Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/yQ4kDaqT0XEUKytsdi9YqBoY9_A.roa
File: yQ4kDaqT0XEUKytsdi9YqBoY9_A.roa (raw, json)
Hash identifier: 22elL/8nSzd9Dk4xVB4GSAM3GcBVZFe1fy8hzXmWGqo=
Subject key identifier: C9:0E:24:0D:AA:93:D1:71:14:2B:2B:6C:76:2F:58:A8:1A:18:F7:F0
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0182DB45041B60A382746357222386589741
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/yQ4kDaqT0XEUKytsdi9YqBoY9_A.roa
Signing time: Fri 26 Aug 2022 17:48:29 +0000
ROA not before: Fri 26 Aug 2022 17:48:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.190.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.150.0/24 maxlen: 24
77.90.149.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.157.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.166.0/24 maxlen: 24
77.90.173.0/24 maxlen: 24
77.90.179.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.134.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.149.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
213.209.158.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:db:45:04:1b:60:a3:82:74:63:57:22:23:86:58:97:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 26 17:48:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c90e240daa93d171142b2b6c762f58a81a18f7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cb:21:c7:82:88:9f:c4:61:49:83:6c:b1:88:
c9:98:d3:2c:32:c6:46:ce:11:f1:42:65:eb:2c:f3:
c9:79:48:31:84:4f:ef:6e:50:80:7a:a5:88:64:18:
7b:6b:40:89:63:21:05:e3:29:7b:1f:62:a3:59:77:
b8:74:94:e8:08:ed:cc:bf:5d:95:60:4a:60:71:00:
3a:e2:76:67:3b:9f:96:ca:31:1f:f5:fb:dc:a1:50:
94:39:c0:5b:40:a3:1a:2b:6b:95:09:19:e6:b6:4e:
54:cc:4e:f5:cb:8e:0a:88:ff:c1:21:a7:c8:17:3d:
0e:b4:87:07:03:71:50:25:63:41:46:d5:70:23:61:
8e:6d:0f:63:95:f6:c3:32:cb:88:de:24:f6:ec:25:
51:50:49:5c:1c:2c:ad:bd:f2:f2:ae:51:6c:3f:37:
cd:48:4a:06:5e:7f:eb:bd:1b:01:bd:74:f7:7e:6c:
1f:83:4e:e1:0c:63:24:6d:94:18:7f:f2:1b:eb:d5:
3d:61:18:14:36:c4:90:5d:2b:98:00:92:c7:a0:fa:
40:35:b6:a0:57:7e:98:47:db:50:48:19:e0:43:46:
94:df:ba:de:9a:21:f7:c1:20:f9:d0:55:7e:f9:8c:
41:24:98:72:88:45:3f:4d:28:df:f7:b7:fc:81:6d:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0E:24:0D:AA:93:D1:71:14:2B:2B:6C:76:2F:58:A8:1A:18:F7:F0
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/yQ4kDaqT0XEUKytsdi9YqBoY9_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.150.255
77.90.152.0/22
77.90.157.0/24
77.90.166.0/24
77.90.173.0/24
77.90.179.0-77.90.181.255
77.90.188.0/24
77.90.190.0/23
185.230.12.0/24
213.209.130.0/24
213.209.133.0-213.209.134.255
