Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/wgIFOxhwUV7lAbseUfFv2Yin5Zg.roa
File: wgIFOxhwUV7lAbseUfFv2Yin5Zg.roa (raw, json)
Hash identifier: /UrV5WpwFPtgseRLKPetCnvobfom6nGPPjz1HFhyTH8=
Subject key identifier: C2:02:05:3B:18:70:51:5E:E5:01:BB:1E:51:F1:6F:D9:88:A7:E5:98
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 09D3491B
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/wgIFOxhwUV7lAbseUfFv2Yin5Zg.roa
Signing time: Thu 23 Jun 2022 12:50:56 +0000
ROA not before: Thu 23 Jun 2022 12:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164841755 (0x9d3491b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 23 12:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c202053b1870515ee501bb1e51f16fd988a7e598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:09:09:86:88:86:38:37:6a:72:3d:47:17:1b:
49:cb:26:b8:b0:63:8e:20:ad:d3:12:3f:31:7f:8a:
ca:d1:99:7d:64:57:a5:c2:33:1f:7d:1d:82:50:90:
b6:2d:0a:07:64:4a:3a:a6:f0:d0:56:31:ff:a7:06:
2e:69:57:7e:45:c4:4c:a4:ff:91:4f:e6:20:8f:d8:
66:75:56:96:4c:de:27:dd:0b:a3:1c:a7:23:a0:9b:
d9:84:41:6c:b4:ac:0b:00:55:65:ba:33:5a:4e:ac:
0a:a9:1f:be:f6:a2:8a:f2:76:55:37:c7:dc:ca:bb:
d7:aa:a9:fb:2f:44:4d:dc:bf:1a:9c:51:af:10:49:
68:ae:41:7f:91:d3:4b:f3:22:9b:59:a8:dd:0b:ae:
f3:f3:22:c1:41:aa:dc:ce:f2:12:db:a5:88:12:bf:
89:6d:3c:bf:9b:a9:1f:d3:33:11:29:54:b1:9a:e3:
a5:9a:94:af:d3:15:39:b9:cc:42:da:ec:8e:c9:1f:
e1:07:3a:fe:9b:f8:8e:2c:83:e8:72:f2:f5:13:ab:
25:ba:58:c0:3d:f0:4b:36:df:05:c2:84:b0:05:52:
31:a7:7e:75:32:d4:fa:81:0c:e9:fb:3d:11:29:dc:
d8:5f:f5:95:0a:ea:c8:81:83:cf:0f:cb:e0:88:e2:
27:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:02:05:3B:18:70:51:5E:E5:01:BB:1E:51:F1:6F:D9:88:A7:E5:98
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/wgIFOxhwUV7lAbseUfFv2Yin5Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.164.0/24
77.90.179.0/24
77.90.181.0/24
77.90.191.0/24
213.209.130.0/24
213.209.138.0/24
213.209.147.0/24
213.209.158.0/23
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
a8:a8:61:94:65:a7:53:3c:6c:f7:0e:11:34:a3:44:28:cd:90:
2d:5b:78:08:e6:34:1e:f8:e9:38:fc:26:44:97:d0:d0:f8:9a:
e1:9f:c6:28:02:ef:4f:c3:a1:ef:09:b1:8c:11:72:68:78:7e:
fe:13:f4:76:b1:2f:d7:66:72:62:ac:52:a8:11:81:8a:22:03:
01:82:6c:d5:d8:f9:32:a3:fe:fe:fc:43:09:12:59:8f:f1:49:
f1:a0:fe:49:32:b7:3e:7e:fb:8d:12:cc:33:ed:ab:c9:1d:02:
1f:30:cd:1e:c6:12:22:58:ab:c3:0c:ec:c2:97:eb:6c:d9:b8:
27:38:a9:06:09:9b:05:a8:66:a0:8c:be:30:44:f3:d2:92:5b:
d4:de:57:a2:ca:7e:79:aa:16:ea:c7:b6:dd:1c:86:99:67:99:
c9:7b:3d:13:09:42:5d:1a:5f:6c:41:26:f9:29:df:c2:d3:e6:
2d:1d:99:21:70:91:6e:80:90:45:df:7f:f9:39:0c:17:0d:99:
04:87:a6:15:a3:4f:e7:51:90:63:9c:15:81:78:3a:c0:a6:a3:
51:4b:43:58:69:40:5d:7d:d7:60:47:a7:ba:15:32:00:33:6e:
5e:d3:e1:b1:0d:9b:09:ba:24:04:9c:44:ea:f3:56:e8:83:75:
35:09:27:1b
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIECdNJGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDYy
MzEyNTA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzIwMjA1M2IxODcw
NTE1ZWU1MDFiYjFlNTFmMTZmZDk4OGE3ZTU5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO0JCYaIhjg3anI9RxcbScsmuLBjjiCt0xI/MX+KytGZfWRX
pcIzH30dglCQti0KB2RKOqbw0FYx/6cGLmlXfkXETKT/kU/mII/YZnVWlkzeJ90L
oxynI6Cb2YRBbLSsCwBVZbozWk6sCqkfvvaiivJ2VTfH3Mq716qp+y9ETdy/GpxR
rxBJaK5Bf5HTS/Mim1mo3Quu8/MiwUGq3M7yEtuliBK/iW08v5upH9MzESlUsZrj
pZqUr9MVObnMQtrsjskf4Qc6/pv4jiyD6HLy9ROrJbpYwD3wSzbfBcKEsAVSMad+
dTLU+oEM6fs9ESnc2F/1lQrqyIGDzw/L4IjiJ2MCAwEAAaOCApkwggKVMB0GA1Ud
DgQWBBTCAgU7GHBRXuUBux5R8W/ZiKflmDAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L3dnSUZPeGh3VVY3bEFic2VVZkZ2MllpbjVaZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
rgYIKwYBBQUHAQcBAf8EgZ4wgZswgYIEAgABMHwwDAMEB01agAMEAE1agjAMAwQC
TVqEAwQATVqKAwQATVqMMAwDBAFNWo4DBABNWpAwDAMEAU1akgMEAE1alDAMAwQA
TVqZAwQATVqaAwQATVqkAwQATVqzAwQATVq1AwQATVq/AwQA1dGCAwQA1dGKAwQA
1dGTAwQB1dGeMBQEAgACMA4DBQAqBCnCAwUAKgQpxzANBgkqhkiG9w0BAQsFAAOC
AQEAqKhhlGWnUzxs9w4RNKNEKM2QLVt4COY0HvjpOPwmRJfQ0Pia4Z/GKALvT8Oh
7wmxjBFyaHh+/hP0drEv12ZyYqxSqBGBiiIDAYJs1dj5MqP+/vxDCRJZj/FJ8aD+
STK3Pn77jRLMM+2ryR0CHzDNHsYSIlirwwzswpfrbNm4JzipBgmbBahmoIy+METz
0pJb1N5Xosp+eaoW6se23RyGmWeZyXs9EwlCXRpfbEEm+SnfwtPmLR2ZIXCRboCQ
Rd9/+TkMFw2ZBIemFaNP51GQY5wVgXg6wKajUUtDWGlAXX3XYEenuhUyADNuXtPh
sQ2bCbokBJxE6vNW6IN1NQknGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org