Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kaKwZ_nMEqTYw8qGrB1jYHIVhbM.roa
File: kaKwZ_nMEqTYw8qGrB1jYHIVhbM.roa (raw, json)
Hash identifier: CM0cQryIutJApfnLBwJjCBSAis/Pga3HNpTTygfxOjI=
Subject key identifier: 91:A2:B0:67:F9:CC:12:A4:D8:C3:CA:86:AC:1D:63:60:72:15:85:B3
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 08B3ABD3
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kaKwZ_nMEqTYw8qGrB1jYHIVhbM.roa
Signing time: Mon 18 Apr 2022 12:21:31 +0000
ROA not before: Mon 18 Apr 2022 12:21:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.188.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145992659 (0x8b3abd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 18 12:21:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91a2b067f9cc12a4d8c3ca86ac1d6360721585b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ea:1b:09:18:87:0d:1a:82:fc:39:a4:dd:ba:
a9:b2:6e:8a:bd:cf:98:11:42:31:f6:85:5d:97:69:
5d:c2:33:20:48:75:16:10:8b:54:0d:c7:64:09:d7:
47:b1:6a:96:00:50:c3:42:95:b0:f1:6a:83:8a:f3:
ea:fd:f5:52:a2:87:6b:5c:d6:ee:64:53:56:46:94:
bd:19:6a:4f:cc:52:9e:39:1f:2e:f2:fe:43:68:7a:
e5:18:80:b8:b3:8f:77:a8:1d:93:32:79:03:ea:ae:
29:82:ea:71:32:41:6f:4c:fd:5e:c3:89:26:79:d6:
20:25:b3:19:0a:bb:11:e1:b9:9a:96:20:d5:c6:4c:
ad:88:b6:52:45:43:e9:2d:f6:73:91:b7:16:62:4b:
e2:ae:bb:06:e1:7a:90:8a:c7:f8:a3:e1:66:3b:56:
30:94:4d:1d:bc:1e:3d:ec:e0:24:eb:06:ca:de:ac:
b7:84:ff:8f:5e:73:59:0f:02:db:0f:36:b9:ea:82:
d0:b1:ea:da:a3:21:a8:86:4c:bf:42:c4:6c:fa:82:
28:7b:a0:03:60:e7:af:ba:8f:51:8d:e4:fd:07:73:
0b:e7:70:f6:72:6f:51:16:7b:d7:ab:fc:d1:d6:38:
ab:26:12:b3:f4:a5:7f:d3:d7:d5:49:25:f1:77:80:
b5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A2:B0:67:F9:CC:12:A4:D8:C3:CA:86:AC:1D:63:60:72:15:85:B3
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kaKwZ_nMEqTYw8qGrB1jYHIVhbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.164.0/24
77.90.173.0/24
77.90.184.0/24
77.90.188.0/24
185.230.15.0/24
213.209.134.0/24
213.209.157.0/24
Signature Algorithm: sha256WithRSAEncryption
99:bf:3c:27:df:3e:15:7e:e6:2c:bd:f8:64:2f:b7:77:c2:33:
c7:d8:f3:07:c2:e1:d6:8c:59:f1:86:34:26:42:4c:82:8a:2d:
cd:13:06:f2:22:b4:2b:81:80:71:bf:4d:98:c4:34:ae:7e:32:
33:4d:ce:1f:0d:8a:2f:d9:30:5a:67:a1:ca:78:bf:49:a2:81:
8c:de:b2:53:12:27:19:00:ab:a4:09:c7:ad:8d:e5:a8:50:3f:
48:71:ce:29:bc:ab:fc:c6:c8:c9:d4:76:0e:05:cf:ca:2a:d2:
fc:df:3b:52:4b:ad:e2:b8:29:bc:28:35:61:76:57:ad:5a:df:
57:1e:a7:5b:ba:ed:8b:71:6f:68:d5:29:46:09:94:2b:17:98:
77:00:24:93:7a:79:de:e3:f0:ba:e8:69:0b:fd:d0:7c:7c:08:
4a:a6:7f:8b:b8:42:ad:eb:e1:7f:63:71:73:52:05:c3:95:9a:
f9:5f:ad:16:f8:e6:dd:04:68:d1:5a:55:b9:5b:00:dc:c5:94:
a9:6b:b2:0c:8e:c5:6b:2c:4a:14:67:ae:68:72:76:03:94:32:
82:d8:c5:97:83:0e:b8:a7:53:99:15:38:75:e4:39:21:fa:07:
b9:13:04:00:e8:77:30:aa:2c:b3:56:f0:30:0f:37:b4:28:55:
07:f4:c1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:25 2024 by rpki-client on console-ams.rpki-client.org