Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xt-Dw0SCnxOCykkEkfq0XRlMnsc.roa
File: xt-Dw0SCnxOCykkEkfq0XRlMnsc.roa (raw, json)
Hash identifier: TMQp3KYSdCepNienE+e/3JcwouH62jWYiNYjbxB2UBk=
Subject key identifier: C6:DF:83:C3:44:82:9F:13:82:CA:49:04:91:FA:B4:5D:19:4C:9E:C7
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0941F3B1
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xt-Dw0SCnxOCykkEkfq0XRlMnsc.roa
Signing time: Sat 21 May 2022 22:37:28 +0000
ROA not before: Sat 21 May 2022 22:37:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 77.90.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155317169 (0x941f3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 21 22:37:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6df83c344829f1382ca490491fab45d194c9ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:52:45:82:79:06:fb:87:56:9f:fb:66:16:
08:fe:2b:1b:09:7f:5c:14:c5:a8:23:04:e7:9a:a3:
f7:e4:b4:c0:45:53:f1:63:42:a7:f3:f8:ac:58:61:
5b:70:d0:f6:cb:27:d3:d0:9f:42:89:40:b6:d3:3b:
e8:d8:d3:95:1e:2f:96:87:0a:36:2b:ba:73:f0:86:
d8:13:39:6c:f1:60:01:22:8e:a7:dd:95:60:d8:7e:
c9:51:18:e3:98:6e:17:cc:36:73:b5:95:d8:9d:04:
b3:06:a1:b6:cc:a6:92:4e:b9:6f:b1:c3:42:40:0c:
95:2e:8e:b2:cf:e5:b7:3b:2a:52:e1:c4:ba:56:42:
bb:4e:43:39:42:42:d7:7f:c0:f7:7b:69:b8:2c:55:
49:1e:0b:85:72:99:75:3e:f5:d3:32:d7:23:3f:93:
75:9a:c5:37:67:92:06:bc:43:0d:22:39:50:b8:2d:
0f:19:b0:0e:96:18:56:e9:2f:ab:20:bd:61:83:0e:
fb:bc:36:39:97:72:5d:2a:fb:38:d7:e0:cb:59:0b:
8c:28:f9:1e:fc:3b:ff:93:05:04:9f:d6:be:05:e6:
f2:bc:b1:3f:73:16:bd:c0:6e:e9:2a:a8:1d:c6:a9:
20:90:44:19:81:24:13:59:3d:a9:03:3a:3c:c3:e4:
64:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DF:83:C3:44:82:9F:13:82:CA:49:04:91:FA:B4:5D:19:4C:9E:C7
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/xt-Dw0SCnxOCykkEkfq0XRlMnsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:93:e4:ca:c4:98:8d:b6:df:66:71:6c:db:32:77:be:17:dc:
68:5c:85:ff:c9:9e:6f:55:6f:17:3d:21:e2:d6:d8:81:94:90:
45:28:3d:56:ac:a4:41:53:eb:26:b4:83:76:97:ec:63:e0:29:
8a:cd:79:a6:e0:a2:4c:2b:54:f6:25:a2:7a:41:c8:74:29:7f:
9d:4f:16:ce:8a:cb:7d:89:6b:6a:2a:cb:c2:ee:8e:fc:c0:95:
22:28:06:bf:80:fc:be:aa:0d:6a:54:a6:3a:2e:4a:83:ba:cc:
7c:0e:9e:d7:1f:be:d0:a7:f0:05:d6:69:88:13:d7:5d:d8:d7:
14:4d:3a:00:fa:43:36:1f:f6:3f:80:ea:04:e9:9d:75:9f:02:
86:41:f1:4f:71:93:26:ec:4a:fc:58:cf:d9:a3:00:ee:d9:c4:
c6:44:b3:8f:5d:8d:68:bb:db:f1:ff:4b:18:76:e9:d6:d0:4e:
50:09:4b:a9:c4:a5:b8:51:1d:11:6f:4c:38:aa:32:ed:ae:c0:
40:62:95:13:06:26:10:c4:66:be:a6:ae:c2:af:5a:a5:04:d4:
5f:bf:83:ef:15:15:af:ad:18:09:4a:d6:3c:b0:03:c8:c9:0f:
03:d0:e4:8f:22:12:77:7b:e1:1b:a8:d1:18:80:f9:11:3a:d0:
60:a5:10:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org