Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/rHOqYceu-XLStysQCfIDqOJ5mkQ.roa
File: rHOqYceu-XLStysQCfIDqOJ5mkQ.roa (raw, json)
Hash identifier: H06q+pqCsoXhtEbyOrrbD2l/9OzSlLOMAUQm+p1VRbY=
Subject key identifier: AC:73:AA:61:C7:AE:F9:72:D2:B7:2B:10:09:F2:03:A8:E2:79:9A:44
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0919A28D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/rHOqYceu-XLStysQCfIDqOJ5mkQ.roa
Signing time: Fri 13 May 2022 07:43:02 +0000
ROA not before: Fri 13 May 2022 07:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152674957 (0x919a28d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 13 07:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac73aa61c7aef972d2b72b1009f203a8e2799a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:83:e8:c3:02:16:87:b0:36:31:19:a6:a5:a0:
51:7a:e8:94:3a:09:f9:19:7d:fc:bf:d4:95:19:f0:
58:cf:f5:58:11:05:ce:99:03:d6:4a:91:89:55:ab:
6d:0b:d5:6e:6c:4b:71:aa:7d:a4:4b:8b:b4:2c:cf:
2c:e8:d3:f2:41:74:82:fb:52:69:56:12:c5:8f:a9:
3b:6b:6a:83:91:f8:b0:89:c5:27:33:dc:82:b3:5b:
15:1d:0d:f4:64:df:6d:30:ca:c4:b9:cc:dc:74:94:
ab:aa:fc:c6:4b:ab:aa:55:e0:ab:5c:12:d7:60:96:
15:ac:57:fc:63:3c:b1:23:53:6a:02:f2:fb:c3:41:
61:be:1a:2e:b4:43:97:25:8b:ab:33:3e:01:2e:9f:
83:88:2e:54:f1:c7:8b:bd:c9:53:43:91:89:6d:c4:
0c:4f:aa:a3:6f:90:55:9f:48:61:5b:fa:3d:21:02:
3d:f2:d1:18:d3:f8:f4:70:c7:2e:e1:b2:f2:c4:e6:
c9:49:95:0a:b2:47:e2:55:09:2a:5c:14:79:bf:62:
26:b6:8d:79:8d:a4:f8:8c:38:c5:5f:1a:d5:ab:8e:
f5:e9:ec:a1:6a:e1:20:f6:b0:13:3d:ae:38:c8:77:
2d:89:05:6b:bb:c1:fa:36:17:51:9d:19:c1:33:8b:
ce:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:73:AA:61:C7:AE:F9:72:D2:B7:2B:10:09:F2:03:A8:E2:79:9A:44
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/rHOqYceu-XLStysQCfIDqOJ5mkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.152.0/24
77.90.154.0/23
77.90.164.0/24
77.90.178.0/24
77.90.180.0/23
77.90.191.0/24
185.230.12.0/23
213.209.130.0/24
213.209.133.0/24
213.209.136.0/24
213.209.138.0/24
213.209.144.0/24
213.209.146.0/24
213.209.156.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
6e:e4:77:8f:61:49:5c:c3:ae:9a:d7:54:87:fc:2f:5b:15:cb:
b5:5c:a1:b9:28:81:df:a7:db:f7:e2:89:c9:74:fd:de:6e:82:
c0:27:33:83:16:40:1a:2d:36:49:df:34:c4:2d:c3:03:03:e7:
2f:31:f2:53:fe:25:df:68:3b:93:03:0e:b0:2a:a1:d3:b8:30:
4a:78:92:c9:9e:42:8e:7d:05:54:ed:0f:e8:d9:4a:33:1b:ea:
5e:ac:d6:57:f2:32:ed:73:03:9f:00:47:e6:18:c6:c6:47:45:
21:fb:aa:53:8f:b5:61:e0:60:88:41:5a:94:96:b7:eb:4f:87:
1e:00:04:7d:65:7a:db:a8:75:63:89:39:a2:bb:61:4f:eb:d4:
9c:11:c4:f7:a8:89:a6:f1:4e:6d:fc:2c:00:89:f3:a9:f8:d0:
22:61:57:5c:1f:d7:5c:7a:44:58:5c:89:31:7a:b6:1b:8b:96:
4a:74:f8:26:e4:2f:66:e4:67:d1:ee:2c:70:ba:f8:ff:b5:6a:
eb:e6:31:d7:04:b5:28:09:32:3c:13:10:5b:56:fe:43:79:36:
17:69:62:2d:e2:5c:c9:76:18:a9:4c:ee:2d:cb:64:2e:61:db:
21:b4:e0:e9:57:8f:0d:e8:1e:05:69:1b:18:b6:73:c1:5c:b2:
2c:ba:f1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org