Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/uMS-bQIiZXwCIORkwlASSKTizGk.roa
File: uMS-bQIiZXwCIORkwlASSKTizGk.roa (raw, json)
Hash identifier: Phu8G88QF631qTYNkTmkwii/K3AA62jbzpY42Ikw5lI=
Subject key identifier: B8:C4:BE:6D:02:22:65:7C:02:20:E4:64:C2:50:12:48:A4:E2:CC:69
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01826E2576F050D155C66C9232DC05223D97
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/uMS-bQIiZXwCIORkwlASSKTizGk.roa
Signing time: Fri 05 Aug 2022 13:15:25 +0000
ROA not before: Fri 05 Aug 2022 13:15:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.155.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:25:76:f0:50:d1:55:c6:6c:92:32:dc:05:22:3d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 5 13:15:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c4be6d0222657c0220e464c2501248a4e2cc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cc:6e:a5:56:06:bf:38:f0:1d:70:ab:14:d7:
a0:f5:39:78:89:f7:85:9a:d3:42:fe:b2:81:dd:7e:
6b:bb:f1:43:1d:30:ee:23:45:42:ed:59:9c:01:a0:
0a:00:5f:9d:09:22:4c:28:e8:e0:78:91:d7:30:61:
35:1c:70:12:bc:84:ab:35:6f:37:7c:25:52:cf:9a:
0a:ca:a1:ea:29:4a:6a:f5:55:6f:74:8d:10:09:ac:
2a:0b:04:07:62:17:32:94:d2:7d:09:76:1b:53:d6:
43:80:35:2b:69:92:44:14:0b:ef:83:66:e9:49:dd:
9e:6c:07:f5:da:8b:cb:b6:85:74:48:2e:10:db:e8:
85:04:6d:87:fe:59:e7:4b:e5:e8:e3:87:63:8c:95:
87:9a:e5:50:f2:6c:78:76:c8:38:23:91:4c:eb:b9:
bf:d9:63:4c:ce:8b:80:6c:62:ab:fd:d6:54:4d:5a:
79:68:62:06:cd:13:8f:40:fe:30:85:ae:74:7e:5e:
3b:06:f1:6f:54:58:0e:fd:1d:61:fc:d5:7d:d0:a3:
e4:55:d5:3a:0d:63:9b:ce:09:9c:7d:53:4f:a9:6e:
9b:7b:a0:aa:18:0a:33:be:95:5f:87:51:e8:74:1b:
c7:4b:c9:80:5f:44:fe:b3:c8:61:a2:92:95:44:1e:
76:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C4:BE:6D:02:22:65:7C:02:20:E4:64:C2:50:12:48:A4:E2:CC:69
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/uMS-bQIiZXwCIORkwlASSKTizGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.155.0/24
77.90.184.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d7:ad:ba:7f:09:e1:8f:a6:6f:76:42:a4:c4:d1:25:88:34:
b9:c5:ea:e1:99:00:0d:0d:a5:33:28:c8:a3:62:9f:57:55:72:
4d:b4:b4:58:c2:ac:13:cf:e4:38:68:d9:a5:ad:7f:02:a4:6f:
f8:bc:c9:f5:9c:40:b2:50:f2:79:25:52:b1:08:e7:3c:1f:90:
4c:44:73:cb:07:5a:e4:8b:36:58:72:e9:53:75:a5:26:c7:8c:
04:73:cb:cc:50:90:bb:ec:dc:92:61:21:de:fc:b4:c1:17:93:
4c:6c:08:46:60:22:e1:39:5e:a7:1f:b2:39:d9:6e:06:c4:4f:
d4:08:d6:99:24:63:d7:54:fa:0a:7e:4b:6f:0c:9e:10:42:48:
48:40:ad:19:12:4e:e0:95:38:85:87:30:3a:b3:0e:ee:66:7a:
ff:59:c9:91:d3:cd:fe:0e:0e:33:11:7f:8c:6a:cd:6b:64:2f:
9f:04:6e:da:76:ec:a3:2e:fe:00:c9:1a:fd:a1:12:6e:f2:6d:
4e:fd:06:92:e1:5e:ef:47:24:fe:8d:90:3b:c5:63:3e:17:47:
a0:23:48:7c:db:7b:9d:2c:6e:fe:2f:7a:f8:30:7a:3b:98:ec:
a4:06:79:ea:28:5a:4c:2c:c3:e4:ec:bb:83:b8:b9:70:79:46:
c9:91:21:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org