Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/w-YpvfYflgQNKfhU2t_jrie6fI8.roa
File: w-YpvfYflgQNKfhU2t_jrie6fI8.roa (raw, json)
Hash identifier: uNCvFmIs1LFlXsl2nS8h8F9uCLZWVCX6etRpJClvO3E=
Subject key identifier: C3:E6:29:BD:F6:1F:96:04:0D:29:F8:54:DA:DF:E3:AE:27:BA:7C:8F
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0181E46FE1149AB5E318DD131779567270F2
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/w-YpvfYflgQNKfhU2t_jrie6fI8.roa
Signing time: Sat 09 Jul 2022 19:29:06 +0000
ROA not before: Sat 09 Jul 2022 19:29:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 77.90.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e4:6f:e1:14:9a:b5:e3:18:dd:13:17:79:56:72:70:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jul 9 19:29:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3e629bdf61f96040d29f854dadfe3ae27ba7c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:1f:35:f6:f7:3d:4a:e9:aa:9f:fd:92:28:
fc:26:61:80:a2:81:eb:04:4c:68:4e:a6:fa:b3:96:
bb:1b:6e:58:67:1c:55:8e:cd:ca:7d:ba:f0:f4:aa:
5f:69:7a:a5:9f:20:b1:3a:d8:e2:cb:fb:b9:a2:a0:
80:cb:58:24:2b:01:4d:56:dd:88:9b:66:da:63:0c:
cb:aa:5d:4d:01:90:bf:6b:ed:41:d8:99:11:04:18:
3d:84:35:fa:4a:13:e4:c3:77:29:9d:85:a5:f4:e4:
fe:26:97:ef:80:ab:d5:1e:31:85:4b:e6:c3:94:eb:
73:e6:2b:df:f5:06:ab:cc:c0:1a:eb:2e:e3:bd:25:
17:16:ae:d7:df:3c:c6:ef:46:6c:6a:68:57:27:f3:
62:01:e2:3e:38:80:36:14:a7:1a:8c:f3:83:34:4c:
4f:48:ee:00:c8:a0:4a:52:e6:9b:27:4e:be:e4:00:
66:02:f3:f5:93:45:16:f8:15:33:77:a9:5a:6f:b6:
af:56:b7:7e:a0:b8:f3:e0:0e:c4:0a:9d:13:79:84:
a4:91:68:8c:8a:42:a4:50:df:7e:d8:e8:99:ee:46:
e2:38:e1:69:8a:bf:ee:b5:34:ef:a2:d1:aa:cb:6d:
35:9c:bc:02:d0:c2:1a:ad:e4:d8:3c:8b:ce:a8:d8:
a0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E6:29:BD:F6:1F:96:04:0D:29:F8:54:DA:DF:E3:AE:27:BA:7C:8F
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/w-YpvfYflgQNKfhU2t_jrie6fI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.173.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ad:79:8e:1a:a2:67:b6:ab:b8:4b:7d:d6:b2:07:48:3b:92:
3a:cc:51:fc:ca:6f:9b:33:2c:da:c7:15:5d:22:bb:cc:81:fc:
08:1f:a8:77:a6:d6:8a:57:8e:f3:9c:97:cf:98:d7:0c:02:46:
65:4f:94:c2:50:c4:54:85:50:e4:0a:b1:8b:ce:26:b3:52:c0:
1a:96:5e:c2:2b:01:48:d4:6c:e5:ae:3f:18:31:bf:c5:d4:1b:
d0:f1:43:5a:21:39:be:ef:1b:93:18:e4:e6:78:ce:a0:24:54:
2d:72:62:16:10:e5:d7:85:b5:6d:c0:ed:04:3d:ca:d7:fb:0b:
93:17:fc:a7:e2:b7:c7:79:d0:41:bc:7c:6e:55:07:22:40:2b:
0a:6a:f0:62:07:04:ca:9e:26:ac:ab:c6:64:4e:4b:83:26:18:
88:aa:65:90:21:a9:3c:a8:59:e7:e4:f2:4c:95:66:fa:46:e8:
44:35:f7:29:4c:34:4f:ed:e4:5e:e5:16:c9:d8:e4:31:cc:29:
ce:39:44:91:f5:ed:51:54:44:7c:86:13:e9:50:09:f7:a6:c0:
50:b7:04:c6:da:3d:b5:f6:0e:cc:47:c8:13:84:40:f0:2c:d8:
fd:a8:9f:04:90:8f:01:a6:a3:42:92:02:fd:3e:32:81:d2:ef:
2f:5c:e3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org