Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c9K8Tqi7oQTj3fI6yKFeQqZ3MUc.roa
File: c9K8Tqi7oQTj3fI6yKFeQqZ3MUc.roa (raw, json)
Hash identifier: YRMOHr83hCZ0VpKh2tjVn0JtGOyo9uU4SwlGv8JHo/Y=
Subject key identifier: 73:D2:BC:4E:A8:BB:A1:04:E3:DD:F2:3A:C8:A1:5E:42:A6:77:31:47
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 07A36C79
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c9K8Tqi7oQTj3fI6yKFeQqZ3MUc.roa
Signing time: Mon 28 Feb 2022 16:16:54 +0000
ROA not before: Mon 28 Feb 2022 16:16:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 213.209.147.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128150649 (0x7a36c79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 28 16:16:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73d2bc4ea8bba104e3ddf23ac8a15e42a6773147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ec:43:d5:3b:f1:b6:ed:6b:8d:03:8b:c2:8b:
b7:2a:cb:3a:bd:d6:19:ea:22:54:d4:f4:4b:62:3a:
13:23:56:0d:1e:67:8c:40:ae:da:0a:7e:13:47:e3:
6b:ce:d3:49:c1:7a:73:9a:13:03:04:e1:6e:45:e5:
37:6d:1f:dc:d4:f1:61:c3:0b:bd:47:ea:8d:f2:63:
c8:4d:22:5a:31:2b:c8:be:57:c2:8f:11:7a:19:27:
0f:31:2f:72:37:f0:94:d6:89:5a:4a:f2:3d:78:51:
a1:83:4c:ac:cf:eb:80:09:b4:7a:6d:4a:a6:6e:f8:
f2:ca:a6:f9:ac:55:fd:cc:cc:ba:fa:ff:01:dd:0f:
7d:9f:0f:be:58:a1:2f:48:ce:b5:77:0c:af:32:82:
6b:f1:61:04:d6:a7:00:45:f6:43:39:4a:f8:6a:65:
d8:1b:ed:03:fa:2a:4e:b9:43:17:1d:73:5d:ff:1b:
86:65:14:d0:d4:c2:05:c4:1b:a5:32:07:28:dd:b7:
f9:dc:62:27:c4:57:17:c3:38:36:42:b7:cc:f5:5c:
56:aa:03:4c:80:df:08:4a:5c:4f:79:82:7d:c7:cf:
8c:63:c5:4e:6c:29:96:37:c3:4b:37:a8:50:5f:2e:
4c:cb:cf:f6:38:4c:78:a8:49:20:d3:94:d5:91:fe:
91:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D2:BC:4E:A8:BB:A1:04:E3:DD:F2:3A:C8:A1:5E:42:A6:77:31:47
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/c9K8Tqi7oQTj3fI6yKFeQqZ3MUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.153.0/24
77.90.164.0/24
77.90.173.0/24
185.230.15.0/24
213.209.147.0/24
213.209.151.0/24
213.209.158.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:4d:ff:22:9c:a4:8c:6b:97:25:42:78:72:0f:a0:66:1a:ce:
9c:a2:5d:b7:e2:e5:15:1d:fb:ef:2e:73:18:95:46:0d:f1:74:
c8:b8:bd:63:6f:03:b6:8c:26:7e:d2:49:a5:ce:b4:c0:8c:1b:
4a:d9:9a:3f:4a:b0:37:65:3e:be:39:8e:6e:cc:af:c7:9a:4a:
98:bb:04:67:75:91:99:ac:1d:9d:e4:2c:04:c1:0d:30:9f:03:
70:06:b0:2c:b1:d4:86:d2:4c:9c:e2:6c:7f:8b:24:ba:51:11:
ab:61:0a:9b:d9:30:f1:ad:b8:35:89:b5:a7:00:80:53:7b:de:
6d:3d:f3:79:09:8c:77:b0:1b:d8:ac:87:ca:32:9e:08:cb:6d:
f6:9b:11:bd:ab:92:17:2a:81:4a:69:b7:13:2b:0f:fc:a5:62:
b7:b9:e3:0e:76:ca:97:c2:e7:86:f4:be:8c:bd:be:db:42:f4:
a0:d0:43:e2:db:d3:1b:18:7b:c0:98:fd:1c:eb:48:8c:d7:50:
18:9d:0a:49:d8:2a:1a:4c:00:6e:ea:dd:ab:fa:da:10:59:33:
22:79:9b:f0:b5:b2:87:a7:83:c4:ef:f0:68:4c:99:de:2e:89:
66:d0:2f:c1:12:13:d8:ad:7d:99:fe:af:4f:f1:fc:3a:01:83:
b1:15:bd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org