e:05:29:ce:
7f:41:9d:86:5a:b2:19:5c:5d:b8:6c:70:8c:14:9f:
62:ed:fa:89:1b:09:78:57:76:41:e4:6b:cc:b0:c3:
35:0a:be:4c:69:ea:65:40:10:7e:e7:fc:12:e3:73:
31:f0:68:e5:57:3e:0f:33:58:07:6c:81:c9:72:a5:
cf:d3:db:f3:9c:44:46:8f:c4:9b:9a:d0:27:7b:54:
e5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3E:01:1E:11:2C:33:3B:F4:A8:27:2C:0B:A5:D7:87:79:D3:E9:F3
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/az4BHhEsMzv0qCcsC6XXh3nT6fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.156.0/24
Signature Algorithm: sha256WithRSAEncryption
00:34:f8:88:5f:48:2a:13:a4:97:e6:df:a4:d4:1f:5e:8c:40:
71:bb:51:77:f6:5e:98:c2:21:6d:ab:fa:5f:6e:af:9b:f0:c9:
d1:d2:74:9c:95:4c:49:af:ba:8a:37:72:60:56:ae:34:80:58:
5d:a2:b3:27:03:7f:81:7c:87:05:ed:95:f6:f4:29:12:42:59:
94:fd:ea:00:d0:80:8f:f3:00:25:dd:57:38:61:24:22:17:3b:
9b:9b:c0:6d:78:39:d3:83:96:4c:f6:ad:5c:5d:67:d1:f3:f2:
f6:6e:c5:e4:b5:a7:ef:f7:12:00:48:94:20:de:fa:5c:35:4e:
7e:d8:2e:f5:0b:52:5c:e6:85:ae:61:a6:d3:41:6c:9e:97:3a:
8a:95:69:e4:58:da:50:a7:1f:30:34:5f:ab:5a:6b:e5:7a:60:
9d:2f:f9:2c:2d:82:41:5f:f4:e0:63:4c:f4:51:b9:f5:9f:63:
33:c7:b7:a1:8c:d0:a3:5e:5f:99:85:f4:55:23:25:56:7b:dd:
23:22:5e:09:49:e1:66:88:48:28:8f:91:3c:d1:51:06:28:49:
09:ac:62:78:d8:81:6f:f2:6c:6b:9c:ea:54:fc:23:64:20:06:
d0:3f:30:ae:09:7f:9e:ce:4e:55:42:f8:af:87:9d:e4:44:63:
0b:73:cf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org