Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/mBywz0-Yl_0fSn16UkLmrMIWfBI.roa
File: mBywz0-Yl_0fSn16UkLmrMIWfBI.roa (raw, json)
Hash identifier: y98j9aOFA/za/2aaNxF3mIP0L+9YxpOy1YccW5gYl3s=
Subject key identifier: 98:1C:B0:CF:4F:98:97:FD:1F:4A:7D:7A:52:42:E6:AC:C2:16:7C:12
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0A05FB23
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/mBywz0-Yl_0fSn16UkLmrMIWfBI.roa
Signing time: Tue 05 Jul 2022 07:18:25 +0000
ROA not before: Tue 05 Jul 2022 07:18:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 77.90.150.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168164131 (0xa05fb23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 5 07:18:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=981cb0cf4f9897fd1f4a7d7a5242e6acc2167c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:ca:65:04:2f:95:42:93:d2:97:24:7f:92:
7a:2f:c9:e2:8f:e7:0b:f2:f2:97:55:28:62:57:87:
cf:b6:0c:1e:4d:63:8c:a9:47:20:e6:d2:2a:85:2a:
1d:54:00:2a:6e:6d:0a:33:dd:ff:d3:0e:40:30:e6:
a1:f1:38:77:6a:f9:7d:44:9c:dc:3b:b3:45:61:86:
c3:39:e0:9f:50:2a:c1:30:4b:e9:c9:4a:b3:41:94:
03:d9:3e:5c:32:ab:0c:ac:be:19:5f:dc:e9:86:99:
f5:be:d7:ed:50:07:12:8d:d5:31:31:e2:39:56:31:
c4:b3:a9:5d:52:5b:7f:a9:60:ba:fe:a5:8f:69:26:
55:1f:60:43:d6:66:e5:6e:c4:16:99:91:69:7a:af:
0d:7b:d5:47:aa:0a:cb:df:4b:21:28:86:50:51:f0:
dd:7e:73:9a:d3:ae:a1:23:cb:ab:02:6d:a7:15:09:
9f:c3:58:80:48:ef:6a:44:5d:fe:09:27:14:e2:f5:
9b:f6:a2:88:74:0a:f3:e7:10:00:29:d8:c5:81:77:
03:2b:e4:67:f4:bf:df:d2:8e:95:30:ef:49:b5:c4:
26:67:6b:74:d9:83:63:1b:ad:0f:96:a8:b8:be:c1:
0d:7f:98:ef:43:bf:cc:84:47:9c:a0:48:bf:b8:e3:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1C:B0:CF:4F:98:97:FD:1F:4A:7D:7A:52:42:E6:AC:C2:16:7C:12
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/mBywz0-Yl_0fSn16UkLmrMIWfBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.150.0/24
77.90.173.0/24
Signature Algorithm: sha256WithRSAEncryption
90:be:21:b7:23:c7:44:3c:d1:7f:b4:27:64:bf:ba:6f:2a:21:
a7:99:8d:4a:79:4b:b3:00:3e:36:ce:57:90:5d:47:44:0c:57:
f7:9e:4e:6b:ea:88:e1:d6:d1:67:4a:66:5c:e1:8a:5f:e7:22:
70:f4:ca:96:cb:8c:7d:c9:0d:5d:ce:6e:7c:50:71:f0:09:1b:
b1:61:2a:cd:18:bf:64:c2:f6:b3:40:20:3e:77:44:e9:ef:72:
06:6f:75:a0:de:7b:df:e8:d4:bc:3f:fb:53:80:9b:bc:e0:1e:
24:52:18:88:9a:29:ff:87:d6:aa:d8:8c:50:80:f3:ae:58:9a:
db:06:f2:14:ef:75:7d:d6:02:07:8e:e2:a0:0f:45:66:ec:8e:
3c:a9:08:6d:e5:0c:e5:83:e9:bc:47:19:b5:54:b4:86:da:25:
bc:3c:61:dd:f1:9e:6c:a5:88:56:43:1b:8b:6f:52:b9:a2:b1:
05:e8:d9:4c:57:21:86:75:5f:ba:9d:38:ef:39:c2:ca:18:82:
ec:60:f9:4e:cd:c9:34:a4:6c:59:67:7b:2c:b2:1b:5f:ba:bb:
1d:b6:47:fc:9d:95:1e:ab:0a:32:9a:86:42:74:68:19:02:ae:
c3:74:e7:5a:1e:3d:bd:5d:39:c4:cc:50:8b:90:0b:57:9d:d3:
62:0b:47:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org