Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xJUWRv8h07_fyil-k0ldj6HNvKU.roa
File: xJUWRv8h07_fyil-k0ldj6HNvKU.roa (raw, json)
Hash identifier: vT7jfLyyvHuAgSG3Gw2WITxbP07OB3cBxs56eNDRQ4c=
Subject key identifier: C4:95:16:46:FF:21:D3:BF:DF:CA:29:7E:93:49:5D:8F:A1:CD:BC:A5
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 08DD49E4
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xJUWRv8h07_fyil-k0ldj6HNvKU.roa
Signing time: Thu 28 Apr 2022 16:40:50 +0000
ROA not before: Thu 28 Apr 2022 16:40:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148720100 (0x8dd49e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 28 16:40:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4951646ff21d3bfdfca297e93495d8fa1cdbca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cf:ee:3f:1a:e7:30:19:1f:ac:49:75:5e:6c:
b6:1d:f5:85:55:63:03:42:dd:98:31:3e:76:0a:f6:
23:df:ad:e4:f7:33:55:06:ed:cb:ef:9b:cb:c4:ba:
98:ba:c1:54:60:7f:28:f0:0f:94:e6:58:1e:4f:1e:
93:e8:c6:3c:ae:c4:e8:e7:b4:19:f3:8f:a9:e7:da:
60:af:2e:e2:0e:0f:fa:c9:6c:4b:12:36:8b:d9:c5:
9a:fa:49:53:d7:58:8f:04:19:82:94:f7:7a:ad:90:
42:a5:32:49:0d:4f:10:f9:00:ad:67:e6:d1:b6:e3:
d9:5e:2b:b7:17:1a:b8:be:05:1c:1b:e4:f3:4d:e9:
55:69:3d:72:25:f5:a7:7d:a4:fd:41:32:6a:f8:65:
25:6a:95:dd:10:55:56:52:f2:07:d4:13:8a:21:e1:
1b:2d:ef:10:30:b6:a7:88:2e:b4:9b:28:70:19:4f:
e4:d5:56:3e:04:a1:9e:d2:55:db:52:de:67:22:9f:
a0:d8:5a:bc:e1:b3:ab:fb:59:fe:a6:2a:43:59:84:
b3:8f:52:13:9f:bc:f6:45:f1:9a:cb:a6:55:4a:b5:
01:61:76:d1:ac:a2:27:86:e2:ec:79:e9:b9:5e:38:
cd:82:df:e0:50:99:9e:03:34:b8:c6:99:2e:e3:64:
52:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:95:16:46:FF:21:D3:BF:DF:CA:29:7E:93:49:5D:8F:A1:CD:BC:A5
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xJUWRv8h07_fyil-k0ldj6HNvKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.140.255
77.90.142.0-77.90.148.255
77.90.152.0/24
77.90.178.0/24
77.90.180.0/24
77.90.185.0/24
77.90.191.0/24
185.230.13.0/24
213.209.130.0/24
213.209.136.0/24
213.209.138.0/24
213.209.146.0/23
213.209.156.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
8c:91:3f:38:14:2a:f5:8b:b7:3c:ff:27:5d:18:7b:1f:17:d9:
10:6a:d2:4e:80:d6:5e:74:50:db:87:74:ca:8a:01:cb:d4:e2:
c1:ff:fc:10:9e:da:55:5e:0e:ce:aa:6e:b7:cb:ec:1c:1c:48:
cf:67:26:a5:57:18:d1:fb:e4:57:97:7d:73:6c:d1:49:aa:52:
3a:c1:e2:5c:f2:47:e4:6c:23:b4:67:28:2d:50:85:2b:1f:c1:
3b:68:e6:cf:5e:b1:85:21:63:81:ce:93:95:64:bf:5c:cf:88:
5d:d8:6b:28:fa:1f:55:92:1b:5d:8d:96:a1:ff:e5:e9:88:f8:
e4:46:d0:3c:71:10:40:ac:b9:bc:69:fb:4f:ab:08:a1:ee:15:
5c:c6:ed:ac:69:50:cc:eb:bc:af:8d:5d:44:99:75:fc:b4:b7:
0c:8a:99:8d:e7:e4:d0:ff:71:0a:41:1d:0a:c6:b0:4a:a0:b7:
88:5e:61:71:18:35:de:5f:e3:1d:cc:4c:8f:be:28:a9:e2:a0:
c8:d7:ec:b6:a5:24:f7:01:f7:02:b9:1b:49:be:0e:37:a2:50:
be:7e:9f:06:48:5e:f3:64:ab:70:7a:a0:86:b1:83:f8:6c:80:
d4:d7:f4:cf:53:c9:8a:d9:e2:f5:36:d5:cc:5c:83:38:83:3f:
35:70:e6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org