Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/foVm3DdzBnXQXttl9EJTO5WQZx8.roa
File: foVm3DdzBnXQXttl9EJTO5WQZx8.roa (raw, json)
Hash identifier: LNOrj3LqGznBFftx29Bwb2IHEER1SQeQkkqS/usLIOE=
Subject key identifier: 7E:85:66:DC:37:73:06:75:D0:5E:DB:65:F4:42:53:3B:95:90:67:1F
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 094DB903
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/foVm3DdzBnXQXttl9EJTO5WQZx8.roa
Signing time: Tue 24 May 2022 15:54:13 +0000
ROA not before: Tue 24 May 2022 15:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39144
IP address blocks: 213.209.150.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156088579 (0x94db903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 24 15:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e8566dc37730675d05edb65f442533b9590671f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:54:93:8e:f6:d4:4b:42:4f:25:2f:7e:75:
46:9c:04:b1:f4:bf:14:9a:84:f4:5c:12:9b:16:2b:
5e:9f:ae:a4:12:2d:09:5d:ad:0c:2e:d8:f8:ec:fd:
77:18:a7:5a:b7:8a:29:72:3c:a2:fe:9b:ae:0c:42:
0e:7e:4d:0b:c6:4b:de:29:d7:ba:2c:86:81:49:c6:
5d:f4:66:bd:96:a0:0e:05:ed:8e:37:48:39:8f:72:
5a:81:c3:09:9f:e5:99:56:9a:ad:7d:ba:ad:80:2d:
b8:01:44:54:5f:00:1a:a4:ae:a2:a0:b5:9b:f3:8b:
d9:1f:0b:ce:a8:f6:ab:26:6d:14:4f:5b:50:52:06:
d1:18:84:bf:4d:1c:bb:fa:55:17:da:11:97:2f:17:
36:64:3c:a2:08:0d:3a:98:cf:41:1f:ba:af:43:c8:
37:14:92:95:5a:15:61:8a:7e:15:fa:d8:ad:16:94:
57:02:3f:62:98:c9:c3:94:0d:e6:77:55:1d:39:99:
9b:04:a1:0d:a7:e4:57:05:63:df:ed:ec:60:18:7b:
f1:4f:94:56:0e:b8:ea:cf:c1:b3:28:89:9a:aa:e2:
ac:0a:f6:27:f6:5e:53:86:e9:9b:50:bc:1b:6f:87:
ae:fd:f8:d4:ba:f3:4d:de:2c:aa:73:ee:68:d9:cd:
f7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:66:DC:37:73:06:75:D0:5E:DB:65:F4:42:53:3B:95:90:67:1F
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/foVm3DdzBnXQXttl9EJTO5WQZx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.139.0/24
77.90.152.0/24
77.90.180.0/24
213.209.150.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:8f:dd:61:87:44:45:e3:96:da:c6:7c:c7:76:9d:ed:51:9e:
d6:38:91:e8:5a:7c:a9:84:3a:08:37:5d:51:27:45:e9:cc:de:
43:d6:58:00:af:32:54:08:90:e3:08:69:19:41:49:e7:89:2e:
33:ad:a7:a5:11:9c:7e:f6:89:f8:3f:39:cb:17:e0:a1:4c:de:
c1:02:14:45:3c:2b:a4:ea:5c:66:02:01:df:67:26:5d:72:ba:
24:b5:41:6d:0a:7d:bf:f1:c3:dc:3d:48:9f:8a:17:b0:a5:12:
0a:f9:b4:6b:9f:c2:f6:82:56:1e:b6:ee:21:3e:47:9a:ea:ae:
d4:1e:8a:23:32:4c:a8:3a:2c:d5:14:38:c7:25:d9:bb:bf:fb:
18:1f:f0:33:66:58:a2:ae:25:de:57:da:99:7d:94:a1:70:8f:
d7:37:16:dc:c8:21:67:7b:1b:b8:eb:42:b0:de:bd:7c:31:7e:
03:ce:99:5c:5d:64:c9:47:9c:ff:44:be:f4:7c:eb:f7:e6:e4:
1d:fa:6b:3e:e3:58:cc:a9:c1:73:6b:7b:9e:ea:1a:fd:5a:40:
38:f4:7d:df:3c:d8:d2:27:9e:44:0a:49:0c:d1:61:24:8e:6e:
b1:8e:2e:68:e9:4d:4e:fa:a5:4a:91:f8:22:e1:2a:c8:de:4f:
ab:2e:c0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:25 2024 by rpki-client on console-ams.rpki-client.org