Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/dWUx_CxZsNz46_LtXV4b5qyMgkY.roa
File: dWUx_CxZsNz46_LtXV4b5qyMgkY.roa (raw, json)
Hash identifier: i+dsxH797Ag7WSH3fmHKGIUFrUsFUIgf1Lok1I+tVUg=
Subject key identifier: 75:65:31:FC:2C:59:B0:DC:F8:EB:F2:ED:5D:5E:1B:E6:AC:8C:82:46
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01855378DB66D734317246173811F3DFE94D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/dWUx_CxZsNz46_LtXV4b5qyMgkY.roa
Signing time: Tue 27 Dec 2022 12:05:07 +0000
ROA not before: Tue 27 Dec 2022 12:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
213.209.129.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:78:db:66:d7:34:31:72:46:17:38:11:f3:df:e9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Dec 27 12:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=756531fc2c59b0dcf8ebf2ed5d5e1be6ac8c8246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b2:10:60:d3:18:dc:94:e4:0a:e1:5c:99:f3:
05:f2:9f:50:b1:b0:f7:0c:7b:b1:c2:9f:78:a1:de:
c7:e3:40:39:2e:73:3c:6e:08:dc:94:86:23:e9:56:
31:09:45:4c:dd:fd:bf:17:01:0c:b9:45:20:a8:84:
f2:4c:ae:a4:a2:06:5b:92:e0:4c:95:f5:48:a5:5a:
32:05:1f:6e:2e:e4:52:ed:44:ab:b8:b7:13:4a:7e:
1f:b5:59:bf:57:f2:17:47:9e:ec:5b:bc:e1:4e:a2:
fa:b2:cd:69:7f:21:b0:e0:c9:1e:3f:72:39:bf:74:
ce:7c:28:6a:ac:a1:1c:15:b7:f7:bc:3b:79:51:1c:
08:d9:10:8b:ec:14:b6:d1:b6:33:42:db:ac:f8:eb:
83:6a:1c:64:f9:dd:4c:4c:f7:e8:70:15:ae:cb:8a:
f8:ab:6f:73:96:a0:fd:78:ce:be:dd:bc:75:0a:0b:
b3:b8:dc:83:96:e8:7f:ce:d4:7e:b9:6e:e1:c3:15:
db:a2:1c:7d:4d:fe:19:10:8b:f3:00:56:05:c5:13:
03:f5:ab:b1:bc:b2:cc:8a:87:c0:f1:8d:cd:07:1c:
5e:4b:75:da:0e:12:80:55:8e:9c:f6:5f:34:91:ed:
4c:c0:14:c0:dd:6a:89:08:6f:5a:ff:ed:2e:bd:8a:
31:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:65:31:FC:2C:59:B0:DC:F8:EB:F2:ED:5D:5E:1B:E6:AC:8C:82:46
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/dWUx_CxZsNz46_LtXV4b5qyMgkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.156.0/24
77.90.184.0/24
185.230.14.0/24
213.209.129.0/24
213.209.136.0/24
213.209.138.0/24
213.209.145.0/24
213.209.150.0/23
213.209.157.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
68:3d:49:fa:94:46:c9:c8:45:3c:62:42:3f:85:7d:f7:a7:d8:
ac:d9:07:fd:84:1f:85:16:4b:77:8f:95:9d:52:1e:b8:5a:ca:
a4:3e:ff:d7:a4:33:53:68:8c:a6:b7:55:e4:e7:74:d8:cb:0d:
3c:2f:14:cd:42:32:a2:a0:72:1b:12:02:7e:a0:8f:09:52:de:
dd:da:53:30:d3:4a:3e:6f:a5:64:41:aa:59:a2:eb:13:32:c3:
b0:74:b0:c2:ed:78:a4:13:7b:29:50:64:6f:b7:6e:de:49:b8:
29:1a:0a:e8:ea:30:2a:b4:f0:33:19:a0:ff:35:25:f9:81:86:
8a:97:3e:3c:d3:ca:61:88:71:3e:77:c5:a6:0a:32:c9:a1:bb:
40:e1:61:7c:2a:58:0f:e1:dd:0e:17:28:ee:75:fe:dd:52:0f:
b1:23:b8:dd:89:15:f9:28:46:51:ea:a5:4d:98:af:8d:9c:68:
9a:57:55:5f:bf:f4:9e:fb:4a:c6:a8:43:39:83:b1:49:90:5d:
1f:d1:6a:e2:93:3b:76:d8:8a:8d:8b:69:39:99:e8:90:96:15:
2e:7d:1f:d0:b1:a4:99:b1:25:58:dd:7d:12:1d:a8:50:aa:e0:
13:e2:84:c1:72:96:94:fe:da:46:c6:c4:e1:9c:e1:69:61:a2:
14:ce:fe:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org