Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/pTi0VSZ6qAJVbJiYMDJqnqqbRDA.roa
File: pTi0VSZ6qAJVbJiYMDJqnqqbRDA.roa (raw, json)
Hash identifier: 3EwYu4165mZ61QscZNF7tYajpODd/bSjvnkB8YMLw2Y=
Subject key identifier: A5:38:B4:55:26:7A:A8:02:55:6C:98:98:30:32:6A:9E:AA:9B:44:30
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018230EB9AE48AEFAFFA193F8AE3BEF9B03B
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/pTi0VSZ6qAJVbJiYMDJqnqqbRDA.roa
Signing time: Sun 24 Jul 2022 15:55:23 +0000
ROA not before: Sun 24 Jul 2022 15:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39144
IP address blocks: 213.209.150.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:30:eb:9a:e4:8a:ef:af:fa:19:3f:8a:e3:be:f9:b0:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 24 15:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a538b455267aa802556c989830326a9eaa9b4430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6b:81:0b:d8:b4:e4:62:c1:13:96:7e:80:0d:
3c:b4:ed:2a:13:ad:ba:70:fc:2c:85:e0:9d:6a:26:
3a:20:3e:fa:36:a2:8f:99:ed:a4:0c:19:37:7c:04:
f1:41:ac:9d:5e:8c:7b:55:e0:fd:6c:17:d3:0b:30:
93:49:72:7c:63:eb:63:14:68:0a:13:6f:a2:96:e1:
9b:42:ef:64:a9:b0:9b:72:bd:a9:cd:d0:78:6e:6d:
a5:74:c2:f9:73:a2:65:8f:09:3f:8e:50:2b:0a:4e:
0a:bf:93:46:28:4a:5f:fa:d4:05:97:33:f1:cc:f0:
a2:3b:26:69:e0:1d:f8:23:47:71:ff:de:10:f1:3c:
0a:03:40:a4:4c:10:f7:c6:0f:f9:d7:30:60:b1:b8:
32:10:a1:23:89:3f:75:a5:09:a2:24:20:29:6b:66:
d8:61:4c:71:e1:df:4e:4b:4e:b7:da:f9:93:3f:44:
7c:ee:da:30:fe:cf:ad:dd:ea:cc:da:31:0b:1c:4c:
e2:9e:de:0b:60:72:26:1f:f5:42:38:b5:03:b1:ae:
8b:73:34:5e:1b:6c:e4:ec:0a:d6:bc:b2:48:b9:b4:
13:3d:eb:ba:02:6a:34:ec:98:ab:dc:d8:77:ca:17:
06:ed:d5:7e:82:cc:c6:5a:bc:36:47:cf:8c:a3:b3:
3b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:38:B4:55:26:7A:A8:02:55:6C:98:98:30:32:6A:9E:AA:9B:44:30
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/pTi0VSZ6qAJVbJiYMDJqnqqbRDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.180.0/24
213.209.150.0/24
Signature Algorithm: sha256WithRSAEncryption
83:85:4a:d3:36:ba:15:1c:a7:e2:11:e5:7e:93:3a:1e:84:18:
25:76:39:8f:67:3d:d3:43:41:70:26:15:89:78:4a:c7:c4:78:
86:4c:81:c4:1a:c8:92:38:d4:20:25:0f:50:d1:15:d8:09:ad:
df:7d:74:4a:55:11:2f:c4:0c:cd:27:f0:fa:61:60:e3:78:71:
a8:2f:87:e7:91:1f:77:dc:2e:96:95:53:9e:f0:61:d1:70:c9:
fb:f9:b2:ba:d0:00:08:77:42:63:23:2f:4c:ca:31:0b:20:7e:
5d:fb:e6:72:0f:33:5e:c1:ec:43:77:1d:09:88:70:d3:a1:f8:
dc:a1:2c:4e:71:e1:5b:b6:9d:9f:8c:c1:6a:ac:49:f3:3a:63:
37:bf:bb:c5:ca:7b:e2:d0:77:c3:70:08:31:42:9a:06:ca:1f:
39:cf:7b:49:fd:0f:77:98:07:fb:47:7c:f2:3d:03:57:a9:fe:
81:8c:9f:ac:3b:8c:38:50:56:21:fc:6e:75:58:ec:9b:e4:5d:
44:a5:88:39:4d:ef:03:6f:e9:11:f7:89:47:01:d3:2d:6f:2a:
cd:5d:8f:be:cc:10:cd:bf:51:89:fd:34:d9:31:65:be:cf:e7:
4d:ad:41:1a:38:39:2f:80:39:30:72:ae:f3:cf:2e:c7:84:9c:
f5:ab:53:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:06 2024 by rpki-client on console-fra.rpki-client.org