Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/nrCeSHbtZY1aN7Zfi8BV6ihzlcM.roa
File: nrCeSHbtZY1aN7Zfi8BV6ihzlcM.roa (raw, json)
Hash identifier: cq7IJGLYxBxzrpKG5VlkDR4p/6Ftklmbeg0BNRYcNX4=
Subject key identifier: 9E:B0:9E:48:76:ED:65:8D:5A:37:B6:5F:8B:C0:55:EA:28:73:95:C3
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 07714B7A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/nrCeSHbtZY1aN7Zfi8BV6ihzlcM.roa
Signing time: Mon 14 Feb 2022 16:28:14 +0000
ROA not before: Mon 14 Feb 2022 16:28:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 213.209.144.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124865402 (0x7714b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 14 16:28:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eb09e4876ed658d5a37b65f8bc055ea287395c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:64:e2:5e:6c:e9:ce:5d:bf:04:3a:56:f1:72:
7e:55:cf:d2:fe:70:fb:7c:72:bc:09:e7:8f:7a:45:
a2:32:95:d9:8a:bd:32:7c:3b:ad:f2:7f:b7:ea:83:
2f:42:ba:a5:5a:6f:93:36:d4:d4:98:e4:0f:2f:41:
70:b1:64:6d:02:71:59:a8:82:0e:07:6a:4a:92:b7:
f9:fd:ac:98:af:a9:1c:af:0c:79:79:a8:6e:cd:33:
1c:d6:67:83:51:1c:21:44:2e:3a:42:b6:90:50:c1:
76:eb:74:3c:ff:77:dc:93:28:62:18:46:c9:b8:d6:
c1:0b:68:77:ac:73:29:24:c1:40:25:4b:35:8a:5b:
8d:3f:99:a4:02:59:48:de:5c:5f:5c:b7:6a:76:28:
15:66:70:49:3b:6c:ca:42:7e:23:bf:94:be:4c:06:
a0:b3:35:8e:01:f1:9b:95:10:37:cb:8e:57:65:50:
ca:4f:66:ed:60:b8:e4:4b:f1:f9:f7:21:9a:b5:85:
65:32:f2:ef:48:62:97:6a:6d:f6:cd:44:ad:1f:75:
46:a1:36:05:3b:95:f2:c4:cb:62:1d:5a:2d:db:80:
1c:5c:26:56:cf:76:07:97:e4:0d:b8:5e:d9:f8:4e:
ea:75:32:32:36:de:84:33:45:44:8a:8b:03:29:61:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B0:9E:48:76:ED:65:8D:5A:37:B6:5F:8B:C0:55:EA:28:73:95:C3
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/nrCeSHbtZY1aN7Zfi8BV6ihzlcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.164.0/24
77.90.173.0/24
185.230.15.0/24
213.209.144.0/24
213.209.146.0/24
213.209.158.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:cf:a1:23:eb:b2:06:d5:fa:74:60:19:8f:b3:19:79:a8:65:
e2:8a:ed:aa:2c:7b:db:cb:37:39:c9:af:13:1b:4f:dc:4c:66:
e1:fe:46:f1:22:98:d9:24:d3:62:c8:44:04:00:e2:ac:eb:6f:
47:f5:6b:3a:1b:0c:f0:d3:77:a0:c8:28:02:9b:26:e1:5a:51:
61:b9:25:46:50:ed:9d:07:06:d5:36:f4:09:5a:44:a4:56:3f:
bf:64:0c:ff:2c:e4:15:5a:c8:1e:b1:43:c3:3f:76:01:9e:98:
0f:23:02:b4:33:6d:8d:c0:3b:0b:8d:04:15:f0:fe:b6:3b:e1:
dd:f7:ce:3c:c2:a2:6d:d6:37:a3:3d:29:1d:f9:da:b1:f1:88:
8d:ce:02:2a:5c:22:26:22:02:06:e3:00:15:a9:ac:ec:19:a7:
2a:2d:6c:1c:c6:df:3b:be:27:7f:bd:46:dc:c7:5e:7c:38:0d:
16:cc:b5:e4:8d:d8:0a:4a:49:e6:c3:df:3b:f0:ed:4f:e4:ff:
cd:02:be:e3:fc:72:7e:ae:10:f7:3b:b6:ce:58:9a:b2:1e:ba:
a9:05:33:40:70:12:c7:20:8d:57:7d:94:8e:46:19:7f:ca:d7:
65:87:15:d0:e5:4c:5b:de:ae:d3:2e:cb:ef:98:f5:48:a3:79:
04:aa:7b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org