213.209.138.0/24
213.209.144.0/23
213.209.147.0/24
213.209.149.0-213.209.150.255
213.209.157.0-213.209.158.255
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
b2:1c:07:91:86:84:fa:45:e2:d2:db:c5:8f:ee:e8:46:3c:7d:
43:90:0b:83:07:d9:ca:5d:62:b8:a5:35:8c:22:0b:3c:2e:c2:
04:06:54:05:fc:19:93:5f:7a:e2:b3:6e:14:18:98:2e:4d:25:
3a:44:73:55:ae:e9:26:c6:f7:01:a2:c7:ed:d1:db:44:10:a1:
4d:9f:13:f6:b3:25:1a:07:ba:88:b1:15:51:2f:90:b0:51:68:
8c:fb:c4:cd:8f:9f:97:2c:16:df:5c:b0:63:05:5d:31:85:69:
2c:95:98:05:9b:78:ff:86:ab:30:b9:f4:f0:72:21:07:a4:ca:
8b:c4:05:b3:d0:4f:2e:54:09:85:8d:7e:96:0a:c3:39:e8:11:
ff:7f:61:90:a4:a5:f9:73:9f:91:0f:6e:ad:d6:c8:7e:37:35:
d4:6c:ff:99:b8:16:b9:ae:8f:29:4e:0e:72:e2:0c:74:61:6f:
de:24:55:2c:b8:bb:5c:c7:04:cc:bd:97:20:91:05:c3:66:8a:
60:81:0d:98:52:1d:2d:c1:ff:ff:7c:bd:72:b7:d8:b7:6c:8d:
8b:e7:da:f9:9d:50:6b:ad:1d:2b:e2:14:b4:bc:2e:ab:aa:fa:
7b:08:db:a3:2e:84:84:82:44:85:ce:71:42:c7:88:a5:2c:05:
f4:4e:98:78
-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgISAYLbRQQbYKOCdGNXIiOGWJdBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIwODI2MTc0ODI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTBlMjQwZGFhOTNkMTcxMTQyYjJiNmM3NjJmNThhODFhMThmN2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMshx4KIn8RhSYNssYjJmNMsMsZG
zhHxQmXrLPPJeUgxhE/vblCAeqWIZBh7a0CJYyEF4yl7H2KjWXe4dJToCO3Mv12V
YEpgcQA64nZnO5+WyjEf9fvcoVCUOcBbQKMaK2uVCRnmtk5UzE71y44KiP/BIafI
Fz0OtIcHA3FQJWNBRtVwI2GObQ9jlfbDMsuI3iT27CVRUElcHCytvfLyrlFsPzfN
SEoGXn/rvRsBvXT3fmwfg07hDGMkbZQYf/Ib69U9YRgUNsSQXSuYAJLHoPpANbag
V36YR9tQSBngQ0aU37remiH3wSD50FV++YxBJJhyiEU/TSjf97f8gW2DFQIDAQAB
o4IC0DCCAswwHQYDVR0OBBYEFMkOJA2qk9FxFCsrbHYvWKgaGPfwMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEveVE0a0RhcVQwWEVVS3l0c2RpOVlxQm9ZOV9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHlBggrBgEFBQcBBwEB/wSB1TCB0jCBuQQCAAEwgbIwDAME
B01agAMEAE1agjAMAwQCTVqEAwQBTVqIMAwDBABNWosDBABNWowwDAMEAU1ajgME
AE1algMEAk1amAMEAE1anQMEAE1apgMEAE1arTAMAwQATVqzAwQBTVq0AwQATVq8
AwQBTVq+AwQAueYMAwQA1dGCMAwDBADV0YUDBADV0YYDBADV0YoDBAHV0ZADBADV
0ZMwDAMEANXRlQMEANXRljAMAwQA1dGdAwQA1dGeMBQEAgACMA4DBQAqBCnCAwUA
KgQpxzANBgkqhkiG9w0BAQsFAAOCAQEAshwHkYaE+kXi0tvFj+7oRjx9Q5ALgwfZ
yl1iuKU1jCILPC7CBAZUBfwZk1964rNuFBiYLk0lOkRzVa7pJsb3AaLH7dHbRBCh
TZ8T9rMlGge6iLEVUS+QsFFojPvEzY+flywW31ywYwVdMYVpLJWYBZt4/4arMLn0
8HIhB6TKi8QFs9BPLlQJhY1+lgrDOegR/39hkKSl+XOfkQ9urdbIfjc11Gz/mbgW
ua6PKU4OcuIMdGFv3iRVLLi7XMcEzL2XIJEFw2aKYIENmFIdLcH//3y9crfYt2yN
i+fa+Z1Qa60dK+IUtLwuq6r6ewjboy6EhIJEhc5xQseIpSwF9E6YeA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org