Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oiBiDJsZrT3q6TGFPQIBJZkUR0k.roa
File: oiBiDJsZrT3q6TGFPQIBJZkUR0k.roa (raw, json)
Hash identifier: v2VGTFem7mVTeosiVihInOwiGjlTDhV9f3O42QlSVZA=
Subject key identifier: A2:20:62:0C:9B:19:AD:3D:EA:E9:31:85:3D:02:01:25:99:14:47:49
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 08EC166C
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oiBiDJsZrT3q6TGFPQIBJZkUR0k.roa
Signing time: Wed 04 May 2022 11:30:05 +0000
ROA not before: Wed 04 May 2022 11:30:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149689964 (0x8ec166c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 4 11:30:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a220620c9b19ad3deae931853d02012599144749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fc:7d:15:4c:37:a2:09:45:b7:57:e9:1c:74:
77:53:e8:c6:92:4a:fe:0f:52:6d:62:1f:33:4e:9d:
9b:03:0f:a2:22:15:e0:7e:26:c0:84:99:99:dd:d4:
23:9c:0f:8c:e7:3a:c8:c8:45:02:0e:d0:2f:c9:ea:
63:a7:83:30:93:a2:7e:fd:3b:19:49:0f:0e:fa:55:
8b:72:9e:02:be:eb:e8:46:30:45:2a:d7:cc:b4:b4:
6b:bf:83:0f:0d:28:cc:c1:4c:88:e3:59:a8:d2:6c:
4c:4f:fd:dd:8b:99:b2:1b:dd:d7:5f:f8:0f:7a:66:
bc:15:08:ae:a0:07:9c:bc:50:c0:cc:e7:77:45:6b:
b4:97:cd:53:f1:12:c5:ac:e1:33:42:dc:2b:07:00:
f1:f6:f2:82:29:98:c6:2a:7d:4f:ac:e7:0d:37:97:
f2:d0:ab:1b:3a:05:bd:f6:d5:fd:22:e9:a1:5e:74:
7e:9a:3d:fe:c5:79:a9:5a:02:e5:10:1a:74:33:40:
27:b0:11:d9:41:a6:07:c6:66:4e:c1:17:e1:91:e0:
2e:d2:1d:5a:32:fd:73:79:3e:8f:b9:81:f7:97:a2:
71:33:7a:0b:17:8d:87:5a:7e:08:fa:a4:3d:4c:e7:
34:19:35:2c:86:74:44:d7:a6:d9:f5:0b:54:a8:35:
2c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:20:62:0C:9B:19:AD:3D:EA:E9:31:85:3D:02:01:25:99:14:47:49
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/oiBiDJsZrT3q6TGFPQIBJZkUR0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.152.0/24
77.90.178.0/24
77.90.180.0/24
77.90.185.0/24
77.90.191.0/24
185.230.13.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.146.0/23
213.209.156.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
6a:cb:9d:d8:f0:17:0a:c3:ec:c5:e2:fc:2b:96:d0:e9:c3:b7:
e0:27:6b:3d:a1:35:24:0b:9c:b9:52:cf:26:96:2c:ab:f1:b9:
59:58:5a:03:fc:1b:68:dd:fa:59:53:55:1c:02:2b:43:97:3b:
65:b3:76:79:5c:d4:c1:3c:d6:00:c9:98:ff:76:d9:33:7d:66:
bc:a2:f5:ad:8d:54:07:42:bd:4a:00:88:64:c2:ad:f5:ce:ff:
e8:fe:bd:fa:74:f3:9d:70:53:b7:40:61:49:21:1d:0e:18:38:
40:e2:6b:03:71:62:82:2a:b9:68:75:29:c9:5c:02:59:e6:36:
e6:f4:05:52:de:46:68:92:35:ea:6a:48:e3:d3:f1:4f:55:70:
5c:b2:73:74:bf:a8:7c:06:68:8b:e1:ec:b7:e0:63:d5:08:ee:
d3:cb:80:ae:b1:96:2c:10:1e:78:92:ea:59:86:0a:81:ad:4a:
84:51:67:64:3b:9f:a1:43:80:ae:43:fe:f0:7b:3f:84:8e:05:
2e:9d:19:3c:9e:72:38:4f:29:75:e0:04:ca:ef:73:58:b4:31:
0b:35:f6:87:a3:cc:67:c9:61:61:b7:9d:f4:6a:f9:ef:1e:fb:
fa:e0:ab:99:22:cf:73:90:9f:02:e3:91:44:47:8e:f8:03:fb:
46:49:a6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:06 2024 by rpki-client on console-fra.rpki-client.org