Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zQ_W3HWqm2aJwongYTKzzYM9Cdw.roa
File: zQ_W3HWqm2aJwongYTKzzYM9Cdw.roa (raw, json)
Hash identifier: EUoRUBrLGkO0thn95JnkW1SrPR7YQ3Ynf2WzvOTVgoU=
Subject key identifier: CD:0F:D6:DC:75:AA:9B:66:89:C2:89:E0:61:32:B3:CD:83:3D:09:DC
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0184136F9CFE1DB8C0D26D1E347959DABA38
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zQ_W3HWqm2aJwongYTKzzYM9Cdw.roa
Signing time: Wed 26 Oct 2022 08:36:32 +0000
ROA not before: Wed 26 Oct 2022 08:36:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
213.209.157.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:6f:9c:fe:1d:b8:c0:d2:6d:1e:34:79:59:da:ba:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Oct 26 08:36:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd0fd6dc75aa9b6689c289e06132b3cd833d09dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0d:76:5e:c0:ca:2b:02:f4:27:88:52:84:0f:
51:ec:15:07:ff:6b:d1:92:f6:7d:d6:1c:ad:44:d5:
40:30:26:2f:cb:26:1b:8b:9d:20:ed:25:ba:cd:a5:
d1:33:00:bc:96:12:44:41:6c:ce:8c:f9:30:8b:8d:
53:88:4c:f7:b6:eb:7e:53:2d:d8:17:27:a8:3d:d8:
5e:04:3c:e2:66:84:fc:d7:6c:e1:34:3e:15:c1:a9:
6d:cb:c5:80:cd:c7:09:6f:69:ad:b1:e1:41:a1:b4:
b7:3e:87:95:63:81:7e:f1:d3:5d:89:9d:44:01:90:
d7:36:03:ba:6c:b2:09:ac:9b:42:34:ee:70:dc:45:
03:67:5f:53:66:66:21:41:7d:0b:21:e1:b7:a5:dc:
1a:55:39:38:61:5f:cd:9f:82:11:0a:7e:87:5b:c2:
15:df:95:54:d3:df:bb:2f:44:1f:87:17:1d:61:01:
fa:42:b1:ac:14:f3:be:82:b5:a3:e8:dc:d1:4e:1f:
4e:a7:c4:30:2e:65:93:be:e8:3d:08:1c:60:d6:65:
e9:71:e7:f7:46:d1:00:de:b2:66:2a:11:07:8a:5a:
d5:a8:50:1a:4a:80:bb:2d:13:e9:d9:15:cc:e7:ee:
2a:51:61:35:5f:77:69:91:5c:e8:cb:7b:26:bb:e0:
28:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0F:D6:DC:75:AA:9B:66:89:C2:89:E0:61:32:B3:CD:83:3D:09:DC
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/zQ_W3HWqm2aJwongYTKzzYM9Cdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.140.255
77.90.142.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.156.0/24
77.90.178.0/24
77.90.184.0/24
185.230.13.0-185.230.15.255
213.209.138.0/24
213.209.143.0/24
213.209.156.0/23
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
44:35:a4:9d:f2:e2:a4:c6:c8:fb:d7:8b:01:89:7c:85:2b:5f:
6f:b0:01:bc:6b:bf:68:67:c3:38:14:70:c7:95:29:4b:ca:af:
87:b2:d9:fa:eb:85:c4:6a:e9:11:d2:21:b8:fe:ed:86:ba:76:
4c:2e:f9:e0:1a:cd:d7:0f:89:98:ed:37:4c:57:7c:af:c5:76:
b5:4a:83:b4:78:1f:ff:50:37:5f:5b:8e:bc:8c:5c:bf:dd:8b:
4d:eb:26:90:c9:45:dc:1a:6e:28:26:89:b2:62:a9:2b:f1:01:
a1:da:81:1a:60:dc:84:a5:34:e5:75:b8:5d:11:de:90:ee:cc:
b2:47:8e:18:0d:bd:a1:74:26:fc:75:88:7b:70:b9:81:7f:c4:
56:95:f0:73:15:a1:66:bf:82:a6:2e:aa:cd:3d:b5:91:73:10:
b0:ee:df:5c:28:f9:8a:83:5c:95:23:67:98:f5:c7:05:d6:c0:
39:05:03:b9:dd:dd:6d:41:9b:e6:e9:53:d6:73:b0:87:73:f5:
15:68:bc:47:99:57:3e:7f:d1:e2:cd:33:6b:ab:89:d6:26:86:
4d:0c:5d:3c:16:7c:ca:eb:6a:d7:d5:64:86:a7:40:3e:76:e9:
0f:91:05:5b:e8:f7:08:a7:b8:43:6d:b4:a6:39:25:64:ac:52:
48:02:89:07
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYQTb5z+HbjA0m0eNHlZ2ro4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjIxMDI2MDgzNjMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDBmZDZkYzc1YWE5YjY2ODljMjg5ZTA2MTMyYjNjZDgzM2QwOWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgQ12XsDKKwL0J4hShA9R7BUH/2vR
kvZ91hytRNVAMCYvyyYbi50g7SW6zaXRMwC8lhJEQWzOjPkwi41TiEz3tut+Uy3Y
FyeoPdheBDziZoT812zhND4Vwalty8WAzccJb2mtseFBobS3PoeVY4F+8dNdiZ1E
AZDXNgO6bLIJrJtCNO5w3EUDZ19TZmYhQX0LIeG3pdwaVTk4YV/Nn4IRCn6HW8IV
35VU09+7L0QfhxcdYQH6QrGsFPO+grWj6NzRTh9Op8QwLmWTvug9CBxg1mXpcef3
RtEA3rJmKhEHilrVqFAaSoC7LRPp2RXM5+4qUWE1X3dpkVzoy3smu+AoWQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFM0P1tx1qptmicKJ4GEys82DPQncMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvelFfVzNIV3FtMmFKd29uZ1lUS3p6WU05Q2R3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjB2BAIAATBwMAwDBAdN
WoADBABNWoIwDAMEAk1ahAMEAE1ajDAMAwQBTVqOAwQATVqUMAwDBABNWpkDBABN
WpoDBABNWpwDBABNWrIDBABNWrgwDAMEALnmDQMEBLnmAAMEANXRigMEANXRjwME
AdXRnAMEANXRnzAUBAIAAjAOAwUAKgQpwgMFACoEKccwDQYJKoZIhvcNAQELBQAD
ggEBAEQ1pJ3y4qTGyPvXiwGJfIUrX2+wAbxrv2hnwzgUcMeVKUvKr4ey2frrhcRq
6RHSIbj+7Ya6dkwu+eAazdcPiZjtN0xXfK/FdrVKg7R4H/9QN19bjryMXL/di03r
JpDJRdwabigmibJiqSvxAaHagRpg3ISlNOV1uF0R3pDuzLJHjhgNvaF0Jvx1iHtw
uYF/xFaV8HMVoWa/gqYuqs09tZFzELDu31wo+YqDXJUjZ5j1xwXWwDkFA7nd3W1B
m+bpU9ZzsIdz9RVovEeZVz5/0eLNM2uridYmhk0MXTwWfMrratfVZIanQD526Q+R
BVvo9winuENttKY5JWSsUkgCiQc=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:09 2023 by rpki-client on console-ams.rpki-client.org