Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/jqyIaMUCv0BffjA3DeoMvwmGWbs.roa
File: jqyIaMUCv0BffjA3DeoMvwmGWbs.roa (raw, json)
Hash identifier: aTtUwIkPGlEWFPeCi9t1GzXzNRdE1tFN3Vm7VrBWhPw=
Subject key identifier: 8E:AC:88:68:C5:02:BF:40:5F:7E:30:37:0D:EA:0C:BF:09:86:59:BB
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0962CA51
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/jqyIaMUCv0BffjA3DeoMvwmGWbs.roa
Signing time: Wed 01 Jun 2022 07:44:20 +0000
ROA not before: Wed 01 Jun 2022 07:44:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157469265 (0x962ca51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 1 07:44:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eac8868c502bf405f7e30370dea0cbf098659bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cf:de:5b:96:d0:8e:a0:31:fd:be:76:78:00:
1e:55:6a:cb:27:48:24:0a:46:76:a5:f2:f9:55:c7:
88:58:5a:10:d7:84:da:f4:3c:2c:b9:55:da:4c:ea:
6a:9b:8a:92:ad:03:1c:b3:19:13:f8:a8:9c:ef:bd:
fa:18:cd:bc:cc:fb:5a:51:50:60:53:86:10:9f:c1:
28:a7:44:ea:95:39:6d:f7:bb:7a:4e:7d:7a:9e:85:
d2:05:2c:a1:98:db:30:2c:82:9b:fb:71:d0:53:ba:
4f:cf:64:e9:3b:66:39:46:1e:3f:92:22:25:31:d9:
9f:0c:0a:15:2d:4d:21:dc:fd:75:27:26:61:8a:35:
d2:cb:1e:3b:57:9c:6c:4a:be:ed:f4:f5:af:1e:b2:
f3:d2:53:d8:f3:72:8c:37:54:30:5b:b2:8c:78:f1:
07:2f:a2:d8:87:72:a5:aa:ac:9b:eb:5b:ed:ce:d3:
db:cc:0d:0a:87:20:71:61:32:52:0e:f6:1d:0d:e0:
e1:23:41:a6:06:06:4d:0c:38:25:4a:07:34:28:c1:
b1:f8:c4:75:35:a1:27:13:74:ea:d6:b1:54:f5:de:
06:34:0f:99:33:8a:1d:70:ab:e6:3a:01:34:04:b9:
5c:23:30:a6:cc:c4:ef:ff:da:eb:9b:8d:65:5a:96:
2a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AC:88:68:C5:02:BF:40:5F:7E:30:37:0D:EA:0C:BF:09:86:59:BB
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/jqyIaMUCv0BffjA3DeoMvwmGWbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.164.0/24
77.90.178.0/24
77.90.181.0/24
77.90.191.0/24
185.230.13.0/24
213.209.130.0/24
213.209.133.0-213.209.134.255
213.209.136.0/24
213.209.138.0/24
213.209.144.0/24
213.209.156.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
53:7f:4d:c0:67:4b:ea:ad:a7:07:23:bd:e6:26:99:09:ab:0b:
77:3c:66:53:29:e1:85:3b:6c:86:00:e9:8e:66:fd:44:c7:f7:
7c:19:8d:f3:d5:ff:cd:14:9e:75:92:2c:d7:8d:02:a6:32:08:
16:25:ff:b5:23:79:50:56:18:a2:fb:5c:8c:a5:d7:c8:64:58:
f9:e3:4c:e1:b2:f1:17:00:89:ba:e1:1a:79:77:f9:6e:d6:e5:
be:4c:d3:e1:a1:ab:fb:35:f1:eb:e2:da:7a:ad:0b:a1:c0:b6:
ee:36:eb:23:5d:7f:94:f4:72:75:b1:8c:cd:6a:69:eb:72:61:
7e:b9:e4:09:4a:2d:a3:c2:b0:ab:f6:1d:6f:4d:10:6d:e2:c4:
cc:f2:7d:82:71:a7:1e:87:df:48:40:f9:07:c7:80:e1:38:ae:
3d:60:75:92:6a:4a:57:30:a9:fe:0f:c5:60:5e:35:f5:a3:d8:
10:45:3e:14:41:3c:29:b9:4c:33:a1:e7:08:79:97:92:f2:a1:
d0:15:84:5e:a7:1a:ba:29:c3:4f:c0:8e:26:03:9d:0a:27:c1:
5a:7a:a1:92:34:4d:6f:e0:28:f5:2b:ab:ff:14:b2:49:dd:d9:
df:13:cc:06:19:d5:d8:4f:3a:cf:21:53:ef:2d:47:f7:af:8a:
08:88:f3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org