Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oXlFVhCusGNwUbYSENCwEjWjUjc.roa
File: oXlFVhCusGNwUbYSENCwEjWjUjc.roa (raw, json)
Hash identifier: GhiT4ycx4CwVvMomPzlr1cZ228PDI4vbIiwC6t79xj8=
Subject key identifier: A1:79:45:56:10:AE:B0:63:70:51:B6:12:10:D0:B0:12:35:A3:52:37
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09384D5D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oXlFVhCusGNwUbYSENCwEjWjUjc.roa
Signing time: Thu 19 May 2022 06:34:17 +0000
ROA not before: Thu 19 May 2022 06:34:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.188.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154684765 (0x9384d5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 19 06:34:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a179455610aeb0637051b61210d0b01235a35237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:a5:e7:b2:b3:0f:12:0f:5e:1a:93:04:4b:
95:d5:4e:78:3f:f1:01:52:42:ac:4a:75:9d:b7:3a:
81:14:13:ca:ad:72:18:97:10:4f:61:26:1f:10:2b:
a0:4e:20:c9:a0:88:3f:d8:c1:37:59:17:7c:b0:b3:
a0:36:87:2c:90:98:d0:b9:a1:27:c0:66:01:97:c7:
a0:8a:58:7f:ff:34:7e:93:c7:6e:2a:80:90:b6:36:
38:a5:84:d7:d7:55:c0:94:28:65:f3:1c:90:93:ba:
c9:ac:47:cf:21:67:99:25:63:68:af:fb:93:b8:d9:
52:74:63:74:32:6d:e6:69:99:80:cf:9a:0f:a0:68:
94:41:25:51:fb:43:5c:cf:9e:f0:e3:91:04:af:56:
22:a7:5c:a7:8a:4e:be:af:8e:5d:a4:a0:e1:ff:ca:
42:c0:d8:43:37:18:71:d8:84:3b:20:1e:d8:40:72:
b8:19:89:6f:a7:a9:63:c9:61:02:78:9e:2f:1c:ac:
9d:a4:21:cb:c0:9f:34:73:b4:f1:ec:b9:2a:9b:b4:
d8:e7:b7:3b:c4:23:35:17:6b:2b:78:5c:1d:2e:60:
39:6c:6b:52:9e:5e:e0:a3:e7:a9:58:ab:32:52:13:
ce:ec:39:87:81:ac:4d:1e:b3:e8:7c:d0:78:a4:33:
05:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:79:45:56:10:AE:B0:63:70:51:B6:12:10:D0:B0:12:35:A3:52:37
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oXlFVhCusGNwUbYSENCwEjWjUjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.155.0-77.90.156.255
77.90.173.0/24
77.90.184.0/24
77.90.188.0/24
185.230.12.0/24
185.230.15.0/24
213.209.157.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:7b:10:1a:78:57:4a:e5:d7:ff:dd:b2:81:8c:eb:80:19:88:
3e:63:3b:f0:88:08:5a:9b:07:5c:2b:d1:3b:4c:fb:93:ba:a4:
3f:32:be:ec:fb:77:4e:54:c3:e5:61:17:e1:1a:41:97:f2:91:
7c:f0:95:fe:c9:9f:59:e3:68:d4:81:32:90:8f:dc:02:f5:0e:
20:35:d5:05:5c:d6:4c:0f:71:c4:e6:35:b4:27:ee:d9:e0:c2:
8f:93:87:1b:b2:e4:c1:8c:b2:ed:36:6d:c1:86:e2:1b:4e:48:
47:9d:e0:4b:3b:e2:81:20:6a:75:61:57:28:bb:54:9b:dd:be:
8f:9c:a9:ab:56:d6:34:68:ac:9e:79:e0:78:38:2c:bf:e9:1a:
17:e3:9b:88:9e:af:55:17:c1:8b:9a:d9:63:48:df:f5:7e:3e:
e8:ce:37:51:c9:e6:9a:f3:2d:d3:e6:a7:2f:70:57:cd:ab:a4:
16:4c:4b:3e:ec:87:21:bc:62:53:59:72:17:ec:d1:03:18:1d:
91:b2:79:97:4c:0f:7c:aa:0b:ee:2c:24:71:b1:7a:d3:53:22:
1a:19:a4:e3:5a:76:ec:1a:af:00:b5:37:04:9b:91:8d:a0:fb:
31:a0:e7:26:d6:74:37:79:c4:46:92:1b:1c:6b:5b:90:92:78:
ab:fd:cf:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org